Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dXzdmIRCA-nLQT1-XFgI0V5Usc8.cer
File: dXzdmIRCA-nLQT1-XFgI0V5Usc8.cer (raw, json)
Hash identifier: e3MGPdt1tH9WdbhcAi7drrtUMdO2yo3q5PH2AwdhSyg=
Subject key identifier: 75:7C:DD:98:84:42:03:E9:CB:41:3D:7E:5C:58:08:D1:5E:54:B1:CF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E106
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/dXzdmIRCA-nLQT1-XFgI0V5Usc8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Feb 2024 19:43:33 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 4635
AS: 4641
IP: 123.255.88.0/21
IP: 202.45.188.0/22
IP: 2001:df2:7400::/48
IP: 2405:3001::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 02 Dec 2024 07:16:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123142 (0x1e106)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 27 19:43:33 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91972B6/serialNumber=757CDD98844203E9CB413D7E5C5808D15E54B1CF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:58:64:4c:1e:5b:a9:db:14:d0:5c:55:3c:fb:
f3:95:9c:1e:d4:5a:ff:ad:76:3b:be:53:6c:3e:64:
50:0f:56:85:02:ea:a2:91:eb:ee:a2:14:9c:15:ee:
a8:96:0e:12:0e:2a:26:5d:fc:0f:7e:50:87:14:ad:
8b:18:42:ff:72:c1:3a:e5:e0:1d:26:62:82:56:68:
08:c5:e5:2a:f5:4b:06:39:80:af:c7:31:32:a0:cd:
94:8b:fa:ad:d8:5e:43:d3:e7:1e:0a:4b:41:49:2d:
cc:88:b6:80:8f:bf:9d:42:d6:f1:ec:71:2f:03:64:
ea:af:be:07:60:5b:5f:bf:91:57:13:a3:9a:b4:81:
15:6e:fa:91:1c:f8:d6:d9:cb:df:e1:f3:6f:c6:6e:
ef:49:72:c6:a2:1c:9d:1d:28:ae:4a:b3:86:57:a3:
00:88:1a:6a:57:b2:03:d8:8b:21:3c:17:13:8f:4e:
3c:7f:66:16:9d:f6:7f:cb:cd:97:54:1b:ba:0e:fb:
36:4c:c9:22:0d:3c:58:03:a5:3e:85:d8:0e:da:4d:
34:47:8d:4f:92:54:21:5f:4d:fc:d9:34:a1:09:eb:
a4:1d:7d:1f:88:97:d1:5e:b9:2b:f0:b7:9d:72:07:
d1:5a:6c:ea:e8:29:10:83:a5:f7:06:dd:22:e3:c2:
f4:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:7C:DD:98:84:42:03:E9:CB:41:3D:7E:5C:58:08:D1:5E:54:B1:CF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91972B6/F2B9E0A4132A11E9AE77AD7BC4F9AE02/dXzdmIRCA-nLQT1-XFgI0V5Usc8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4635
4641
sbgp-ipAddrBlock: critical
IPv4:
123.255.88.0/21
202.45.188.0/22
IPv6:
2001:df2:7400::/48
2405:3001::/32
Signature Algorithm: sha256WithRSAEncryption
2b:35:fd:a0:c2:d2:24:06:10:a9:9e:37:b6:a0:22:6c:82:34:
6d:69:b2:86:46:22:52:10:8e:34:0f:7f:af:a1:db:8b:2f:ec:
8f:e8:d7:02:3f:2a:fc:af:da:27:ae:46:87:30:07:2f:4d:3d:
44:43:1b:a4:c0:b7:05:87:dc:70:b6:3d:82:10:5e:0e:1f:4f:
b9:fe:b6:27:f7:33:4d:07:a2:3d:b4:90:3b:54:60:c2:fb:02:
48:0c:c4:c4:ce:23:ec:7e:f2:0f:1e:70:8f:3d:3e:47:ba:a4:
ab:86:2b:28:52:0e:9f:99:bd:9a:e9:92:3f:58:38:20:fc:a1:
97:d1:2c:99:15:e9:6e:3d:e0:bd:35:b2:c8:d3:bd:77:5a:01:
43:3c:3d:94:e6:e8:10:4c:fc:ea:cb:0b:e9:75:b7:22:08:a0:
f6:53:9d:be:cf:31:7f:dd:bd:83:a7:0f:57:10:cd:24:58:8e:
6a:e0:15:f3:10:5f:2d:12:88:02:c8:7a:e1:4a:c5:fa:9b:91:
e2:5d:d7:a4:e4:ba:52:d3:7b:cf:69:1e:bb:6a:76:81:bf:d1:
92:f9:89:d8:7b:f8:d0:46:33:a9:ce:f8:04:2b:b4:56:64:94:
02:c4:8d:f5:c7:5b:33:c6:80:18:52:26:cb:4d:97:e0:f5:ab:
54:23:9b:2e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 25 09:05:04 2024 by rpki-client on console-fra.rpki-client.org