Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c7Vh3zpYl29_rZl6m6jeX2dtz7I.cer
File: c7Vh3zpYl29_rZl6m6jeX2dtz7I.cer (raw, json)
Hash identifier: 2to10/TtwFP0kqCq3Ql/ebn69QFKXaOhH33O8rMEiNE=
Subject key identifier: 73:B5:61:DF:3A:58:97:6F:7F:AD:99:7A:9B:A8:DE:5F:67:6D:CF:B2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AF9C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/c7Vh3zpYl29_rZl6m6jeX2dtz7I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 11 Jul 2023 16:48:45 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 43.229.64.0/22
IP: 103.240.224.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110492 (0x1af9c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 11 16:48:45 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91B2492/serialNumber=73B561DF3A58976F7FAD997A9BA8DE5F676DCFB2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ad:ab:5d:3d:a5:01:3a:d3:a0:62:fc:b5:a5:
45:b3:22:c4:08:7f:c3:97:8c:a1:2f:ec:64:65:04:
75:dd:9a:fd:90:e7:93:6d:1a:c1:f2:5e:21:47:f6:
15:1c:05:f2:f5:0d:6f:90:db:f8:6d:16:dc:c7:db:
21:26:ea:54:c0:37:45:35:37:11:36:3a:81:71:70:
06:23:08:22:de:97:cf:ab:42:fe:c6:ab:71:ae:ec:
17:a7:8e:55:52:4b:a1:44:80:77:23:b7:b9:e2:d2:
a0:bf:fb:ae:89:ef:21:ad:94:14:48:7f:31:f7:6b:
69:3a:b6:00:c5:b6:32:c5:38:02:ab:75:77:c5:35:
36:38:f3:98:2f:0d:18:6c:0a:65:0c:d0:49:f7:f9:
fa:72:03:9e:01:ea:4c:b1:9f:49:4a:74:aa:13:b1:
fb:9a:53:17:18:a4:02:ce:66:68:52:9a:e5:9e:66:
31:83:d2:28:93:36:53:cf:22:80:4e:fe:c2:df:00:
12:86:76:48:32:ff:0c:43:6a:c5:04:45:b8:21:e5:
3b:e1:0d:52:da:a9:ce:8c:8e:0c:c8:df:a7:a5:8f:
83:db:11:cb:5b:43:61:14:01:e4:2e:75:3c:09:36:
ee:63:b9:8b:78:a1:99:76:f9:46:45:c4:eb:24:f6:
44:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:B5:61:DF:3A:58:97:6F:7F:AD:99:7A:9B:A8:DE:5F:67:6D:CF:B2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B2492/DAD510D43CB511EAB82CCC6CC4F9AE02/c7Vh3zpYl29_rZl6m6jeX2dtz7I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.229.64.0/22
103.240.224.0/22
Signature Algorithm: sha256WithRSAEncryption
67:04:6f:88:8e:f4:b9:01:1a:ab:35:39:57:c5:fe:32:bd:dd:
fa:6b:ba:c8:7d:71:62:23:ac:cd:13:59:ed:63:f7:d9:b9:49:
d5:33:a3:59:c5:4f:e5:81:17:08:c4:0e:dc:24:df:b1:32:5b:
7a:b0:ca:d0:54:0f:8b:6c:7f:13:7d:56:18:b4:be:be:9f:d7:
30:17:b1:5d:b5:a7:e2:cb:ea:3e:de:c7:22:f4:2c:66:99:e6:
6c:f9:c9:80:6c:74:e2:aa:13:83:07:1b:1f:68:7f:12:f0:f1:
17:01:c0:a8:3f:a2:43:01:0f:03:db:11:22:ba:81:07:a7:ca:
f7:d2:c7:dc:5c:69:67:35:a5:2c:b2:67:ea:b0:dd:6c:bf:f5:
d6:dc:1c:03:08:6b:f2:f9:ef:6c:c9:c7:9a:fe:3c:39:ee:7a:
d0:9e:f7:06:f5:26:c1:e8:74:61:37:23:5e:b0:87:bd:1b:2e:
6a:25:26:e9:82:c4:f0:77:9c:35:6f:c8:52:32:27:17:0f:fa:
28:af:98:a4:87:98:4f:da:89:65:2c:44:9d:70:87:37:67:9c:
19:f1:7d:f0:4a:ae:61:2c:f6:a5:a3:7f:b0:60:fd:f4:89:94:
4d:09:5a:1b:f9:cb:c3:04:f6:7f:d2:0d:d4:78:21:b7:14:93:
3c:fc:af:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:02 2024 by rpki-client on console-ams.rpki-client.org