Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer
File: c0XTOFGViQaITYcWQKS-0shG0U4.cer (raw, json)
Hash identifier: pxIMhFdtCDOfhz4Z/f/zeGP+XFZ1+F9x79VPNiB3XMQ=
Subject key identifier: 73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0201AF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 23 Jul 2024 06:11:14 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 203.26.136.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131503 (0x201af)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 23 06:11:14 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A912F3B6/serialNumber=7345D33851958906884D871640A4BED2C846D14E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:31:2e:c6:14:61:60:15:d1:4c:4a:c4:40:d6:
cc:1b:63:07:c6:1f:3b:aa:12:b9:af:e6:4c:1c:ba:
97:d1:15:1c:77:43:9a:25:1d:6f:0c:0e:63:dd:43:
f0:af:90:0a:54:06:b9:c5:48:18:5a:23:40:e8:42:
b9:7d:1b:1d:3a:93:ba:8e:ee:13:bd:5c:29:55:26:
aa:fb:02:c5:68:d5:e2:1b:f8:6e:22:9d:45:15:ff:
8e:a2:c3:d8:14:c1:b5:ea:7b:82:5a:66:3a:bc:ae:
5a:ab:57:20:0a:92:82:a9:53:ef:22:53:f4:c6:7a:
c7:c9:ca:eb:93:ea:87:5b:7d:02:4c:f4:f9:a6:78:
83:cf:c9:a1:6b:40:af:0d:69:1c:5e:74:c0:ab:7e:
d5:8f:c5:d8:f1:b9:1e:fb:3c:e3:d6:fd:ef:15:05:
38:80:cd:91:18:69:39:3f:1b:2a:aa:79:d8:90:cf:
3a:6b:f2:ff:68:76:35:4e:5d:57:55:87:15:78:d1:
ad:af:8e:50:3d:ff:7b:39:74:5c:8d:3b:ea:00:85:
d0:43:88:fb:d6:8a:70:7d:d9:49:b3:b9:34:df:50:
24:e6:50:74:c0:cf:a8:b3:11:fe:c1:6d:3d:13:09:
e0:f9:d6:a6:05:e5:39:d0:37:1a:30:a3:0a:cf:63:
77:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.26.136.0/24
Signature Algorithm: sha256WithRSAEncryption
60:0c:4a:99:b9:44:cf:c2:b1:66:2b:b2:01:78:ca:d5:e7:4e:
45:df:89:0f:b4:1c:5c:8c:7e:a0:ce:33:96:79:89:c3:6d:74:
f1:08:df:4c:b3:a6:2f:25:fe:33:52:14:79:07:6a:34:e6:ef:
a4:b5:d6:9e:3a:bc:9e:fa:81:e8:e9:3a:49:f9:35:cd:74:95:
c7:79:6d:1d:27:de:e4:b4:8d:5f:20:70:c1:5a:e2:ea:d4:50:
6f:76:d3:ca:0c:ec:c2:7f:51:b0:aa:27:2d:37:a0:a1:b4:50:
b7:01:ea:98:7c:cc:ef:28:47:3b:26:8e:7e:13:b8:71:ac:f5:
2e:26:1d:2b:ac:b3:66:45:dd:cb:99:4e:be:ab:66:0a:85:70:
ed:ec:2c:a7:75:f9:f6:1a:30:f3:5f:19:f4:6b:78:db:17:25:
bb:d7:cf:5a:a0:d6:f8:cf:f8:04:14:59:3a:68:38:87:8e:e0:
d5:f2:08:7e:4e:bd:73:84:31:60:4b:30:7a:9e:e1:3a:c4:2b:
c0:82:d7:a6:c7:9d:35:a9:b7:58:83:31:7b:de:db:1e:fa:14:
ef:9c:7c:c1:78:bf:4f:ef:b1:61:4e:dc:a3:36:30:ba:28:ca:
36:2a:8c:8a:1a:44:d1:32:c2:05:d6:3d:05:27:cc:97:17:c1:
e3:b5:6c:6c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:12:48 2024 by rpki-client on console-fra.rpki-client.org