Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fR7WtlFJDavaqEvZL81C5VPubHA.cer
File: fR7WtlFJDavaqEvZL81C5VPubHA.cer (raw, json)
Hash identifier: sAB5kVy2CW4r4FrK/cUgcCp+nsT+R5v8/KG56U0v/2Q=
Subject key identifier: 7D:1E:D6:B6:51:49:0D:AB:DA:A8:4B:D9:2F:CD:42:E5:53:EE:6C:70
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CEF7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B8C6C/C148D1CA1DA311E28E1A3E9908B02CD2/fR7WtlFJDavaqEvZL81C5VPubHA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B8C6C/C148D1CA1DA311E28E1A3E9908B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Dec 2023 23:48:46 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 55415
IP: 182.16.232.0/22
IP: 223.255.254.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 22:43:41 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118519 (0x1cef7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 1 23:48:46 2023 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91B8C6C/serialNumber=7D1ED6B651490DABDAA84BD92FCD42E553EE6C70
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a7:ac:2c:23:13:7b:2c:2b:24:0f:2a:ee:f0:
f2:a2:02:2e:48:a7:78:6f:49:50:29:3c:18:8a:67:
e2:cc:ef:e6:b4:f7:54:32:f4:67:c0:e2:f1:11:9a:
0b:e0:d0:a4:32:29:30:cb:4a:d5:f5:82:5a:79:e8:
ae:c3:73:42:ab:6f:b7:1f:b8:4a:a4:bc:ff:d7:db:
e9:b8:e3:51:16:b2:f4:36:78:7a:73:b2:f4:0b:aa:
d0:a6:08:00:70:76:42:6b:ba:06:15:da:d3:ce:57:
0b:f4:20:39:21:23:ee:c5:86:84:3a:81:16:88:f9:
1f:c1:cf:0b:d2:2e:30:ca:9a:35:e7:3c:0a:ec:76:
a2:40:24:c7:90:6b:17:57:a3:e0:7c:2f:e7:43:7e:
bb:41:06:c5:49:c0:1f:04:c2:1b:e3:10:86:18:be:
e3:bc:e4:46:69:a7:83:a2:cf:3a:f4:55:1b:91:d9:
88:cc:f2:42:24:8f:b7:f6:a0:64:ed:50:65:ee:92:
2a:10:2d:c6:70:dc:15:ad:8e:01:23:55:0b:41:e3:
8e:06:d6:c0:b6:d2:a3:d3:a8:ac:1e:de:5f:5f:7b:
e9:56:a3:a2:2f:6a:29:e4:9a:75:63:7f:8c:35:9c:
e0:f4:f0:be:24:b2:96:e2:d3:42:93:4e:77:2e:51:
14:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7D:1E:D6:B6:51:49:0D:AB:DA:A8:4B:D9:2F:CD:42:E5:53:EE:6C:70
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B8C6C/C148D1CA1DA311E28E1A3E9908B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B8C6C/C148D1CA1DA311E28E1A3E9908B02CD2/fR7WtlFJDavaqEvZL81C5VPubHA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55415
sbgp-ipAddrBlock: critical
IPv4:
182.16.232.0/22
223.255.254.0/24
Signature Algorithm: sha256WithRSAEncryption
79:15:10:ea:6f:bc:98:8c:59:b8:4c:df:e5:bd:ab:1f:ac:ce:
0e:d4:d8:71:73:fa:e7:15:9c:a0:f2:a8:66:ec:fd:61:88:d1:
15:5b:3d:44:46:8a:2c:5c:ed:52:e4:d7:3f:35:2d:d0:68:53:
2e:85:5c:e7:48:c0:aa:d1:f4:44:b4:33:c8:04:d0:66:18:f1:
dd:c7:6a:99:55:e0:ec:06:56:6f:a4:56:06:23:ec:4e:a4:a7:
d7:d9:82:10:b9:fd:c3:bb:15:4b:a4:40:ac:33:e8:09:98:2a:
1e:c7:6e:28:af:4b:d1:c6:c4:60:30:be:eb:4e:6f:ba:bc:13:
d2:8c:29:8a:83:38:87:39:7e:33:98:1c:7f:90:c2:c3:cc:d2:
fa:6f:d0:66:d6:8c:4e:d1:14:7c:d4:7a:72:e4:86:30:c1:43:
f3:53:28:8e:5f:b9:83:94:b5:8c:e6:29:29:82:a5:e7:51:b6:
41:cd:b5:db:94:df:ae:e2:98:00:9b:18:ae:b0:93:b1:1d:60:
0a:b5:75:06:1c:80:4d:10:6c:3f:38:6b:05:23:9b:95:46:d4:
3d:b1:4d:02:7a:b6:8e:27:cf:9c:e9:85:be:0d:e3:37:f6:11:
78:fe:1b:b6:61:51:45:0f:c3:ef:2e:e8:1f:96:17:42:b7:31:
8d:f3:28:d7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 23:22:07 2024 by rpki-client on console-fra.rpki-client.org