Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/X2BRhzuBUG4leKxYsyaPAd_ybsw.cer
File: X2BRhzuBUG4leKxYsyaPAd_ybsw.cer (raw, json)
Hash identifier: Idea6XqCCNaUq87Arsl270nBW0QCi/JCFaVBj7p1VZQ=
Subject key identifier: 5F:60:51:87:3B:81:50:6E:25:78:AC:58:B3:26:8F:01:DF:F2:6E:CC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D23D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/X2BRhzuBUG4leKxYsyaPAd_ybsw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Dec 2023 14:59:32 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 103.30.100.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119357 (0x1d23d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 15 14:59:32 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91693D7/serialNumber=5F6051873B81506E2578AC58B3268F01DFF26ECC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b2:a4:23:4f:0f:bb:ef:28:66:45:0f:5d:f5:ad:
e3:23:b0:fa:2c:20:c4:fa:d0:7c:32:05:67:ef:e2:
b3:7b:39:96:32:fc:02:3b:d9:3f:ab:68:25:f0:39:
75:7a:49:0d:85:8f:8e:d5:a4:37:ed:f8:2e:d3:2f:
cf:23:e7:8c:43:96:c1:91:f8:9e:43:94:d4:00:14:
8d:14:c4:2b:bf:09:93:df:d5:9b:45:1b:4d:4c:eb:
55:7e:bc:a8:45:da:38:42:8d:32:09:dd:43:81:8f:
78:d7:12:40:e1:21:a9:f3:ec:d9:d3:81:c0:01:d3:
5c:27:fa:92:43:ba:35:85:f7:8f:07:33:3a:9e:bb:
e5:ee:1d:1f:c4:74:48:61:1f:35:1f:e8:53:03:53:
73:fc:a3:43:c2:bb:09:5f:63:88:df:7c:8c:5d:d8:
cf:87:03:3d:4e:8b:53:4c:27:c4:a1:f2:ef:e1:ca:
f5:20:73:d2:ac:60:19:7f:77:74:c2:85:33:f1:8c:
9e:e3:79:bb:9f:6e:b2:9f:20:12:af:65:ce:fb:6e:
15:22:8d:b4:a2:ad:0f:7e:68:82:e3:ab:42:63:d1:
9d:5b:3b:80:55:34:06:bf:25:b3:f5:09:6e:2d:1f:
5d:e9:a6:7d:d5:b3:ff:25:68:7b:92:12:a2:ab:e3:
c2:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:60:51:87:3B:81:50:6E:25:78:AC:58:B3:26:8F:01:DF:F2:6E:CC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91693D7/1878EE0C553C11EB9BCADC70C4F9AE02/X2BRhzuBUG4leKxYsyaPAd_ybsw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.30.100.0/22
Signature Algorithm: sha256WithRSAEncryption
68:e1:8a:e2:74:88:ac:e6:3f:a3:58:34:83:76:66:e3:f5:1d:
27:25:e7:46:26:9a:c6:6f:6b:d8:45:1f:96:4f:6a:20:5d:84:
78:1e:77:05:e0:58:cb:08:1d:61:a0:b7:26:af:a3:31:cd:8a:
72:8d:cf:b8:ee:05:a4:25:58:e7:42:f2:18:3e:fa:d2:5b:f2:
f1:bc:79:ab:e0:81:3b:21:e7:89:bc:ef:4e:ee:5a:80:68:37:
7d:62:4d:56:42:41:a8:66:68:8a:bc:61:5b:0d:c9:15:0e:fc:
51:b8:67:a9:74:67:7b:b6:5f:2c:86:f7:74:ec:19:57:1f:c2:
4b:9d:3b:03:bd:c6:1f:ce:4e:e9:6c:8b:0f:c0:95:bf:bf:b6:
d4:cf:9a:03:24:62:f5:0a:c1:f1:47:7f:8b:0c:ec:c1:03:85:
f0:c0:c6:94:22:e5:cc:2c:1f:73:f2:66:1f:8b:e7:3f:52:3d:
79:ef:d1:62:8a:5f:9b:8b:5d:07:ed:36:b3:2e:78:12:95:1f:
59:98:58:89:94:5d:92:10:9a:00:78:88:33:fa:07:b5:8f:f1:
15:5f:b4:70:93:79:2e:9c:a7:18:5f:e4:82:e2:c9:d1:bc:04:
bd:f2:95:da:c0:8f:fd:f0:5f:df:d6:42:ec:b7:47:88:e8:aa:
61:0a:48:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:46 2024 by rpki-client on console-fra.rpki-client.org