Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/daF-q5BBtk2zdHHPtOv_WR6PaZM.cer
File: daF-q5BBtk2zdHHPtOv_WR6PaZM.cer (raw, json)
Hash identifier: 86UeVcxQqRZHRE8xch1f46a7dwr9DY1q7n3SyQ/5xsI=
Subject key identifier: 75:A1:7E:AB:90:41:B6:4D:B3:74:71:CF:B4:EB:FF:59:1E:8F:69:93
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021BB1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 15 Nov 2024 16:57:59 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 202.12.107.0/24
IP: 203.9.149.0/24
IP: 203.10.106.0/24
IP: 203.18.63.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138161 (0x21bb1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 15 16:57:59 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A919D626/serialNumber=75A17EAB9041B64DB37471CFB4EBFF591E8F6993
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e6:bf:62:87:d2:7e:9a:9d:6e:5a:34:7f:32:5a:
38:9a:ca:54:3f:bb:39:8c:15:2e:0a:8a:44:b2:ba:
ac:1c:f7:47:87:d0:ff:e9:08:87:cc:f7:d9:7a:c0:
99:b0:27:1a:b6:9d:74:26:52:3d:ff:fa:5c:1f:0e:
ef:25:8e:c1:29:60:71:ed:dc:b9:e6:6b:05:aa:91:
dd:ae:18:6c:19:7e:22:f1:58:c5:c0:c2:69:9a:a4:
4a:20:29:4b:27:bd:0e:51:35:20:d8:97:28:ad:12:
73:39:fb:42:fb:e9:a9:04:bd:2a:3e:09:27:a9:13:
b5:64:29:d3:2d:13:58:bd:c9:a1:06:8d:20:da:ec:
75:9b:d9:b8:73:58:75:e9:ed:87:5d:3b:f5:9f:2d:
38:01:f4:93:e8:f1:4e:5c:58:4e:34:4e:79:31:fd:
25:25:76:78:f8:11:78:48:f4:06:2e:95:83:d1:1d:
62:e3:fb:62:23:ed:d9:b1:7d:3b:79:42:5b:11:dc:
20:4e:70:74:c5:21:f8:9e:da:f0:3c:a9:95:6f:fb:
c3:a7:84:d8:fb:28:ae:03:07:4d:0f:f0:3b:7b:d4:
fd:39:bf:62:2e:5d:d7:57:18:f3:45:98:44:5b:43:
95:4b:0d:1f:66:02:5c:5d:b1:13:e1:39:d8:49:bb:
5a:8f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:A1:7E:AB:90:41:B6:4D:B3:74:71:CF:B4:EB:FF:59:1E:8F:69:93
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919D626/60081EAC8D7F11EB8D8BD60BC4F9AE02/daF-q5BBtk2zdHHPtOv_WR6PaZM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.12.107.0/24
203.9.149.0/24
203.10.106.0/24
203.18.63.0/24
Signature Algorithm: sha256WithRSAEncryption
98:77:e9:4f:1d:50:87:bd:fc:90:85:9c:b1:a5:57:48:0b:5d:
e7:e5:8b:63:03:50:9f:fc:74:f8:7d:7b:87:4d:8d:96:37:37:
fc:6f:75:12:91:4d:93:4e:d9:9f:77:6d:dc:dd:e2:da:53:04:
b3:b0:00:2a:71:79:80:04:d1:5e:c9:97:4a:12:ef:23:7c:1f:
aa:9f:e2:81:27:58:0e:6a:8d:68:20:26:86:0e:51:38:4c:c1:
6f:fe:22:db:96:fe:ff:13:88:e0:5b:03:ab:26:c1:af:d4:4a:
60:2c:d7:7a:70:f9:3d:4d:9e:57:92:8c:33:44:16:6a:ee:87:
bc:fa:15:94:d3:3f:e8:aa:d5:0c:eb:1e:b9:74:cd:b4:68:b9:
97:b1:5b:d0:f7:91:7c:9a:05:1c:45:2f:45:22:38:74:50:f9:
41:62:4e:dd:31:16:b6:45:78:50:81:6e:90:b7:40:d8:a7:49:
f3:14:be:a0:d0:c7:5c:4e:83:8f:85:ac:4c:44:48:6d:bf:bb:
63:77:f5:06:68:a6:7a:bf:bb:8d:8b:33:bc:91:af:ef:ac:1a:
74:ad:57:bb:4c:6e:ba:e4:10:cf:ba:86:71:e6:7d:45:42:10:
de:1f:5b:31:a8:1b:6b:ac:ba:f5:60:b9:80:9e:ea:6f:08:b1:
0b:35:a0:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:40 2024 by rpki-client on console-fra.rpki-client.org