Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer
File: cC-hrpaCsrIuzdmlMBLw5vG6G5w.cer (raw, json)
Hash identifier: iTS86IKnQdjgV2S0ppYlqQnM9wQMLHNpuDGpz1rpIik=
Subject key identifier: 70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AD5B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 01 Jul 2023 05:01:49 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 56309
IP: 43.229.76.0/22
IP: 103.22.180.0/22
IP: 2403:2300::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 21:26:49 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109915 (0x1ad5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 1 05:01:49 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A917B540/serialNumber=702FA1AE9682B2B22ECDD9A53012F0E6F1BA1B9C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:7c:99:d5:3c:e3:c0:fa:04:35:76:8b:bd:66:
1a:0f:52:b1:d3:ff:70:68:40:d8:10:17:f0:4a:81:
f4:b0:eb:b9:72:ed:a9:11:82:c3:d7:01:88:29:9b:
aa:fc:4a:0f:0c:24:51:ec:b0:82:70:05:c5:13:8d:
cb:b6:2f:3f:d9:ed:bb:8c:bb:55:81:5e:21:b8:56:
e6:20:44:02:cd:c0:7e:db:1f:39:b2:14:55:f1:58:
5d:92:b8:13:14:c4:d1:27:80:da:da:38:b8:5c:a5:
23:c2:5d:3b:19:5a:e4:e0:dc:be:5f:df:39:fe:f4:
66:3d:4c:6b:97:3c:87:5b:bc:03:ac:43:b5:9a:76:
2c:87:b0:91:3a:53:e7:d7:20:00:9f:99:16:7b:a8:
db:59:32:34:da:79:f1:82:1e:89:38:b8:f5:d5:af:
43:3f:c7:11:1a:a4:c3:a4:e7:c4:f4:4e:e0:e2:e1:
d5:58:0e:06:94:21:73:06:4c:e4:f6:19:58:7d:47:
7c:04:13:87:83:d6:b3:3e:5a:ee:34:0d:db:74:fc:
a9:4a:1f:0b:19:80:f2:3d:55:e8:45:d9:57:06:5e:
ee:77:6e:1c:24:32:f7:35:49:6e:58:b7:f9:65:c2:
92:0e:b9:67:e0:04:db:51:0a:7e:6e:bc:c4:0e:cb:
13:7b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:2F:A1:AE:96:82:B2:B2:2E:CD:D9:A5:30:12:F0:E6:F1:BA:1B:9C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917B540/D97A95BCF88011EDB9ABFC56C4F9AE02/cC-hrpaCsrIuzdmlMBLw5vG6G5w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56309
sbgp-ipAddrBlock: critical
IPv4:
43.229.76.0/22
103.22.180.0/22
IPv6:
2403:2300::/32
Signature Algorithm: sha256WithRSAEncryption
a2:1a:38:07:98:a6:87:46:26:08:d4:f2:08:7f:20:31:0e:c5:
8e:81:f7:60:67:ab:95:ae:3f:ea:bf:79:1c:6a:cf:14:4a:90:
d4:69:2e:ce:98:45:99:e2:5f:4c:9b:57:db:60:92:1c:d6:2b:
a8:07:09:18:1c:37:2c:94:b6:ad:ff:22:aa:e2:04:93:c8:6e:
5e:92:22:57:1c:f4:3e:61:23:34:22:2a:f5:0a:2b:38:0f:a4:
d5:b0:b6:a7:95:d7:5f:59:ca:7e:5a:93:2e:ee:d4:11:05:bf:
f5:a8:51:4e:7b:ab:5c:4c:4e:e7:06:23:4d:15:d9:63:45:c8:
c8:f1:5a:c7:1d:c9:66:84:a7:42:cd:9e:50:ae:f5:6e:61:61:
e3:ef:8e:9f:53:90:87:f4:9c:de:42:13:05:c2:05:e1:3d:a4:
7c:ca:05:06:96:f9:37:29:da:c2:83:4a:44:0c:31:4e:8d:7a:
6f:15:11:f8:f4:e7:6f:44:18:33:36:e7:93:d1:4f:af:51:25:
30:66:d6:8c:f4:8a:15:d8:4b:b5:b5:34:a8:65:12:33:99:bd:
ac:c0:de:52:54:f5:04:4a:1c:76:af:62:13:3e:13:e0:6f:a1:
b2:5a:8b:fc:64:6d:27:06:2d:cb:d1:2e:f5:b3:61:4e:5c:7e:
28:6e:2b:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 22:16:46 2024 by rpki-client on console-fra.rpki-client.org