Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTOnxXv02x5Tj5534LSGi4-QxYI.cer
File: VTOnxXv02x5Tj5534LSGi4-QxYI.cer (raw, json)
Hash identifier: 6ECGAyPXumeTMCnMki5XZhrAXzK/RKZ/pXLs9kVb/4U=
Subject key identifier: 55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0212B2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 08 Oct 2024 13:03:48 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 45.125.16.0/22
IP: 103.242.132.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135858 (0x212b2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 8 13:03:48 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91276FA/serialNumber=5533A7C57BF4DB1E538F9E77E0B4868B8F90C582
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:93:5d:3e:d4:2d:88:9b:96:21:eb:f7:b8:c7:
cd:4a:0b:f2:1a:6b:6f:18:ff:ea:c1:2a:39:39:df:
94:49:c0:b2:9e:a0:ee:37:45:ba:2a:95:d5:64:eb:
c6:0f:27:3b:d0:41:67:78:b7:65:fc:8f:5c:d0:66:
51:1f:47:38:67:17:43:84:79:a8:09:0b:c5:a2:57:
84:b3:1c:b9:ff:2e:9d:fd:ed:23:fa:95:0a:f5:5b:
e2:08:6c:19:ec:71:7b:05:4d:0d:57:0f:f8:93:60:
60:f6:d5:40:99:bf:3b:80:78:d9:f8:e3:8b:e3:3f:
6a:8b:dd:e3:9e:0d:1d:30:b0:14:4d:90:7c:3a:1f:
e8:66:06:92:bb:e3:c3:3a:a4:bf:3c:03:e4:b8:ea:
cb:12:85:7c:4e:da:49:d6:21:3b:f0:ab:3e:9f:ef:
f4:95:c6:cc:42:7d:54:a4:cf:d4:61:22:12:4d:ba:
ee:37:70:c6:3a:30:9e:0c:e5:e0:fd:c7:47:58:bc:
3f:91:35:06:fb:1c:05:8d:0b:68:35:44:c9:19:36:
72:15:06:28:d9:86:71:43:06:d9:7d:22:32:03:03:
ba:bd:c0:c5:3a:91:ad:29:01:c9:0c:f8:df:3d:c8:
e1:9e:a3:83:ab:5f:5d:21:2c:9f:7f:51:e6:8c:ff:
27:25
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:33:A7:C5:7B:F4:DB:1E:53:8F:9E:77:E0:B4:86:8B:8F:90:C5:82
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91276FA/9C52A7E884C911EFB54D0C49C4F9AE02/VTOnxXv02x5Tj5534LSGi4-QxYI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.125.16.0/22
103.242.132.0/22
Signature Algorithm: sha256WithRSAEncryption
b5:b4:8c:d9:3d:d1:bd:e5:61:ba:34:df:c0:24:31:bb:50:4d:
8b:37:59:c5:0e:fa:2e:3f:ed:90:cb:46:4b:cd:8a:f3:13:c1:
8d:e4:a1:bd:31:f8:2a:2c:0d:f8:19:8e:cc:b9:d6:6f:25:92:
c2:57:c0:ea:a4:00:d9:a9:6d:08:eb:e3:6d:56:0a:5b:0e:84:
aa:2f:a7:a0:fc:bc:db:7e:14:93:c4:62:dc:c3:4e:65:40:70:
0b:1d:46:7c:44:dd:18:19:e0:32:9b:3e:4e:0e:34:51:e1:e5:
e7:57:8a:4e:1b:57:4e:90:88:ab:5a:d9:69:84:4c:5e:d9:bc:
21:23:25:36:c5:60:80:11:87:19:aa:48:2f:1d:94:f7:65:ee:
fa:85:f8:92:1e:0a:20:b4:07:ed:5a:4f:9b:bc:2d:51:5b:03:
9c:9a:75:99:76:d2:e8:3f:a6:51:8d:48:df:71:3b:57:c9:d5:
63:40:88:c7:37:cb:84:69:05:68:36:5e:1e:fc:da:52:c6:e1:
d9:3a:3f:38:a5:8b:24:da:d8:08:19:34:c5:5b:75:b7:5d:2c:
74:db:69:94:4e:cd:4a:83:7e:ce:06:26:87:f2:04:8a:9a:84:
92:72:a5:9f:95:8e:1a:09:b2:f8:76:50:01:92:fa:5d:ae:87:
ec:4a:1b:57
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:33 2024 by rpki-client on console-ams.rpki-client.org