Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cu8y2vToP5AZKWMgh047RFAI7Dk.cer
File: cu8y2vToP5AZKWMgh047RFAI7Dk.cer (raw, json)
Hash identifier: E6srbB1mxl5NDTubShZQqgcqllzkVQFjhLsi+wtOrEU=
Subject key identifier: 72:EF:32:DA:F4:E8:3F:90:19:29:63:20:87:4E:3B:44:50:08:EC:39
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CDCE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/cu8y2vToP5AZKWMgh047RFAI7Dk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Nov 2023 05:36:33 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 103.38.221.0/24
IP: 210.79.172.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 20:59:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118222 (0x1cdce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 30 05:36:33 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A919ED93/serialNumber=72EF32DAF4E83F9019296320874E3B445008EC39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:b1:96:87:06:62:c8:b0:80:46:ea:1b:73:ed:
a4:b3:26:92:55:45:56:a6:d4:b3:d4:03:89:0f:45:
ba:43:6b:63:6e:00:61:7c:31:32:48:7c:0b:3d:0f:
92:3a:bc:ca:9f:e0:e1:88:75:bc:c5:f8:83:85:1a:
ed:46:1e:f7:3d:86:62:de:4c:f5:3c:be:85:b1:92:
74:f4:0c:48:6b:3d:98:b3:41:b3:de:66:ce:91:97:
1a:99:91:59:c2:84:5a:98:d7:a0:d9:c9:29:40:51:
37:d9:1b:b7:a0:70:6f:d1:7d:3c:18:c7:f9:66:b2:
ef:5f:f5:3a:36:54:5c:39:00:d3:32:59:b8:1c:42:
31:38:d7:74:05:7a:a2:14:11:5e:4e:04:20:0a:26:
68:03:06:7f:e0:19:80:11:86:d1:25:81:eb:34:37:
4f:d4:d8:23:64:fa:4b:67:25:c8:7e:90:30:cb:a9:
16:1d:bf:35:60:fa:ff:41:07:77:f1:c3:c5:8d:8d:
d0:d5:38:87:b3:20:aa:f4:fb:0a:7f:4c:85:38:10:
2e:03:73:0b:d9:0b:46:1c:11:e9:eb:da:f0:b6:74:
d3:09:83:7c:5e:a6:eb:43:86:a3:03:d4:97:48:4b:
e1:0d:16:98:1e:bb:8f:c0:ed:75:12:47:ca:a0:fe:
af:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
72:EF:32:DA:F4:E8:3F:90:19:29:63:20:87:4E:3B:44:50:08:EC:39
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919ED93/A36C68F468C611EE95964F7CC4F9AE02/cu8y2vToP5AZKWMgh047RFAI7Dk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.38.221.0/24
210.79.172.0/24
Signature Algorithm: sha256WithRSAEncryption
b3:e3:fd:e0:8f:14:f2:5b:69:b2:81:ed:0e:1c:ce:ee:20:cf:
8f:9a:d6:35:81:ea:1c:4f:05:cc:1a:87:40:6e:ac:8b:00:04:
db:90:4b:32:ff:3f:c5:9b:fa:71:b4:31:df:82:35:68:17:d5:
c6:9c:7a:6d:da:77:5a:f9:4b:6a:f4:fa:a2:9d:81:e3:6b:06:
e4:24:62:bf:bf:90:79:35:40:5a:5a:eb:32:2f:0f:11:66:18:
cb:8f:47:99:63:ca:87:e9:90:92:11:fd:ca:7d:e5:17:c1:3b:
83:0b:d8:fb:88:a2:21:1c:19:70:51:71:1b:b5:21:f3:8b:67:
2c:0b:79:78:db:c5:5c:32:65:34:db:10:d1:63:d7:e8:7b:5e:
ff:92:42:8e:80:86:29:de:90:1f:35:1d:52:8e:e1:64:d7:79:
16:7f:d0:12:90:18:69:a9:fe:42:81:04:fe:d1:77:8e:9d:d6:
d9:65:c0:99:5b:eb:e4:2d:18:46:d3:c1:4a:91:b9:42:b0:db:
3e:3d:a5:b7:ba:ac:bc:a4:d1:ff:97:77:e3:a1:fb:c5:a2:ed:
c6:95:c2:e9:25:a9:43:d3:f6:21:7b:1d:cf:2f:43:d6:0b:86:
66:80:41:80:9f:d4:ad:eb:54:01:c8:8a:41:77:ba:be:5c:e2:
9c:79:96:88
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 22:08:23 2024 by rpki-client on console-fra.rpki-client.org