Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-hwMVM9L_QxwRpYeani2dyFJ_I.cer
File: e-hwMVM9L_QxwRpYeani2dyFJ_I.cer (raw, json)
Hash identifier: TLsQ96KFZOPRO2mdzP07IueQ+MReT+Eh++VriDOgXaY=
Subject key identifier: 7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FAE3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 24 Jun 2024 20:21:03 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 202.36.34.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129763 (0x1fae3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 24 20:21:03 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91C35C9/serialNumber=7BE87031533D2FF431C11A5879A9E2D9DC8527F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:81:65:3e:0c:c7:e0:59:1a:e0:fe:4b:39:55:
b6:16:23:65:90:3f:9e:98:5a:83:39:d6:a3:64:ad:
90:ba:ff:d2:ce:f5:fd:e7:7c:55:d6:90:b0:de:41:
4a:ca:44:4d:2b:16:9a:4c:f1:83:6b:07:1d:a4:f3:
bb:e8:bb:03:0f:58:da:96:37:c8:64:6f:7d:55:0f:
2f:d6:7e:88:b1:19:cb:b3:60:2d:ed:df:29:76:9b:
0b:e8:f1:0e:fe:06:55:34:4e:bc:9d:e9:24:d2:6e:
79:e6:64:c4:e5:55:e1:8d:74:9b:ee:70:3e:87:34:
21:3f:fb:a2:df:24:92:52:98:4b:ed:2a:f1:32:f2:
6f:e9:c4:f7:76:3e:d1:10:3e:a5:a0:3a:49:a2:20:
b2:a8:95:5a:62:f6:dc:d1:e6:1e:21:eb:a9:56:a3:
e3:61:22:0b:ce:c8:0c:03:33:db:78:2a:72:3a:c2:
80:dc:b8:ca:a3:5c:85:f7:c8:c5:d4:87:2b:dc:7a:
9d:e8:01:b2:2e:ac:74:78:ac:10:3d:9f:e4:1b:b6:
a9:76:fb:71:60:11:c6:0e:67:2c:47:ed:b5:d2:ff:
d9:77:0c:8a:87:58:b5:72:7f:16:0c:18:c2:7a:f5:
c5:9e:b3:bb:13:4d:a6:dc:dd:22:0d:60:71:da:0f:
f4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.36.34.0/24
Signature Algorithm: sha256WithRSAEncryption
42:0e:36:4a:13:fc:6f:fe:b8:36:25:1e:eb:8a:96:1f:28:99:
2a:aa:56:e0:aa:fa:e3:e7:55:63:78:79:6b:6f:6e:2a:9a:67:
22:24:90:d0:68:4a:22:e5:dd:63:55:f3:04:fb:27:0e:d0:45:
e9:82:a1:e9:17:8c:0c:06:53:b3:82:3f:47:13:da:b0:ec:fb:
01:be:ae:75:42:7d:57:38:a9:01:f5:04:06:85:2a:c4:04:a6:
fc:69:aa:37:c1:ef:bb:6d:14:4d:1a:0e:a0:0e:36:76:47:bf:
85:59:8e:8f:92:0d:f3:44:44:82:ab:ea:bd:91:be:f9:8a:af:
b2:d3:15:59:e0:36:48:6a:3c:f7:a5:c6:16:f2:83:f8:8f:ac:
d5:b5:8f:72:ec:c9:75:ba:59:fe:1e:19:12:dc:9c:4e:68:56:
42:1d:a1:8d:ef:86:fa:d9:11:24:f7:c8:9f:1a:5b:84:3c:c5:
41:c1:c2:d1:38:c6:b0:34:8f:d1:1c:62:5f:c6:e9:e6:6f:94:
d6:ae:d8:c7:da:0e:c8:8d:46:30:06:86:94:9d:49:c2:5e:27:
49:a8:e9:13:77:0f:21:60:99:7c:d1:e2:65:39:5e:7d:c8:c9:
95:02:ca:0e:66:bf:b6:58:63:c7:00:0a:83:77:83:3d:f7:56:
7a:28:e9:cd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:40 2024 by rpki-client on console-fra.rpki-client.org