Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SzudkwWID_Zrfx5MkP-YdSiGOBE.cer
File: SzudkwWID_Zrfx5MkP-YdSiGOBE.cer (raw, json)
Hash identifier: z/VcvQf/tVEyc8j+/Xe1ztRPD5PKFjWhO4DqbwixsZE=
Subject key identifier: 4B:3B:9D:93:05:88:0F:F6:6B:7F:1E:4C:90:FF:98:75:28:86:38:11
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020A64
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/SzudkwWID_Zrfx5MkP-YdSiGOBE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 Aug 2024 23:40:55 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 43.242.140.0/22
IP: 103.38.28.0/22
IP: 2001:df6:cb80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133732 (0x20a64)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 30 23:40:55 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91B4E2B/serialNumber=4B3B9D9305880FF66B7F1E4C90FF987528863811
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:74:3e:07:81:f6:8f:4d:3e:64:21:05:78:b8:
6d:0f:2f:e6:f3:1f:95:a9:34:07:5c:4b:00:d8:65:
75:97:29:54:a8:0f:39:e3:b5:bb:87:a8:0d:7c:64:
3b:08:b2:40:ed:41:b4:e2:85:02:22:1f:08:a7:d4:
e2:2e:ca:3f:cf:b6:4e:d3:c2:91:2c:a5:45:a0:cd:
01:15:61:f3:c7:f0:73:d3:49:8a:43:59:85:40:f9:
1a:ca:67:38:7e:6f:b1:04:cf:bf:ca:7b:d2:39:21:
88:28:93:fc:df:94:ce:82:1c:d2:47:5c:15:dd:e2:
db:e2:4c:25:d4:66:53:5b:27:7e:fa:68:71:72:23:
ca:be:95:3f:72:5d:fc:c9:ad:f5:76:53:69:1e:e1:
1a:d2:b4:9c:c2:52:cb:1a:5c:6e:a3:ee:84:55:7f:
44:d8:db:12:1f:c1:2d:22:65:80:16:5b:a3:af:b1:
5c:49:07:c7:a7:c4:9c:82:92:d4:16:05:7d:84:e4:
84:93:f1:33:ef:df:7b:42:79:81:0b:d0:e1:24:e3:
1a:93:ab:d6:83:dc:bd:55:98:ca:87:e4:61:ef:bc:
a5:3a:8b:ca:df:cb:c3:81:d1:38:c6:82:42:e2:70:
1d:90:c6:29:be:79:04:24:f2:bf:77:62:cb:9d:50:
f0:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4B:3B:9D:93:05:88:0F:F6:6B:7F:1E:4C:90:FF:98:75:28:86:38:11
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B4E2B/F836BDEC0CEC11EF9F81F63FC4F9AE02/SzudkwWID_Zrfx5MkP-YdSiGOBE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.242.140.0/22
103.38.28.0/22
IPv6:
2001:df6:cb80::/48
Signature Algorithm: sha256WithRSAEncryption
d8:8a:a7:e8:af:34:7a:4c:74:4a:0b:2e:4c:e0:ad:c0:aa:f1:
f9:cf:ae:92:7a:df:f5:b6:05:16:c6:fa:25:d6:5e:2f:af:9b:
20:d4:45:c3:32:e6:59:a0:cd:88:90:b3:65:97:ba:ce:54:b1:
a3:f4:76:02:a4:bb:f2:3c:ca:79:7d:d0:7b:42:12:28:fb:dc:
82:74:dc:f4:66:c9:ef:58:e5:13:8e:44:db:c3:e4:39:56:dd:
18:17:61:21:ef:27:da:ae:60:7c:fa:92:f6:ed:be:15:d5:c3:
56:f7:10:e5:fd:24:42:89:c3:2f:5d:07:10:02:74:19:87:5f:
d5:d9:11:94:79:f6:51:0c:b7:41:cd:de:a9:aa:a0:21:07:9d:
c7:a7:6e:d3:5b:a0:38:88:e1:ed:1d:27:0c:0f:4e:87:d4:b6:
5b:9a:27:10:d5:2c:4b:9a:9c:42:a4:07:65:80:bd:41:47:3f:
dd:8f:a2:58:bb:4e:7a:b0:cd:92:c1:84:56:ea:bb:0b:fd:64:
79:97:b0:12:61:75:c7:69:2e:a8:5a:c8:01:de:3d:15:dc:89:
3f:e3:fc:3d:7c:f5:2a:34:ae:c9:60:60:05:cf:74:60:5e:94:
73:04:f0:13:b1:6c:19:a9:ba:33:8f:48:d5:40:fa:4c:7d:3f:
be:c8:3e:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:12:39 2024 by rpki-client on console-fra.rpki-client.org