Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/c_S729eiHW57nkv1sMgXIszCHWc.cer
File: c_S729eiHW57nkv1sMgXIszCHWc.cer (raw, json)
Hash identifier: ZIXkSc1Kp+bglfl9s8UnvNXT6376Vv9ETwaOPWhHwP4=
Subject key identifier: 73:F4:BB:DB:D7:A2:1D:6E:7B:9E:4B:F5:B0:C8:17:22:CC:C2:1D:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E462
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91BDDB8/D3DD37F8F3B311E888D37228C4F9AE02/c_S729eiHW57nkv1sMgXIszCHWc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91BDDB8/D3DD37F8F3B311E888D37228C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 13 Mar 2024 19:53:00 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 43.243.160.0/22
IP: 103.28.88.0/23
IP: 103.109.100.0/22
IP: 183.81.168.0/23
IP: 2402:7840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124002 (0x1e462)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 13 19:53:00 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91BDDB8/serialNumber=73F4BBDBD7A21D6E7B9E4BF5B0C81722CCC21D67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bb:63:e2:72:3f:e2:ed:9a:63:51:32:55:21:c5:
8b:b5:de:ca:08:87:de:57:e6:31:40:8f:ea:27:04:
72:59:9a:7a:83:3b:07:a2:1d:ea:14:90:63:3a:b0:
e6:1e:18:95:bd:79:0a:cc:7f:94:cc:aa:1d:9a:05:
56:bb:f5:30:f2:12:d0:07:f1:e1:bf:8c:0e:f1:22:
ed:25:4c:8e:a7:59:3f:98:a0:a6:ef:b3:b1:e7:7c:
5b:3e:ce:70:d7:71:22:bf:79:19:9e:89:ce:4e:b6:
0a:91:ac:8c:ee:27:0b:8f:3a:eb:ee:10:78:6b:fd:
e2:7b:13:12:d1:5d:5a:c8:3f:be:bd:a3:da:1e:cf:
4c:c2:76:cd:ba:c0:10:3a:63:39:43:aa:25:a3:2a:
d9:f8:17:c2:db:c3:f2:7b:53:be:59:ab:54:6a:b5:
49:2a:ba:82:9c:b1:81:b2:d7:d0:4e:bd:4d:04:6e:
7c:98:2a:9c:8f:41:27:40:45:e5:69:6c:f3:42:30:
21:57:9a:ff:66:ec:91:b5:d4:1e:4c:88:08:39:d0:
d9:c3:60:b3:74:4e:12:e2:d5:e3:45:93:60:93:63:
af:e1:a6:f1:fd:e0:0f:09:59:3d:e7:e6:1c:8f:67:
2e:05:98:5f:31:8b:4f:f9:fe:ac:2c:4d:11:14:1f:
10:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
73:F4:BB:DB:D7:A2:1D:6E:7B:9E:4B:F5:B0:C8:17:22:CC:C2:1D:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91BDDB8/D3DD37F8F3B311E888D37228C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91BDDB8/D3DD37F8F3B311E888D37228C4F9AE02/c_S729eiHW57nkv1sMgXIszCHWc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.243.160.0/22
103.28.88.0/23
103.109.100.0/22
183.81.168.0/23
IPv6:
2402:7840::/32
Signature Algorithm: sha256WithRSAEncryption
14:e9:ac:25:fa:74:78:b8:bb:6f:af:80:a0:53:50:00:8f:53:
42:13:4f:6f:20:c9:35:b9:cb:3b:7f:b0:59:3f:f8:a9:13:19:
43:9f:3f:f4:1f:94:cf:9d:2a:a0:32:92:07:b3:71:41:00:71:
d5:48:79:45:9c:ed:2a:11:cd:89:d6:22:b7:08:c8:75:84:70:
e7:8b:7b:4d:92:af:21:9b:62:bc:0e:e0:ad:86:01:37:4a:ec:
34:15:7b:12:a1:93:1d:80:2c:be:08:28:9f:d1:a6:da:88:61:
70:ce:1b:9a:39:05:0d:62:08:50:fa:3e:d7:9b:4f:19:d0:ff:
5d:0f:6a:7b:76:d3:b3:87:f2:82:c6:2c:03:3c:f2:ef:c7:cc:
15:c5:01:34:f0:e5:0a:fa:62:7d:ee:de:df:fe:9b:6a:92:2e:
9d:d9:ce:06:87:05:c5:98:e3:22:25:1b:5d:a1:54:ba:64:e8:
9f:4a:26:c5:f3:92:e7:dc:1a:52:2c:b0:c8:4c:b0:59:f7:26:
b3:d1:54:0e:02:3f:e4:3f:2a:e7:67:06:5f:27:eb:fb:cd:88:
34:9c:5a:43:e6:3d:65:1b:f5:45:88:66:ab:f1:ba:62:94:00:
6b:11:28:7b:a5:b3:89:f0:4c:1d:90:f1:19:49:24:59:cd:24:
1e:8f:4b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:03 2024 by rpki-client on console-ams.rpki-client.org