Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dEy0Bnedz3q-afF952ykOS2ebsM.cer
File: dEy0Bnedz3q-afF952ykOS2ebsM.cer (raw, json)
Hash identifier: F/Zn/kTR7E7hU8kKQ6jIBBD6eptZPZVxsFMCj2Cbju4=
Subject key identifier: 74:4C:B4:06:77:9D:CF:7A:BE:69:F1:7D:E7:6C:A4:39:2D:9E:6E:C3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021A3C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911535B/566792961D9A11E28AC17D8708B02CD2/dEy0Bnedz3q-afF952ykOS2ebsM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911535B/566792961D9A11E28AC17D8708B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Nov 2024 12:26:17 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 103.209.28.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137788 (0x21a3c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 8 12:26:17 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A911535B/serialNumber=744CB406779DCF7ABE69F17DE76CA4392D9E6EC3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e1:cb:ae:37:49:22:65:15:8a:32:47:44:c5:
ca:30:02:20:00:94:d9:ab:04:13:f7:06:c2:82:cb:
20:20:ee:89:1e:74:16:e1:22:7e:97:d5:69:c8:1f:
c8:bc:bf:8e:d3:8b:87:82:f8:6e:b0:4f:2a:d0:c8:
07:3f:ca:c3:09:af:88:0e:06:d2:2f:4c:5e:c4:a9:
98:d5:5a:1c:83:bd:f8:2b:bb:16:40:3e:87:26:c6:
c4:3b:90:ec:2f:35:fb:12:f2:24:ef:e2:5b:83:d3:
ff:98:c2:70:fc:36:12:0e:6e:da:f0:7a:54:34:17:
b4:6f:9f:4e:53:04:39:a3:fe:42:01:1f:d4:a4:54:
42:a4:4d:bb:f3:7a:95:5f:e4:a1:f2:ba:be:d7:a9:
e8:a7:8b:12:c4:08:b5:83:44:22:f7:35:45:34:3c:
22:87:48:ca:f9:56:ee:57:7f:80:66:b7:75:e1:56:
70:6c:d2:8c:91:0f:d0:cb:30:98:bf:f6:e0:4a:81:
87:ce:f8:72:3c:92:a0:22:f6:e3:84:56:72:2e:a1:
5a:9b:4b:66:a8:fc:62:2d:58:12:81:3e:a1:1b:b7:
ed:2c:68:a2:23:d2:c9:63:00:ba:34:d5:c0:6f:2d:
bc:22:bc:c5:86:a1:7b:22:55:85:49:e6:19:f2:4c:
00:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
74:4C:B4:06:77:9D:CF:7A:BE:69:F1:7D:E7:6C:A4:39:2D:9E:6E:C3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911535B/566792961D9A11E28AC17D8708B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911535B/566792961D9A11E28AC17D8708B02CD2/dEy0Bnedz3q-afF952ykOS2ebsM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.209.28.0/22
Signature Algorithm: sha256WithRSAEncryption
94:da:01:c9:2c:f4:5c:f9:a5:84:2b:b3:d3:f7:cb:5f:67:bf:
f2:b3:22:13:90:c2:80:e5:0e:59:7a:8c:1c:a4:31:75:c4:cf:
f9:b6:77:40:b0:d1:5a:56:90:c2:c7:ba:01:9e:ba:fc:c7:a7:
29:45:66:91:31:70:ef:c0:e9:05:d9:db:dc:fe:72:b3:da:e3:
96:db:c9:9b:c5:80:e6:ea:51:2c:4e:96:31:19:43:70:68:b9:
d6:fe:ef:7a:19:10:1a:62:54:8f:96:82:ce:c4:6c:46:32:8c:
12:89:f3:89:dc:22:ec:d8:4a:d5:f9:be:59:ef:de:c8:01:6a:
82:9e:d3:c1:f2:32:ca:94:13:67:95:67:c6:64:83:d7:3b:0f:
5a:28:04:e0:7e:34:6f:52:b3:5b:61:61:0c:ef:ea:2e:59:1f:
f4:65:87:54:29:ed:c3:69:78:24:4d:e9:41:4d:df:17:7e:c7:
20:91:e9:ab:7b:cb:b6:b1:d6:f2:5b:7f:51:15:77:44:38:01:
fc:b3:50:be:86:62:51:e1:53:7e:8c:d4:09:12:79:a1:f0:e2:
7b:ee:5b:6b:23:81:83:3f:2a:0b:a1:2b:6f:d1:cc:21:95:ee:
b9:eb:5b:3d:94:e9:52:26:41:2e:ba:bf:37:27:b0:11:ca:86:
61:17:f2:6a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:08:01 2024 by rpki-client on console-ams.rpki-client.org