Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/W4LojAFBMoI9Ag1cMKa_ttW1AiE.cer
File: W4LojAFBMoI9Ag1cMKa_ttW1AiE.cer (raw, json)
Hash identifier: 1Phpm33kBkEMDUrl1uhE//Oi00XWQald1SyBSjQkqMo=
Subject key identifier: 5B:82:E8:8C:01:41:32:82:3D:02:0D:5C:30:A6:BF:B6:D5:B5:02:21
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C301
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/W4LojAFBMoI9Ag1cMKa_ttW1AiE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 09 Oct 2023 22:45:53 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 38624
IP: 117.120.32.0/21
IP: 2401:45c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115457 (0x1c301)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 9 22:45:53 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A911069A/serialNumber=5B82E88C014132823D020D5C30A6BFB6D5B50221
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:93:43:84:e5:f4:a3:c8:e3:cd:93:85:fa:eb:
31:66:6e:88:09:c7:6d:81:a4:3d:00:f0:65:ab:61:
71:44:a3:76:21:f2:99:e8:6a:10:22:42:6a:37:fe:
49:f8:9f:59:cb:ac:da:5f:01:91:71:0c:cb:72:80:
f2:a8:11:67:1d:a2:7a:66:cc:b9:c8:1b:68:8f:fc:
9e:3b:f7:8a:e7:d9:7b:b2:fb:83:06:dc:2c:72:ce:
2a:77:16:49:15:bc:c5:b7:d2:76:c0:9a:3e:32:c7:
94:e5:bb:77:dd:9a:b0:04:ed:8e:f2:57:4f:24:19:
22:95:1a:bb:07:db:15:eb:a7:70:d5:f6:00:b8:6c:
ce:60:fd:bc:25:06:b6:28:39:f9:88:fb:1d:85:74:
dc:69:32:85:fc:05:0a:9d:82:1d:70:c6:57:d1:0a:
5d:41:99:46:a5:a6:b4:5d:5b:ea:e0:04:48:78:47:
9a:ca:22:6c:a0:20:35:e9:4c:41:cf:75:c2:8c:c5:
97:65:32:27:ad:ac:2b:cc:49:7d:73:c0:86:c2:d6:
0e:0d:c7:5e:38:7b:38:fb:7b:e4:10:a8:0a:bb:1a:
c7:a3:53:8d:02:c7:46:4a:12:db:af:9f:ba:65:27:
f3:a3:0b:a0:ca:09:9a:f5:77:8a:5e:92:b0:b6:7f:
47:a5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:82:E8:8C:01:41:32:82:3D:02:0D:5C:30:A6:BF:B6:D5:B5:02:21
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911069A/961B2A4666F511EEA4384F74C4F9AE02/W4LojAFBMoI9Ag1cMKa_ttW1AiE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38624
sbgp-ipAddrBlock: critical
IPv4:
117.120.32.0/21
IPv6:
2401:45c0::/32
Signature Algorithm: sha256WithRSAEncryption
77:0e:43:59:7d:24:c7:6a:fe:1f:af:f5:da:f3:2e:3e:1a:00:
8d:ae:d8:3c:2a:88:57:90:e4:09:3f:19:22:88:cd:e3:b8:c8:
84:2a:f7:96:6e:8c:c1:29:51:5d:69:30:aa:63:30:80:2c:d7:
dd:54:2e:1d:7a:52:94:ff:2f:35:4c:ef:48:93:42:89:45:c6:
57:25:a4:8e:ef:00:b3:c6:94:0a:53:f3:e5:9e:cc:3c:0e:30:
11:a7:09:0c:dd:17:19:9e:cd:6c:9e:ac:d7:e8:26:1a:f1:3f:
e1:2a:34:73:15:88:66:76:9e:8b:d1:1f:55:b7:da:64:e8:46:
43:2b:40:58:bf:eb:2d:a1:90:82:4e:11:0c:88:4f:a4:04:2a:
8e:65:95:fb:95:1d:1a:cd:93:37:c3:ce:01:a6:7d:7f:2d:a9:
27:68:3a:96:52:3f:50:19:a9:4f:68:d7:5f:44:44:23:55:0a:
54:f2:26:24:2a:2c:cf:a6:44:5d:f4:04:33:5f:aa:8c:17:64:
c2:b2:2a:aa:fd:84:6e:4b:56:3a:11:e7:af:d8:73:2d:02:ac:
b7:8e:35:30:4c:75:21:c9:d6:ae:d0:ba:9e:d3:40:ec:42:fc:
99:8d:d6:09:97:f4:cc:22:8d:93:63:16:8d:33:61:ff:61:2d:
e1:dc:f9:49
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 08:52:40 2024 by rpki-client on console-fra.rpki-client.org