Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer
File: ivfYuGT9kEUv_W3pO1FFbHnvs8c.cer (raw, json)
Hash identifier: DsCdG2RDojiHxyyHCMfNhXEH5FMVo8UvqhGf6KOOxvE=
Subject key identifier: 8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FBCE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 27 Jun 2024 20:57:02 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 17765
IP: 203.4.188.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129998 (0x1fbce)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 27 20:57:02 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91AC4FA/serialNumber=8AF7D8B864FD90452FFD6DE93B51456C79EFB3C7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f8:60:70:9a:26:54:72:7f:94:65:6e:97:78:15:
41:db:1a:1b:97:a7:ce:a4:a0:50:90:3b:29:d9:e9:
4a:52:62:57:a9:1f:80:13:80:db:6c:25:f8:86:19:
1a:32:5a:6c:32:7c:7d:c9:14:19:6c:34:a6:82:52:
dc:d8:b5:d1:13:f8:48:cf:01:3a:3a:be:19:dc:51:
53:32:29:80:2a:4a:e8:7f:ce:96:d8:cf:6e:1a:09:
80:7b:fd:5e:3d:9c:97:b3:d2:29:a6:cf:15:1f:e2:
df:cb:c9:2e:3f:36:d6:ef:1c:1e:bb:79:d3:06:7e:
20:48:03:f8:99:60:17:39:bb:db:68:e9:82:41:5c:
69:b6:05:55:4e:67:63:eb:8e:03:30:f9:63:33:a3:
43:45:92:f1:a8:f8:c8:35:aa:3e:36:44:2e:f1:ee:
03:32:8b:cb:e7:24:1a:6c:ce:74:ef:94:f3:85:17:
3d:db:cb:9c:97:3c:d9:59:c1:69:ab:57:22:4c:1f:
f3:b0:f8:e6:8d:df:96:4a:95:e0:67:e6:86:10:14:
25:c7:c0:6f:c7:e5:eb:4b:88:a3:3b:4e:b5:d6:81:
64:a0:a6:f5:5f:bc:37:98:67:e2:2c:2b:5f:8d:e9:
f5:01:0f:bf:79:6e:1e:82:28:a2:77:d2:52:ae:98:
6d:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:F7:D8:B8:64:FD:90:45:2F:FD:6D:E9:3B:51:45:6C:79:EF:B3:C7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AC4FA/37CB87986C8B11ED87AFF571C4F9AE02/ivfYuGT9kEUv_W3pO1FFbHnvs8c.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17765
sbgp-ipAddrBlock: critical
IPv4:
203.4.188.0/22
Signature Algorithm: sha256WithRSAEncryption
83:8b:06:f1:12:3c:c5:44:1b:78:d5:39:10:3c:55:9b:e3:e1:
30:62:e9:79:a0:1b:05:7a:c3:46:dc:39:3b:61:51:0b:ef:7f:
8c:f7:45:83:2e:91:70:78:b3:da:81:e6:f4:39:fd:b9:26:29:
f9:7c:0b:e8:92:c4:58:f3:74:09:f8:8e:44:6f:58:73:51:38:
6b:b0:e3:2c:81:fd:f0:9f:48:d9:54:9c:fc:34:ff:2f:d5:31:
ef:0e:a2:ac:b7:cc:77:5b:4e:7d:a5:64:0a:a8:f7:1d:af:c0:
75:71:71:af:3c:65:c0:f2:6e:4f:80:ba:69:59:90:8f:94:c3:
56:20:b2:46:7d:00:c2:4f:dc:20:09:d3:10:d8:16:3d:97:5d:
90:0f:7f:0d:cf:b5:df:99:22:e3:1d:06:ff:f5:98:5e:8e:5c:
e8:96:b0:cc:2b:a7:4e:16:f9:55:1d:a3:65:e5:87:82:58:b7:
47:ef:1f:2f:31:43:28:69:d1:ad:9a:75:b9:2f:8a:d2:f4:20:
30:a4:58:9f:53:88:2f:63:2e:66:aa:47:93:43:89:7b:6c:07:
dd:5a:b5:5d:dc:99:71:8a:73:6a:47:bf:40:76:05:c2:d6:cd:
0a:4b:52:a9:a6:13:4a:c2:61:ab:d9:dd:0b:13:2c:36:69:e5:
3d:67:78:8e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:03:10 2024 by rpki-client on console-ams.rpki-client.org