Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/VTkPP2s7MO1KnG-5rYKXuO-ZBuA.cer
File: VTkPP2s7MO1KnG-5rYKXuO-ZBuA.cer (raw, json)
Hash identifier: PAYMItAfJGB2HDGL3RrRjvw/jntrLgiBTRB0oNRHlS4=
Subject key identifier: 55:39:0F:3F:6B:3B:30:ED:4A:9C:6F:B9:AD:82:97:B8:EF:99:06:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DB49
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912404E/49DF653EBF4211EE9B359656C4F9AE02/VTkPP2s7MO1KnG-5rYKXuO-ZBuA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912404E/49DF653EBF4211EE9B359656C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jan 2024 07:36:39 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 103.254.220.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 23:13:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121673 (0x1db49)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 30 07:36:39 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A912404E/serialNumber=55390F3F6B3B30ED4A9C6FB9AD8297B8EF9906E0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:3d:42:a4:01:14:a1:a9:26:88:18:53:0b:aa:
76:f9:d8:6d:da:63:05:d1:6e:4e:fe:42:bd:4c:9a:
26:86:32:53:14:03:c6:18:76:cd:e0:0a:b5:91:a6:
51:24:dc:82:39:08:db:af:e6:d8:0d:2e:2d:63:31:
c8:17:2a:03:23:96:8e:3e:d6:63:a8:c8:a1:c5:40:
c8:56:06:c0:8a:ac:dd:e3:a4:72:d0:0e:59:64:5e:
55:15:be:c0:d2:fd:99:3f:e9:0d:3e:6c:40:05:ff:
a9:1c:d0:7a:41:77:fe:19:e4:ee:24:c3:32:2e:83:
09:dc:98:b1:47:8a:d2:71:e8:1a:c4:30:12:a3:f7:
9e:52:86:2a:3c:7f:9a:16:a3:7e:98:cc:a7:6a:b3:
44:d1:6c:42:33:1e:c1:c4:aa:ad:07:a4:b9:c7:a3:
07:b8:2f:14:c3:46:61:64:98:be:58:3e:82:0e:8c:
78:92:c5:68:f6:05:80:f0:2f:24:c2:e2:98:85:f5:
3f:99:55:9a:11:cb:66:a5:91:d5:ab:23:d4:51:b3:
b6:7e:d7:13:20:80:4a:00:47:06:c8:9e:8f:c3:02:
42:7a:3b:c7:16:44:39:a8:71:4a:0e:b6:83:92:2c:
fb:87:ee:5c:3f:de:a2:83:be:cb:77:2b:8c:b1:23:
63:fb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
55:39:0F:3F:6B:3B:30:ED:4A:9C:6F:B9:AD:82:97:B8:EF:99:06:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912404E/49DF653EBF4211EE9B359656C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912404E/49DF653EBF4211EE9B359656C4F9AE02/VTkPP2s7MO1KnG-5rYKXuO-ZBuA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.254.220.0/22
Signature Algorithm: sha256WithRSAEncryption
96:12:de:c1:39:b5:95:1c:ff:e9:ee:90:cd:83:21:23:d7:d3:
0e:b2:2f:b7:62:77:d5:89:b7:b7:51:0f:af:e1:4b:de:e4:87:
02:28:15:4d:be:b7:a6:58:11:eb:50:ee:63:de:c6:b7:ff:07:
98:24:d6:37:24:c7:48:fb:88:b5:b5:98:89:c7:14:cc:25:a7:
39:7b:45:cb:87:7e:c5:bf:bc:3b:93:68:95:ce:fe:9a:07:fb:
ab:c1:8e:ff:3f:2c:bd:18:40:fb:44:1e:76:66:1d:17:b4:49:
7b:fe:e0:eb:0f:14:5e:37:1d:52:b0:81:e8:8b:93:b7:dd:53:
e2:fd:03:dc:bf:87:a3:1f:ab:a0:84:44:36:5e:2e:aa:11:d9:
57:82:5c:c3:3d:a6:99:31:4a:a8:d6:d1:45:46:ff:a0:2e:1e:
1f:03:bf:0e:ce:57:d7:56:7e:fc:b5:1a:a7:66:32:db:c0:e8:
45:38:51:49:52:3a:0c:05:a9:6f:75:df:7d:ba:00:91:91:53:
cb:76:04:c9:5f:9e:6f:ae:80:7a:74:ef:a9:44:bf:03:48:ba:
2e:32:b3:d3:50:6f:97:58:34:ec:b9:be:0b:00:f1:69:26:27:
0f:ab:41:b7:24:4a:f6:15:96:71:5c:b4:42:90:53:29:fe:25:
a4:57:57:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 00:10:58 2024 by rpki-client on console-ams.rpki-client.org