Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer
File: NkXNkOP0PAEtqzvzly6GvJTd1FQ.cer (raw, json)
Hash identifier: sEhyHBp/E9xoJf01tisaK3cMsmxtWrx9aL4NapPhsfQ=
Subject key identifier: 36:45:CD:90:E3:F4:3C:01:2D:AB:3B:F3:97:2E:86:BC:94:DD:D4:54
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BEB7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Sep 2023 21:40:00 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 58421
IP: 202.49.208.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114359 (0x1beb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 20 21:40:00 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91CFC1C/serialNumber=3645CD90E3F43C012DAB3BF3972E86BC94DDD454
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ce:66:bd:a6:1a:54:6d:1a:e1:39:81:56:d3:eb:
54:99:8d:18:c3:94:3d:43:8a:c4:09:fa:38:cc:b8:
0c:c2:de:06:c4:95:26:ca:99:88:27:86:a2:8e:ed:
8c:48:15:1e:21:5b:23:09:90:1a:0f:c6:9e:83:1e:
51:56:00:fe:50:56:3d:bb:97:ed:0b:9d:36:ba:2d:
31:7d:a4:70:75:a7:af:b6:f0:3c:1c:a3:ff:d8:8c:
ad:82:c0:5b:d4:15:c9:f4:21:f3:0e:bf:85:af:19:
f0:71:f7:15:10:e1:37:a1:cd:b2:20:96:04:5a:46:
d2:79:e5:c5:b1:80:11:c7:c3:fd:32:60:39:ea:e9:
0c:a3:8e:82:4a:99:72:41:6e:dd:06:92:a7:aa:40:
13:d8:61:37:79:75:55:1d:c3:ff:f5:52:f4:76:77:
76:74:ba:78:00:66:81:55:28:0e:6b:25:eb:67:ca:
88:1a:b7:c5:08:50:30:bf:0c:51:4d:c6:e5:2d:77:
d6:fc:13:e3:bd:48:0e:a1:b0:a1:ee:9a:b9:b1:5c:
7d:cd:48:84:be:0e:f5:9a:24:d4:b5:75:1a:c6:fe:
99:44:7a:1e:33:96:27:f0:bc:8d:36:7e:bb:73:9e:
1f:f5:4b:0b:58:9d:f7:f6:c6:52:03:20:37:bb:b6:
cb:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
36:45:CD:90:E3:F4:3C:01:2D:AB:3B:F3:97:2E:86:BC:94:DD:D4:54
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CFC1C/3C142B1657FE11EEAA553060C4F9AE02/NkXNkOP0PAEtqzvzly6GvJTd1FQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
58421
sbgp-ipAddrBlock: critical
IPv4:
202.49.208.0/21
Signature Algorithm: sha256WithRSAEncryption
be:02:45:7d:b5:8a:06:e5:b6:ee:f0:a6:76:82:b7:86:ae:57:
c2:45:a1:0b:dc:02:04:47:96:26:5c:16:e7:36:34:75:e4:10:
0e:5a:ce:7e:83:d2:a2:1c:b5:25:5e:65:6f:00:02:87:eb:4b:
62:64:93:a9:f8:e3:19:76:e9:1f:3d:b7:b2:f6:80:b8:5e:b7:
51:49:a0:ab:8f:8f:de:16:88:11:98:09:27:4d:80:94:6a:b7:
39:2c:7b:b8:43:cd:dd:6f:68:01:94:99:46:a5:1b:cf:62:5a:
d7:f9:35:44:cf:9a:31:a8:98:63:17:6f:02:6d:52:d5:7a:bf:
4a:d0:ae:65:16:10:93:52:7d:d7:2a:7b:72:07:4c:d0:89:f4:
ab:32:4f:92:67:4f:41:1b:3b:b5:c7:10:0d:c2:09:76:ef:b4:
c2:ea:ca:10:bf:16:94:aa:61:be:be:9b:6c:97:60:47:24:35:
00:2b:4d:b2:4b:d7:a3:1e:71:6a:15:69:8d:5a:5b:fb:c0:51:
09:68:30:4e:dd:11:ab:3d:a2:76:57:d7:cb:10:40:0b:77:8d:
04:86:24:07:0f:76:79:d5:93:30:11:84:50:91:6c:25:62:8e:
74:79:eb:d5:e6:c4:3d:46:ae:5f:8d:bb:46:e7:b0:14:67:19:
ef:4a:42:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 12:24:29 2024 by rpki-client on console-ams.rpki-client.org