Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fO84PIl44jNprQUoDqvd4t5u51s.cer
File: fO84PIl44jNprQUoDqvd4t5u51s.cer (raw, json)
Hash identifier: CVz21yFWKUBhGvSsKMrkwJ8vYaKCin+/rNEvUPab4sM=
Subject key identifier: 7C:EF:38:3C:89:78:E2:33:69:AD:05:28:0E:AB:DD:E2:DE:6E:E7:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EA11
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/fO84PIl44jNprQUoDqvd4t5u51s.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 Apr 2024 00:45:12 +0000
Certificate not after: Tue 01 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 134789
IP: 45.112.172.0/22
IP: 103.52.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125457 (0x1ea11)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 5 00:45:12 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=A91D93E6/serialNumber=7CEF383C8978E23369AD05280EABDDE2DE6EE75B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:9d:9e:64:78:2f:2b:76:77:ae:a8:a8:96:dd:
20:78:67:d1:bd:7a:64:c9:38:eb:68:10:bb:cc:23:
c1:7f:a0:02:88:6b:3e:9c:ea:2d:b8:5d:dd:9b:79:
c1:42:fb:5f:1d:28:9e:64:e2:3c:7c:11:81:8d:38:
31:3f:09:04:4e:1d:b4:2e:26:14:56:17:06:55:ca:
9b:5b:94:41:d2:d4:64:75:7e:54:b0:e9:34:57:e8:
cb:84:f0:b0:22:c8:1d:41:ac:bd:59:56:cd:d4:8b:
60:cf:4c:04:e1:1b:9a:97:97:f5:d2:69:dd:5b:1a:
93:17:35:e3:ab:86:d8:d9:96:da:26:39:70:78:06:
00:1f:80:85:7e:cd:03:64:dc:58:9d:2c:65:8a:b2:
b4:5c:2f:4c:99:bf:bc:77:08:60:69:9b:bf:24:2b:
16:24:10:39:5f:c1:59:c1:a3:f0:6a:08:69:91:56:
49:b3:df:83:02:60:65:29:01:28:13:1b:ae:70:cb:
32:07:1c:df:99:d3:f9:2c:a7:a4:c8:ea:49:8a:b8:
dd:95:6d:81:38:74:9a:fd:0b:70:ce:12:0c:92:67:
b0:0d:8e:6f:27:b4:43:ab:42:7c:8b:5c:9f:2b:62:
95:9e:eb:a3:29:62:ab:a3:49:58:91:27:35:14:be:
dc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7C:EF:38:3C:89:78:E2:33:69:AD:05:28:0E:AB:DD:E2:DE:6E:E7:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D93E6/E53608E2488B11ECB3863F50C4F9AE02/fO84PIl44jNprQUoDqvd4t5u51s.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134789
sbgp-ipAddrBlock: critical
IPv4:
45.112.172.0/22
103.52.8.0/22
Signature Algorithm: sha256WithRSAEncryption
83:91:fa:79:07:29:3d:c5:ec:44:82:94:ec:70:28:a6:81:6c:
0c:c8:c9:b2:4a:a2:88:b3:55:81:41:58:8c:3b:d6:b9:05:ba:
b7:86:db:6c:89:0f:cc:05:70:d5:49:03:84:cd:e0:8f:91:1b:
0b:e1:69:0d:2b:68:45:b6:dd:38:ad:7b:26:fe:5e:b9:a0:8d:
0c:da:62:7a:cc:c2:b5:69:b3:71:43:f0:98:a8:01:29:9c:a1:
47:0b:e2:c7:a6:1e:2d:e2:f7:93:46:a5:b9:87:b9:ae:68:b4:
0d:93:c7:73:d0:73:d1:aa:a5:7c:c6:02:df:73:a1:a7:55:b9:
40:92:fd:34:47:e1:43:f0:d5:ec:73:e2:65:5c:d9:8c:3a:8b:
ca:0f:2b:5b:ea:56:42:92:c7:d4:20:db:e8:b0:da:e4:a6:79:
29:66:e0:26:e0:5e:e5:fc:52:2c:3e:21:f4:47:66:d7:d0:01:
93:1e:e4:8d:04:c9:7d:cf:a1:ca:6d:60:a5:b5:9f:44:7b:c4:
ba:4f:7f:64:07:43:ab:f8:9f:18:10:ec:f9:e8:7d:17:98:e8:
5e:a3:27:db:99:3a:f5:7e:14:cc:ad:b3:1b:2c:26:86:14:7f:
6f:04:6a:c4:2f:50:8e:31:aa:39:40:17:c5:31:69:f5:ee:47:
23:db:62:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:58:00 2024 by rpki-client on console-fra.rpki-client.org