Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer
File: UKcRa7nzaXvF4-Ii7wNfcDQs3aM.cer (raw, json)
Hash identifier: lufbousetLRYUrpsDV5PpSekNe/EjvKj191MDlKJ9sg=
Subject key identifier: 50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02030A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jul 2024 22:56:02 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 103.139.228.0/23
IP: 2001:df0:9680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131850 (0x2030a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 29 22:56:02 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91E5191/serialNumber=50A7116BB9F3697BC5E3E222EF035F70342CDDA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:db:50:1a:50:9f:a0:90:db:10:e9:15:e5:73:
f8:40:dd:b1:0a:a4:59:e8:1d:36:66:ff:61:c4:18:
af:5a:f0:13:83:fa:b3:4a:77:66:d7:51:24:32:28:
77:ea:18:ee:8e:e1:a3:29:23:07:de:68:75:1c:8c:
93:45:a2:dd:ad:af:96:3b:5d:f3:9e:82:c3:6d:85:
9d:73:ec:55:63:ce:a3:3f:9d:64:d8:14:66:da:e5:
fc:52:ab:e3:d9:03:8b:58:46:18:98:fa:a8:3e:1a:
b0:75:07:15:c7:d7:85:2e:de:4b:74:be:13:5a:c0:
d0:64:0c:58:8e:09:ca:14:5e:0a:ca:f1:e9:50:52:
6e:95:6b:b0:4a:66:91:3f:16:d1:42:15:20:c8:18:
ec:f3:18:e8:2f:04:5f:a9:ad:b1:b4:05:3d:7a:97:
56:7d:dd:29:be:bd:85:15:bb:e7:5d:d1:39:98:30:
0a:8f:02:06:74:93:52:39:eb:7a:0c:53:0b:f4:67:
77:ed:cc:cf:69:05:39:6d:de:8a:29:53:ec:72:ac:
c4:4a:62:89:42:d0:32:9a:ac:89:17:44:93:ca:61:
3d:40:73:bd:36:cd:7f:68:47:7f:b4:1d:5f:c2:94:
a6:40:a2:18:98:6b:6a:33:83:47:c4:ef:42:16:59:
ac:f1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:A7:11:6B:B9:F3:69:7B:C5:E3:E2:22:EF:03:5F:70:34:2C:DD:A3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E5191/48AA0706197211EB805E6B7FC4F9AE02/UKcRa7nzaXvF4-Ii7wNfcDQs3aM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.139.228.0/23
IPv6:
2001:df0:9680::/48
Signature Algorithm: sha256WithRSAEncryption
42:62:71:36:ed:82:04:53:a1:76:35:cb:29:95:22:7f:f8:f4:
e6:06:89:49:8e:92:c2:81:0f:2f:1d:03:ca:a8:bd:9b:36:65:
f2:d3:1d:64:f0:e5:8f:9b:e6:80:11:b9:25:5d:71:bc:75:4a:
3f:9b:70:f4:84:46:c5:70:84:cf:ab:f0:5c:9d:91:15:81:ed:
73:b0:c5:52:1a:3e:1a:b8:0c:ba:08:a7:ad:d7:ca:38:ec:76:
14:4e:e1:24:0a:ce:3b:64:33:bb:bb:53:eb:1b:cf:56:de:fb:
30:17:51:7b:43:35:a2:79:6a:3e:4c:af:60:0e:3d:f9:15:a7:
76:fa:16:0f:fd:ac:a1:69:aa:7c:f1:4a:c2:70:fe:6d:46:3b:
8e:24:9d:79:0f:ea:c2:f0:8c:55:7f:91:8f:03:f2:25:f3:92:
6a:71:fb:2b:5b:a6:5a:6f:a2:3d:e6:06:f9:27:01:19:e3:b1:
c5:1e:68:e8:8d:92:73:86:8e:d5:36:e0:1c:dc:72:8d:b4:ac:
20:70:68:bc:df:95:c7:c0:75:b0:dd:5a:69:fb:58:02:d2:d4:
29:b0:7f:09:56:40:f0:bf:c2:08:bb:79:09:76:e4:16:ee:24:
52:3f:da:e6:a4:39:0c:86:6e:e3:ce:50:16:f5:51:5a:c5:46:
1d:36:5b:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:32 2024 by rpki-client on console-fra.rpki-client.org