Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer
File: LyZbDIAkcwlJJokKhRJOIbEJ2jw.cer (raw, json)
Hash identifier: WkaPepF0ddGTVoRYo3DerukbeF6Xu+eqNkLwDBAypS0=
Subject key identifier: 2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F0A8
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 08 May 2024 12:49:02 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 114.141.120.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 18:35:30 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127144 (0x1f0a8)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 8 12:49:02 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91203EB/serialNumber=2F265B0C802473094926890A85124E21B109DA3C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:2d:6b:cb:2f:cc:19:0d:ae:cf:43:c5:35:ef:
74:05:1e:be:02:0c:df:f7:ce:f5:3d:a7:c4:c4:04:
56:e5:40:24:89:0c:df:ef:8a:24:7f:eb:02:3a:77:
64:b6:f9:dd:e0:03:d4:d9:f5:ab:3f:db:70:1c:46:
62:eb:c7:d7:de:56:c3:07:2a:70:ce:a5:5b:11:f9:
41:f6:b8:92:1c:bd:21:ba:5b:4e:be:e2:c3:9c:39:
27:77:10:8e:17:85:cf:fc:64:c9:c5:a5:14:0e:29:
9b:5d:57:4d:c4:bf:0c:f5:33:f5:d6:6a:09:f0:8b:
cc:25:59:4e:af:cb:bb:34:5d:a5:19:19:d1:52:20:
e2:c7:f0:2f:42:97:b0:69:01:92:fc:e5:de:92:b4:
fb:e6:85:c8:f1:00:eb:95:a3:30:e1:27:c9:32:fe:
5b:d0:91:f7:74:1e:60:11:e6:3a:1b:9a:2a:45:4d:
21:51:2f:94:5e:8f:03:eb:72:68:87:cc:32:f6:fa:
f6:38:28:63:bb:27:a1:81:3e:26:32:fb:6a:9b:9a:
a1:b0:47:6c:71:2b:49:6c:54:7f:9c:3a:24:33:1a:
04:bc:ec:16:6b:0a:81:a7:33:e0:84:cd:a3:60:55:
51:fc:45:10:31:4f:fa:87:36:4d:84:0b:a7:b7:35:
0f:41
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2F:26:5B:0C:80:24:73:09:49:26:89:0A:85:12:4E:21:B1:09:DA:3C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91203EB/F3622E74976911EBABC77486C4F9AE02/LyZbDIAkcwlJJokKhRJOIbEJ2jw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
114.141.120.0/21
Signature Algorithm: sha256WithRSAEncryption
0b:b4:e4:2c:ab:4e:70:04:47:f7:da:94:ea:13:4d:27:e7:4a:
11:9f:3c:0d:20:d7:fe:d1:c5:eb:30:b9:a2:d0:67:3b:c8:4d:
87:07:ec:df:eb:e9:41:f3:a7:de:30:68:be:05:f9:b9:1c:a3:
ff:fc:92:86:73:3b:7a:68:f9:1c:cc:10:44:a4:71:23:d1:2d:
10:db:5c:6a:1c:7a:ef:ad:df:54:62:7f:87:b6:3b:13:c0:4a:
e1:0f:f5:ab:6c:28:ba:90:e3:5f:11:53:58:ef:cc:8c:ce:23:
0b:9b:3c:6b:af:00:ab:7d:7c:12:da:e5:7b:76:ae:08:01:63:
9f:40:8e:b8:98:d8:99:65:a1:db:37:c9:13:56:f1:3a:56:b6:
32:22:51:1e:79:52:5b:86:ea:d0:7d:5d:09:f6:6d:64:1c:16:
9a:d7:cf:99:96:8c:0e:7e:c1:f2:f0:88:c4:59:da:70:3a:49:
81:40:24:a8:b9:d6:ae:48:f0:24:63:95:95:44:26:7f:cf:30:
e5:dd:bc:d2:70:d4:fb:d6:3f:3b:cd:cf:3f:4c:df:4b:09:3a:
56:7d:80:f2:5b:ce:f1:6c:15:f2:07:ac:49:c0:fd:e3:a2:ac:
dd:82:65:b2:12:18:fe:da:dd:d9:54:a8:7b:f8:62:a3:63:5f:
79:cf:bd:5c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 19:50:49 2024 by rpki-client on console-ams.rpki-client.org