Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/e-hwMVM9L_QxwRpYeani2dyFJ_I.cer
File: e-hwMVM9L_QxwRpYeani2dyFJ_I.cer (raw, json)
Hash identifier: E7GaUr9Gc2adg+E+WwNXvL0WjdMnciOb77u7Qq5PyF8=
Subject key identifier: 7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AAD5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 20 Jun 2023 04:46:44 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 202.36.34.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 08 May 2024 21:44:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109269 (0x1aad5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 20 04:46:44 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91C35C9/serialNumber=7BE87031533D2FF431C11A5879A9E2D9DC8527F2
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:81:65:3e:0c:c7:e0:59:1a:e0:fe:4b:39:55:
b6:16:23:65:90:3f:9e:98:5a:83:39:d6:a3:64:ad:
90:ba:ff:d2:ce:f5:fd:e7:7c:55:d6:90:b0:de:41:
4a:ca:44:4d:2b:16:9a:4c:f1:83:6b:07:1d:a4:f3:
bb:e8:bb:03:0f:58:da:96:37:c8:64:6f:7d:55:0f:
2f:d6:7e:88:b1:19:cb:b3:60:2d:ed:df:29:76:9b:
0b:e8:f1:0e:fe:06:55:34:4e:bc:9d:e9:24:d2:6e:
79:e6:64:c4:e5:55:e1:8d:74:9b:ee:70:3e:87:34:
21:3f:fb:a2:df:24:92:52:98:4b:ed:2a:f1:32:f2:
6f:e9:c4:f7:76:3e:d1:10:3e:a5:a0:3a:49:a2:20:
b2:a8:95:5a:62:f6:dc:d1:e6:1e:21:eb:a9:56:a3:
e3:61:22:0b:ce:c8:0c:03:33:db:78:2a:72:3a:c2:
80:dc:b8:ca:a3:5c:85:f7:c8:c5:d4:87:2b:dc:7a:
9d:e8:01:b2:2e:ac:74:78:ac:10:3d:9f:e4:1b:b6:
a9:76:fb:71:60:11:c6:0e:67:2c:47:ed:b5:d2:ff:
d9:77:0c:8a:87:58:b5:72:7f:16:0c:18:c2:7a:f5:
c5:9e:b3:bb:13:4d:a6:dc:dd:22:0d:60:71:da:0f:
f4:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:E8:70:31:53:3D:2F:F4:31:C1:1A:58:79:A9:E2:D9:DC:85:27:F2
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C35C9/70F84C620F2511EE8D29E26CC4F9AE02/e-hwMVM9L_QxwRpYeani2dyFJ_I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.36.34.0/24
Signature Algorithm: sha256WithRSAEncryption
21:a7:04:5a:56:e4:74:37:b3:fa:39:92:a9:93:d1:b0:85:c7:
57:bb:0b:34:4b:fa:28:5b:7d:f9:f3:9c:f4:de:24:4f:77:34:
b4:39:7e:f4:95:1b:6e:13:53:f1:de:5f:84:da:fe:31:66:8f:
b8:34:fb:b4:1e:db:3f:ad:41:a4:cd:3b:ca:03:b3:94:ce:3c:
13:72:dd:df:18:31:18:f9:e6:3a:d1:72:58:ad:0f:7a:23:12:
8d:0b:58:d3:f4:85:ae:c6:6f:74:f5:b1:59:a5:37:70:64:98:
05:e4:0a:a9:ce:9e:49:4f:0f:b1:4f:01:42:3f:37:be:31:d4:
da:27:44:73:21:9c:fd:d0:aa:ac:6f:41:52:e7:d5:07:ee:51:
a1:c1:4d:9f:50:42:ff:ce:48:a1:96:49:f5:e3:e4:3d:5b:f1:
4d:0c:94:9c:f5:15:15:de:7d:18:2b:a7:9e:55:27:35:a4:d1:
e9:08:91:b9:66:a2:8f:f5:cd:27:f3:e0:1a:ba:88:3d:65:fb:
bf:cb:ad:d0:33:07:c1:0a:45:c3:94:e1:dd:79:67:2b:ff:15:
be:83:2a:59:af:f9:89:89:46:3b:bb:ad:f9:a8:c4:a1:56:f7:
19:17:2c:13:e7:b8:43:59:f3:39:fb:f8:7a:54:a2:c7:bb:c7:
9d:39:c4:09
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 1 22:51:59 2024 by rpki-client on console-ams.rpki-client.org