Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer
File: YCdrQR9t9pTdNkxP04LyXJ5qYGI.cer (raw, json)
Hash identifier: fHfftimWbOUEFEZae+ya9ttCHrFrSMjnLBQFMvNEt3Q=
Subject key identifier: 60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C889
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Nov 2023 20:11:31 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 103.124.104.0/22
IP: 2403:de40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116873 (0x1c889)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 20:11:31 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A919FA55/serialNumber=60276B411F6DF694DD364C4FD382F25C9E6A6062
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d5:1f:1e:f4:27:7d:5b:66:14:84:61:6d:06:3f:
33:78:63:31:c2:ab:44:07:1c:bd:73:fd:46:50:e3:
ae:32:47:0d:db:d3:ab:e1:c2:82:30:c1:e4:bd:c1:
f0:ce:fa:e8:a0:88:d2:1d:40:f6:02:17:3c:94:72:
01:95:4b:93:65:da:80:f6:a4:b4:b4:81:11:43:27:
1d:b4:34:7a:6b:71:62:97:e6:f3:75:f7:a6:aa:02:
9d:1e:ad:fb:7f:9c:9a:ce:05:bc:8a:95:e5:5a:77:
40:66:dd:cb:c2:84:2d:6d:d8:85:9f:e5:7a:45:06:
b6:02:cd:98:b5:f2:d2:79:9f:48:4f:d9:15:58:3b:
71:2c:d0:d9:f3:e5:01:76:f0:d3:5d:df:7a:2a:ae:
cb:78:5d:13:bb:d8:be:f0:37:d4:8d:09:ac:b1:71:
05:42:c8:b8:bc:46:a9:27:e7:b1:d9:df:44:20:a0:
ff:d4:94:ce:e6:0b:ec:0f:62:73:c6:16:ea:e5:36:
c1:b9:d8:6e:eb:33:c5:d4:da:d3:a9:26:d1:43:7c:
3f:31:0f:1e:e9:0a:3d:f8:21:5b:85:9b:55:73:1a:
ac:ff:ed:76:7b:f9:48:72:79:2d:79:5f:a1:be:2f:
0f:02:9e:3b:7b:2a:7d:53:09:b3:17:ef:83:42:6c:
fc:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
60:27:6B:41:1F:6D:F6:94:DD:36:4C:4F:D3:82:F2:5C:9E:6A:60:62
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919FA55/0F9E616E40FC11EEB8206744C4F9AE02/YCdrQR9t9pTdNkxP04LyXJ5qYGI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.124.104.0/22
IPv6:
2403:de40::/32
Signature Algorithm: sha256WithRSAEncryption
ac:4a:52:1b:5e:27:98:2d:bc:97:5d:56:17:b4:2d:f6:5b:3f:
4d:c5:b9:2a:3d:6e:f1:7a:92:7d:b6:d6:27:1a:a8:13:01:0c:
15:90:4d:5c:97:0f:43:48:17:77:4d:17:9b:99:75:23:f3:d9:
29:06:e7:c9:54:11:21:e4:61:bc:8a:4c:37:78:f5:38:24:a2:
c9:5a:81:92:8a:82:a2:3d:1d:18:19:ef:ef:89:1d:0b:a4:0c:
8f:33:6b:75:15:f8:18:05:c3:57:c2:01:94:88:47:87:aa:3f:
4e:13:c4:24:d1:33:70:7c:9a:bf:e0:8b:0d:a5:7d:4b:27:64:
b0:00:ac:a1:65:b8:e3:ff:8e:98:1c:7d:c1:d4:6e:c0:d0:71:
08:77:b9:ed:af:28:28:0d:e7:f4:c0:07:0d:46:f8:b4:3e:83:
4c:a2:54:7e:1b:7e:cf:34:6b:bf:5c:f3:5c:ef:23:af:64:50:
04:85:f8:de:6e:03:ad:9d:05:e2:d4:dd:3f:dd:d2:c1:ee:f8:
26:6d:c5:4e:ca:9e:ae:fa:78:10:70:55:86:29:72:65:d3:39:
de:04:90:29:31:f2:8c:9d:8a:85:0b:8c:18:c3:72:6b:70:47:
6b:6d:94:77:2f:9e:14:1d:46:97:9d:de:16:62:a6:19:e7:ba:
6c:c2:e4:4f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:35:24 2024 by rpki-client on console-fra.rpki-client.org