Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/eg_QMrwoEhCzyVIrRxWNVszepgo.cer
File: eg_QMrwoEhCzyVIrRxWNVszepgo.cer (raw, json)
Hash identifier: 85OP6Qu+plCR8++feJF566KeKQieUUSPiMg6GVy4hVk=
Subject key identifier: 7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E3A3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 09 Mar 2024 07:41:49 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 152632
IP: 202.36.122.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 00:15:27 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123811 (0x1e3a3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 9 07:41:49 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A912582A/serialNumber=7A0FD032BC281210B3C9522B47158D56CCDEA60A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:6e:d5:43:54:21:a3:a6:7e:2f:d4:d8:bc:9f:
19:8d:09:b7:a8:6f:cf:e3:6d:80:27:b6:05:9e:85:
a8:39:43:5c:e5:16:75:e0:d8:0d:46:35:4c:18:01:
a5:c3:0e:64:18:89:56:77:26:f9:c2:ca:aa:54:86:
51:54:c8:fb:74:b3:72:2f:2c:d1:6c:ac:d9:17:e2:
0c:9e:7f:53:01:9d:2d:61:cd:0a:2c:43:8c:10:a6:
10:8e:d4:73:b5:01:0d:d6:05:a8:1f:09:54:1b:9f:
c1:44:17:81:5f:9e:97:0f:a5:e3:18:0b:e0:24:08:
eb:d3:c1:10:1b:0b:bb:b9:5d:79:cb:11:91:fa:03:
82:24:38:20:a4:1e:a1:ec:5e:fc:29:2c:58:81:44:
9b:85:3e:06:96:6f:88:60:f5:a0:81:6d:17:4a:b5:
f2:47:6c:fe:9c:03:e2:16:81:c8:08:64:3a:4e:4a:
bd:52:a8:51:bc:16:3b:47:66:77:a4:9f:a5:4d:9d:
85:1e:21:2c:eb:18:dd:2f:b8:3d:5a:66:4a:08:d1:
73:7b:18:c1:83:7c:5b:dc:33:8c:b5:5b:a8:de:72:
ce:3c:b4:7e:e5:2a:0f:26:dd:82:46:60:ea:46:cb:
e4:0d:6b:a4:96:bd:dd:df:29:cb:1c:05:49:0f:b9:
cd:47
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7A:0F:D0:32:BC:28:12:10:B3:C9:52:2B:47:15:8D:56:CC:DE:A6:0A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912582A/78D7496EDDE811EEA3B0E713C4F9AE02/eg_QMrwoEhCzyVIrRxWNVszepgo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152632
sbgp-ipAddrBlock: critical
IPv4:
202.36.122.0/23
Signature Algorithm: sha256WithRSAEncryption
41:d2:db:45:86:c4:77:70:d0:b8:a3:12:91:a8:e0:fb:89:80:
58:69:00:69:1e:b4:44:ef:13:b5:70:f7:fb:98:7d:50:7b:14:
fd:39:7a:7f:c5:52:2a:ae:29:80:c9:79:bf:de:59:a9:e5:12:
01:ae:ee:94:d6:3b:4e:96:b9:4a:92:b7:50:c6:42:4f:0b:58:
03:fe:41:7f:5e:13:3c:51:88:cd:0d:f7:a5:5b:2b:fc:d4:eb:
b1:32:6e:ea:72:77:ab:2b:48:5d:b6:a0:a5:f8:38:c1:56:63:
cf:96:c9:2c:a0:0e:46:81:e5:6d:56:c3:19:e3:4a:74:00:30:
d8:94:6b:15:77:94:0f:4e:f8:2c:5f:4a:4d:78:5e:80:ba:2a:
8c:6f:ec:c5:1f:29:89:54:4e:95:f5:56:09:3e:df:38:e3:c3:
c0:c4:2a:ef:bc:66:69:d1:d6:cc:20:1d:b5:12:c4:61:11:35:
61:30:fa:f7:97:90:5f:d0:0c:c0:b8:c9:83:5c:8c:9d:56:60:
c2:35:87:6c:cc:bf:9d:58:6a:6f:a6:ed:08:b6:50:9c:5d:84:
0e:9a:a8:cc:ac:da:71:bc:c5:5d:e0:d1:9e:56:e6:85:c5:d1:
e6:b9:30:aa:20:fa:34:8f:62:86:30:96:07:73:6e:4e:4b:d8:
90:43:df:06
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 01:07:19 2024 by rpki-client on console-fra.rpki-client.org