Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/gFLXiRiFOIg0vD1ozrIclvdiXmc.cer
File: gFLXiRiFOIg0vD1ozrIclvdiXmc.cer (raw, json)
Hash identifier: Pl95IcUtmI6PTivASqS4CWYIAo2yWXQ+JewtN2FmaAs=
Subject key identifier: 80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FB5B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 26 Jun 2024 16:22:00 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 103.248.97.0/24
IP: 2001:df0:a000::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129883 (0x1fb5b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 26 16:22:00 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91CBE89/serialNumber=8052D7891885388834BC3D68CEB21C96F7625E67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:6f:98:fd:a0:ee:7b:53:08:07:20:63:cc:d2:
27:5d:36:33:e3:d5:b5:11:86:86:f5:7c:a0:72:e2:
d8:cd:33:0d:ed:ed:0f:0d:e4:28:ee:dd:89:de:15:
9e:2a:a6:ea:6c:00:9d:17:40:f3:db:90:b9:5d:fd:
f4:26:b8:e1:4e:b5:22:42:98:ce:f6:67:35:ee:05:
c3:df:a0:8e:06:d9:9a:d1:64:78:99:ab:e6:0b:dc:
d7:24:24:6d:b7:e4:64:cc:84:1a:96:e2:b1:5f:fc:
2f:3d:21:91:d9:7c:23:72:92:95:b2:09:c9:9d:9e:
b9:2a:da:07:57:9b:4e:a6:57:d7:11:cd:6e:78:0d:
da:af:ff:f1:9d:ff:de:d5:d6:de:aa:54:ae:17:cf:
ef:d9:75:c2:ef:30:38:9e:c1:3e:c5:28:75:a7:cb:
53:e6:2e:be:83:04:5a:50:61:51:90:32:9f:5c:31:
31:c7:5b:45:e5:d4:d1:e3:d6:69:5f:da:f1:9d:5f:
22:07:31:55:f2:3b:16:c9:f9:91:85:6a:c4:07:e5:
d8:fe:25:10:d8:29:2b:b8:0e:16:6f:47:0e:44:69:
43:f0:fc:b5:91:de:be:91:c0:c2:36:9b:4a:b6:bb:
87:bd:8e:49:74:48:db:c3:46:c1:33:c2:e6:c6:dd:
72:b1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
80:52:D7:89:18:85:38:88:34:BC:3D:68:CE:B2:1C:96:F7:62:5E:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CBE89/F2726A18763C11E6B01E0859C4F9AE02/gFLXiRiFOIg0vD1ozrIclvdiXmc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.248.97.0/24
IPv6:
2001:df0:a000::/48
Signature Algorithm: sha256WithRSAEncryption
8c:e0:07:b4:df:c9:11:71:1e:52:87:9e:27:24:61:19:6c:2f:
c6:25:38:f1:15:7f:fd:2d:17:3e:5b:23:05:ff:57:02:61:8f:
cb:6f:b7:b7:e4:83:0e:10:1a:ba:7d:a9:ad:fb:5a:54:cb:0f:
64:a2:41:74:52:05:12:d7:1c:19:10:8b:23:56:ab:57:d1:b4:
0b:2c:27:8f:1c:de:31:4c:2b:35:5e:0e:17:d4:8a:5f:9f:3f:
40:99:86:27:39:f2:c9:c5:15:d3:cc:29:11:93:92:44:bd:17:
b0:b7:4d:6f:0e:ae:d7:6e:a2:cf:27:7f:4a:ec:e6:b6:52:34:
df:2c:d0:e7:64:bd:4b:f2:c2:2e:1b:81:08:be:07:28:3d:fc:
ef:5e:28:1c:94:09:f3:c2:58:96:2a:d3:d1:a7:84:87:84:f8:
ff:2e:0f:dc:71:e2:80:e8:99:7d:92:8e:97:6a:b1:2f:b0:40:
97:01:12:f4:fc:27:af:d7:fe:b1:1d:1e:86:2c:0c:be:ac:9d:
cb:31:4a:8f:95:2b:ff:ae:ad:ef:fc:1f:d9:15:87:22:19:74:
d7:91:ee:e5:34:dc:90:4c:fd:95:01:24:67:f4:e7:8d:08:1b:
4d:e2:1c:98:09:2c:ca:76:e8:36:34:e9:13:99:6e:16:bc:c5:
c5:90:35:50
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:56 2024 by rpki-client on console-ams.rpki-client.org