Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RJ0H2pINoCY0K_biaJzH4PCjyvw.cer
File: RJ0H2pINoCY0K_biaJzH4PCjyvw.cer (raw, json)
Hash identifier: g70uMqEwiPmZAvAdBYqOR2K+WlxefhPcE5Z8tsm168s=
Subject key identifier: 44:9D:07:DA:92:0D:A0:26:34:2B:F6:E2:68:9C:C7:E0:F0:A3:CA:FC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0219A7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/RJ0H2pINoCY0K_biaJzH4PCjyvw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 06:44:30 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 103.52.192.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137639 (0x219a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 06:44:30 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91DAC6A/serialNumber=449D07DA920DA026342BF6E2689CC7E0F0A3CAFC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:98:ad:0f:65:b5:4e:e9:63:cb:54:85:ad:4f:
41:e8:fa:cb:ef:1c:bc:37:9d:c5:5c:8f:cb:f9:bd:
12:d7:39:2d:07:38:9d:17:f3:a9:99:39:e2:9f:6d:
c4:3d:49:06:b7:8b:25:b9:13:bb:9c:91:37:d2:e2:
f5:ef:2a:15:4a:b0:b7:6a:4c:04:2f:c4:ce:02:95:
c4:4c:84:eb:de:bf:59:f8:26:54:e1:5c:8f:a5:01:
bf:67:20:56:db:42:dd:79:ec:c7:f7:f2:e0:1d:9a:
55:bf:7f:00:7d:76:22:3e:b1:e5:bd:55:e7:17:0b:
48:c0:02:60:8e:25:4e:79:25:cb:a4:35:76:de:79:
f7:57:e4:29:b3:f9:cc:f2:0c:15:d0:17:71:fd:b3:
ce:38:cd:df:58:2a:fd:03:7f:42:a8:e3:2c:c5:ee:
23:6d:ad:69:5c:e8:39:e7:95:d4:66:95:b1:5e:2b:
ec:6a:2a:bd:8c:35:5f:ba:d2:e7:a5:ea:a4:a9:48:
37:80:6f:0e:51:a6:56:6b:5e:08:88:e4:96:7b:36:
84:99:98:db:61:47:cd:8d:fa:d7:fb:41:1b:35:6c:
2c:ad:ed:a5:7d:ef:68:9c:98:9b:5e:e5:47:b4:a9:
13:ad:62:36:5d:54:a7:21:a4:6f:92:ff:2b:03:48:
6a:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:9D:07:DA:92:0D:A0:26:34:2B:F6:E2:68:9C:C7:E0:F0:A3:CA:FC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DAC6A/90662EB69C0A11EFAED65738C4F9AE02/RJ0H2pINoCY0K_biaJzH4PCjyvw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.52.192.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:5a:6e:4f:a9:77:0c:50:33:84:47:e6:84:2c:cd:79:36:e3:
50:a2:34:d8:74:65:ab:08:ce:b4:7f:fb:9e:0d:a1:84:cf:66:
33:79:6d:f8:a2:b8:84:38:49:5d:79:e7:24:52:d1:96:ea:58:
5b:0a:93:98:f9:d6:53:96:21:fe:33:61:a2:50:5f:1b:94:b7:
ad:de:db:36:3e:5f:ad:69:b1:53:5c:ed:c7:db:25:06:eb:c9:
41:40:97:11:9e:4f:17:43:46:a4:c7:57:d0:2c:85:cc:8d:95:
57:a7:b0:ad:86:0e:97:59:4f:cd:2d:75:53:ce:c2:c2:11:89:
40:c6:48:cf:d3:e4:7a:60:31:0a:f3:7d:43:24:ac:42:e7:e4:
82:d7:7d:2d:a6:64:29:0c:88:ec:12:1f:73:39:7a:62:5e:2a:
cd:49:e4:db:13:cd:b2:d9:9a:72:92:d8:f6:b2:30:a6:6f:e4:
b3:ac:f3:e0:e4:58:f6:12:3c:07:e0:34:e1:26:49:35:2b:13:
4f:70:ce:18:2a:1a:2a:29:02:e5:91:57:e3:70:81:62:44:a6:
b0:52:40:b5:21:cc:6d:da:6e:c6:fb:85:00:6e:75:e9:d0:76:
e9:6b:af:f5:d0:b9:38:a0:34:2f:ae:df:d7:60:88:ba:14:4e:
85:a3:4b:fa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:30 2024 by rpki-client on console-fra.rpki-client.org