Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c0XTOFGViQaITYcWQKS-0shG0U4.cer
File: c0XTOFGViQaITYcWQKS-0shG0U4.cer (raw, json)
Hash identifier: lKNjgu6G9nYjJm9gNdVgaR5G8e/1bbwOFxrymNLS6pQ=
Subject key identifier: 73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0217B5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Nov 2024 06:10:20 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 203.26.136.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137141 (0x217b5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 1 06:10:20 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A912F3B6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:31:2e:c6:14:61:60:15:d1:4c:4a:c4:40:d6:
cc:1b:63:07:c6:1f:3b:aa:12:b9:af:e6:4c:1c:ba:
97:d1:15:1c:77:43:9a:25:1d:6f:0c:0e:63:dd:43:
f0:af:90:0a:54:06:b9:c5:48:18:5a:23:40:e8:42:
b9:7d:1b:1d:3a:93:ba:8e:ee:13:bd:5c:29:55:26:
aa:fb:02:c5:68:d5:e2:1b:f8:6e:22:9d:45:15:ff:
8e:a2:c3:d8:14:c1:b5:ea:7b:82:5a:66:3a:bc:ae:
5a:ab:57:20:0a:92:82:a9:53:ef:22:53:f4:c6:7a:
c7:c9:ca:eb:93:ea:87:5b:7d:02:4c:f4:f9:a6:78:
83:cf:c9:a1:6b:40:af:0d:69:1c:5e:74:c0:ab:7e:
d5:8f:c5:d8:f1:b9:1e:fb:3c:e3:d6:fd:ef:15:05:
38:80:cd:91:18:69:39:3f:1b:2a:aa:79:d8:90:cf:
3a:6b:f2:ff:68:76:35:4e:5d:57:55:87:15:78:d1:
ad:af:8e:50:3d:ff:7b:39:74:5c:8d:3b:ea:00:85:
d0:43:88:fb:d6:8a:70:7d:d9:49:b3:b9:34:df:50:
24:e6:50:74:c0:cf:a8:b3:11:fe:c1:6d:3d:13:09:
e0:f9:d6:a6:05:e5:39:d0:37:1a:30:a3:0a:cf:63:
77:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:45:D3:38:51:95:89:06:88:4D:87:16:40:A4:BE:D2:C8:46:D1:4E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912F3B6/59C4AD4A48BA11EFBD45163DC4F9AE02/c0XTOFGViQaITYcWQKS-0shG0U4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.26.136.0/24
Signature Algorithm: sha256WithRSAEncryption
54:0a:06:e8:a3:45:e0:e4:36:56:f2:75:a0:d6:03:70:98:2a:
3d:03:9d:1a:73:16:4a:f5:08:ef:55:30:89:77:b3:e6:b3:a5:
99:42:e3:34:b6:ab:be:23:9c:0f:68:ae:5d:97:80:aa:da:29:
35:af:1c:20:1a:7d:43:f8:41:1a:c5:27:56:8a:c3:25:07:a3:
fa:44:e2:a2:ea:16:f5:9f:b3:e4:e9:ba:e1:30:bd:7a:24:9b:
00:92:48:2d:25:eb:ed:5f:30:f9:b3:10:88:f0:3d:ce:90:af:
86:db:ad:eb:57:39:35:e1:9c:17:af:7f:e8:6e:6a:54:af:60:
bc:c2:1c:a9:e7:05:b5:95:10:9d:ef:83:99:49:45:7a:1d:41:
99:87:db:87:74:89:b6:13:cd:87:ec:bf:93:ae:29:7a:42:e7:
65:e4:9a:60:c4:3b:d2:15:97:12:5b:e1:c5:a5:56:6b:eb:b5:
b0:2f:18:bd:46:81:0b:4f:24:03:7b:b5:68:10:e4:de:63:5b:
45:0c:06:21:c1:4d:cd:1e:02:67:ed:10:d8:30:1a:3f:f3:4e:
de:be:e4:f5:07:42:d5:59:57:0d:74:f6:78:fc:90:82:95:d8:
3d:9a:f0:13:ea:d7:df:00:ef:26:cf:56:21:f1:fb:b8:86:17:
4c:d9:65:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:06:13 2025 by rpki-client