Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i99RGJodvfloQ0tec2qpq_1FVhw.cer
File: i99RGJodvfloQ0tec2qpq_1FVhw.cer (raw, json)
Hash identifier: VWQPX30VIh5YHh42ToHFoiX/Ve6cpjp5D5GmbDlaE3M=
Subject key identifier: 8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AE1B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 04 Jul 2023 12:34:56 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 43.242.240.0/22
IP: 103.26.192.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110107 (0x1ae1b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 4 12:34:56 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A9119510/serialNumber=8BDF51189A1DBDF968434B5E736AA9ABFD45561C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:28:7d:78:b5:ed:6a:d3:03:1f:f4:dc:43:da:
a1:b7:8c:b7:f2:da:8d:62:7c:e0:9b:17:39:48:6e:
ef:50:8b:f8:61:52:f0:6c:65:d0:c5:e5:68:07:d5:
69:43:34:3a:47:5f:95:28:9a:a0:27:d9:20:d3:e1:
4f:6f:cc:b8:10:7c:e0:da:f9:37:e3:40:83:45:06:
a1:21:66:9c:b8:f3:44:10:10:26:61:46:19:2a:3a:
15:81:e4:0d:f5:72:7f:eb:8b:3d:61:4e:70:86:7d:
39:54:bb:65:ed:f0:5d:72:cf:a0:b9:26:30:a0:07:
25:ea:6a:09:ac:d8:06:83:46:5c:fd:64:d0:43:d4:
55:d9:00:21:d7:ec:ca:b8:71:61:de:5e:da:c4:5a:
3d:b0:87:32:e6:de:44:18:4d:d7:0a:ef:d4:0b:9e:
54:d6:22:8f:6f:e6:02:dc:11:e8:e5:b0:4a:c6:a3:
3f:e4:46:7a:c0:e4:be:44:71:a6:09:38:12:bd:2d:
be:83:61:a6:17:d8:35:aa:2a:fe:c3:5a:f1:10:8c:
c9:15:8c:18:e7:47:bb:cd:8a:42:e2:66:9b:96:02:
2c:2a:f3:52:03:e0:91:bf:0a:9e:77:1b:92:99:84:
60:76:26:40:24:72:bf:ee:63:23:6f:5b:d6:49:35:
66:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:DF:51:18:9A:1D:BD:F9:68:43:4B:5E:73:6A:A9:AB:FD:45:56:1C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9119510/0DDF5B0883CF11E7838EA84EC4F9AE02/i99RGJodvfloQ0tec2qpq_1FVhw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.242.240.0/22
103.26.192.0/22
Signature Algorithm: sha256WithRSAEncryption
d8:92:93:b8:dd:5f:99:17:62:1e:11:76:14:1b:5e:ca:c2:c5:
10:34:cb:64:f3:21:43:cc:e1:c0:59:ef:6a:ed:1e:96:09:8a:
00:67:90:83:23:b2:e6:fa:4a:22:36:2f:6e:32:c5:24:0e:5f:
28:b5:57:8b:0e:cf:13:85:88:02:c7:93:3b:38:ee:7b:2d:0b:
e6:b3:2b:c4:09:b0:26:51:1e:52:c3:b4:7e:9f:2f:21:24:0d:
f1:8f:64:c9:10:3e:2d:87:64:9e:6d:f1:82:d7:c6:1b:73:0d:
52:ca:0f:74:d0:a6:03:8a:51:4b:c3:36:09:c6:23:1d:17:cc:
0f:0a:29:f0:c7:73:a9:63:76:6d:45:53:cd:c4:74:11:e0:d8:
bf:d3:34:e5:f8:d1:43:b6:e2:58:92:96:1b:4c:82:73:d1:1f:
a7:e9:c8:c8:66:ad:1d:a0:d2:92:bb:cf:6f:59:c4:4e:31:57:
e3:fe:35:a8:2f:dc:3e:9e:0b:60:83:aa:9d:02:f5:62:e9:5a:
3a:14:04:c3:e7:5b:85:64:80:f1:e4:bf:e5:bc:19:01:6b:75:
1f:b7:aa:01:9a:7a:99:21:50:64:f8:f2:05:06:24:26:43:ac:
9d:45:9c:10:ed:e7:0a:3d:05:79:bf:f4:18:42:34:1a:65:8c:
b7:32:8d:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:05 2024 by rpki-client on console-ams.rpki-client.org