Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cPp5EccBLljvn7BaVaTOb7Bgm88.cer
File: cPp5EccBLljvn7BaVaTOb7Bgm88.cer (raw, json)
Hash identifier: ztx5r5wKF++3rv/PSPBcOVP5Sj5aL3TERoABjYJ7Hoc=
Subject key identifier: 70:FA:79:11:C7:01:2E:58:EF:9F:B0:5A:55:A4:CE:6F:B0:60:9B:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02013B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/cPp5EccBLljvn7BaVaTOb7Bgm88.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jul 2024 17:48:00 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 56057
IP: 103.82.152.0/22
IP: 111.118.220.0/22
IP: 2402:e500::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 14 Sep 2024 20:15:08 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131387 (0x2013b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 18 17:48:00 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9119465/serialNumber=70FA7911C7012E58EF9FB05A55A4CE6FB0609BCF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f9:89:6e:84:92:8e:bd:83:c2:1d:c9:59:2a:24:
88:5e:3c:1b:ee:b8:3a:79:e6:d3:68:1b:b6:47:aa:
cd:29:2e:57:6a:34:e0:4f:4e:12:ef:d5:8a:45:9e:
c8:1a:12:d4:4c:a5:de:c3:1e:a9:f7:c2:f0:5b:b6:
a1:89:69:9e:89:c0:ac:61:31:65:58:00:f3:8a:4b:
34:9d:f7:cc:a8:e8:5e:bc:46:83:e1:32:5a:53:ba:
b7:05:33:39:7f:78:f2:06:ec:2a:98:b5:8f:57:59:
f8:68:76:f7:35:15:bb:33:78:b6:e7:9f:38:2d:c7:
5e:55:ed:82:91:3b:d0:83:41:f4:54:79:d9:75:17:
d9:d2:85:81:30:64:7d:31:53:8e:eb:ad:ef:4a:48:
c2:96:cb:06:6c:37:8c:92:2e:33:e6:ea:c7:a8:08:
0f:ed:d9:fc:e7:da:43:7f:53:94:25:90:bc:e3:dc:
fa:c6:aa:0f:e9:54:da:37:9a:4f:1b:0c:45:d1:6d:
fc:e2:42:3d:16:6f:11:2d:5e:54:bb:d0:87:6b:99:
1a:ff:b6:50:98:06:2e:a1:ea:9d:19:cf:78:18:d6:
5b:64:ff:6b:ae:c6:28:75:8d:d2:c1:4f:6b:25:60:
fc:f6:e9:a9:52:b8:86:0d:8a:c3:a6:1d:96:7f:68:
4c:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
70:FA:79:11:C7:01:2E:58:EF:9F:B0:5A:55:A4:CE:6F:B0:60:9B:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9119465/DC368AC2452D11EFADED634CC4F9AE02/cPp5EccBLljvn7BaVaTOb7Bgm88.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
56057
sbgp-ipAddrBlock: critical
IPv4:
103.82.152.0/22
111.118.220.0/22
IPv6:
2402:e500::/32
Signature Algorithm: sha256WithRSAEncryption
13:f3:13:ad:33:71:2e:72:3a:27:41:e8:94:55:b4:54:05:11:
50:9d:6d:3c:ce:de:92:e9:58:22:1a:1c:9f:0e:08:29:ec:c2:
0f:be:3e:ae:7b:55:91:d3:5a:67:fb:15:2b:94:38:cf:5e:b3:
83:36:bd:7b:64:cc:31:f7:23:bc:6b:ec:ff:3d:36:28:78:de:
44:dd:48:82:d6:56:8e:70:83:81:8c:02:c5:ad:e7:c7:b8:c3:
c0:c3:fd:8c:29:01:14:30:b8:ea:52:8e:16:47:ee:b6:f7:a3:
0c:d2:ea:ba:5d:a2:5c:91:96:b2:46:06:d1:db:f5:fc:17:6f:
15:0d:f1:0e:61:a0:80:b9:b6:f5:89:5b:ac:cb:9c:0c:5d:51:
a6:d8:5f:5c:a6:9a:54:a1:eb:b8:86:37:32:48:c8:0e:a4:9f:
bb:4c:ec:0a:69:4c:6e:c5:2c:5f:c6:82:d8:7b:b5:6a:88:5b:
54:04:95:e2:99:50:62:8f:53:0e:05:b3:74:20:f3:5d:6c:75:
2e:6c:04:cd:f2:51:23:04:0d:09:0b:c2:be:3f:4d:39:08:a7:
61:15:5d:0c:cc:69:9c:5c:80:61:9a:d5:67:5f:88:fb:32:d0:
61:a4:f4:7b:de:db:61:2d:8b:8a:91:f3:44:55:0b:5e:94:d3:
59:c2:92:94
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Sep 7 22:12:48 2024 by rpki-client on console-fra.rpki-client.org