Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.cer
File: VCQU--P_Iyqsxi5z3cN-J1KC7Uo.cer (raw, json)
Hash identifier: p7tPkPmgR+WKR/99dLbfE3tNj+/uO8DXq34wt1B87sM=
Subject key identifier: 54:24:14:FB:E3:FF:23:2A:AC:C6:2E:73:DD:C3:7E:27:52:82:ED:4A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C545
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Oct 2023 16:23:58 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.143.158.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 06:28:23 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116037 (0x1c545)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 20 16:23:58 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A917295C/serialNumber=542414FBE3FF232AACC62E73DDC37E275282ED4A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:13:9d:51:51:b5:16:30:8c:e3:5b:a8:44:06:
ed:92:8c:d8:53:c5:1a:d7:6a:59:e6:aa:dd:0b:f3:
09:4b:e9:7e:fd:c7:b4:26:9c:0a:08:e1:2c:a6:d8:
44:1f:e3:65:ab:f8:dd:f3:f8:2f:db:7e:09:ea:a2:
a6:60:ea:36:0d:8c:04:78:4d:d7:fd:8e:07:73:6c:
7c:5b:0a:60:06:a8:be:4b:5a:2c:7e:77:03:79:dc:
58:77:20:46:36:fa:50:ae:39:dc:85:7f:14:fc:90:
ef:c7:df:3d:f9:c0:f8:c5:bb:c4:ed:d2:ba:5b:6b:
63:36:f2:3e:ac:e7:be:b8:99:0a:24:0d:74:58:46:
fe:a0:99:26:68:39:ca:5c:67:50:86:9e:f6:72:c4:
fb:2d:23:e0:f8:2d:d7:20:d7:17:e3:38:5f:56:5b:
d1:cf:8d:25:2d:95:a1:2a:05:b7:5a:52:88:c6:7d:
15:b1:ff:71:4a:64:68:12:a6:ed:01:45:ab:16:01:
1d:7f:41:9b:be:59:79:69:1e:cf:fa:9b:5e:a8:4a:
9d:be:43:93:2c:e2:12:a2:28:59:64:25:93:35:03:
69:dc:2e:08:31:e5:e8:b0:27:fb:2b:90:0c:1b:a7:
90:cd:ad:ac:3f:3d:cd:dd:bd:2d:53:b8:cf:bc:e7:
e1:5f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
54:24:14:FB:E3:FF:23:2A:AC:C6:2E:73:DD:C3:7E:27:52:82:ED:4A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917295C/1F2074C8968211EBA399115BC4F9AE02/VCQU--P_Iyqsxi5z3cN-J1KC7Uo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.143.158.0/23
Signature Algorithm: sha256WithRSAEncryption
d4:81:7f:9e:9d:3c:f5:ed:6a:82:03:4c:74:04:e9:21:8a:78:
cc:14:18:4f:5b:54:ca:db:70:cb:28:29:41:41:7e:cf:61:5a:
5e:7c:63:9e:bf:10:16:ad:db:62:13:fd:bb:dc:35:4e:09:56:
9e:15:f3:50:02:2d:13:32:66:4e:d8:bf:f2:bc:72:da:0e:b0:
ac:cb:ce:44:f3:f1:5a:23:b3:90:f1:1f:95:5a:9d:f8:65:f9:
af:ca:54:45:b4:1c:f0:67:42:3f:e2:ed:20:c8:e1:95:66:c0:
f1:d5:d1:08:17:b3:97:07:59:07:83:ad:08:ab:b5:22:63:f4:
e3:f8:7e:59:14:74:04:06:51:23:7e:b3:fd:7a:33:ec:40:6b:
49:71:5e:8a:df:0f:fc:7b:bc:b3:4f:3a:3b:de:93:d4:49:92:
49:44:c7:d9:88:2e:67:d0:d5:f5:11:b2:2c:35:f3:55:78:23:
4f:6f:e0:d8:1a:87:af:83:fc:da:14:ff:f0:24:f5:4f:9a:93:
35:65:db:e1:26:f3:e5:40:a5:34:50:a7:21:ef:46:d0:28:95:
98:6a:ea:1b:58:c5:f4:25:79:bf:e9:ea:73:ea:a2:e7:fe:4e:
98:3f:41:22:6a:1b:eb:a9:50:45:22:2e:1a:8b:a0:24:d8:37:
29:5b:9d:c8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 07:21:25 2024 by rpki-client on console-ams.rpki-client.org