Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/j5ZyrK2aUfA9SLxDtjOpVzSY494.cer
File: j5ZyrK2aUfA9SLxDtjOpVzSY494.cer (raw, json)
Hash identifier: AqaWCJrRNC7mxkvNCdSlt5nC4dJ4hFtLTcOfpCPugqo=
Subject key identifier: 8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C7ED
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 Nov 2023 04:47:05 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 103.14.100.0/22
IP: 116.193.164.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116717 (0x1c7ed)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 04:47:05 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91FC1DE/serialNumber=8F9672ACAD9A51F03D48BC43B633A9573498E3DE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:77:28:81:6e:a6:a9:7a:76:03:29:73:01:fc:
26:5b:8b:0c:54:7a:73:d7:eb:91:e1:4d:5a:40:55:
f3:37:23:4d:ed:4c:cf:ee:77:0d:75:01:42:c7:21:
68:70:88:93:21:5d:8d:34:99:36:b3:71:89:77:fe:
53:21:c3:90:bf:cf:78:5b:5f:a5:0c:67:77:cc:aa:
7e:42:64:13:9a:83:34:f3:84:7a:ff:72:88:c7:17:
fa:b8:5b:54:b4:a6:0a:30:86:85:68:28:d9:6f:af:
8d:53:1f:80:cd:79:c2:ea:54:91:63:87:cf:2b:76:
00:b1:6a:ca:3e:36:a3:8f:c1:3b:a5:9b:94:5a:f2:
7f:55:c6:6d:ea:f9:26:71:4e:10:69:66:58:d2:6d:
16:73:b7:a8:af:7f:14:05:18:16:40:93:6b:98:8b:
15:69:d3:60:d4:0a:ed:cf:e8:60:df:57:3f:2e:d3:
c3:59:6b:d5:a2:20:42:bc:67:42:09:6f:01:2b:23:
e4:ca:56:53:07:d2:75:b7:b7:de:24:0a:70:8d:a4:
cc:d7:62:e0:54:51:d5:f3:7b:e1:b6:0e:8f:6a:ac:
47:b7:a6:20:7a:17:ae:a8:a6:b8:16:be:a0:34:e1:
4e:a7:8e:cc:95:f7:29:60:18:6d:c6:c5:60:d6:b6:
5f:3f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:96:72:AC:AD:9A:51:F0:3D:48:BC:43:B6:33:A9:57:34:98:E3:DE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FC1DE/732D69B6277911ED9D48F423C4F9AE02/j5ZyrK2aUfA9SLxDtjOpVzSY494.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.14.100.0/22
116.193.164.0/22
Signature Algorithm: sha256WithRSAEncryption
2e:a8:37:65:00:59:be:ff:4b:a4:26:7d:ff:ff:34:39:9c:87:
fe:ff:83:66:90:5b:00:3d:35:34:73:2b:6e:71:38:bf:ae:d9:
84:9a:2a:57:d3:45:b4:73:86:f7:a9:5c:4f:1d:83:0b:fa:b4:
86:c0:42:fc:7b:db:5f:4f:5f:65:5d:27:5a:19:55:f8:c1:73:
07:5c:9d:c9:e6:6a:05:52:08:7a:24:cd:f5:68:6c:f1:36:de:
d2:87:55:c3:98:d1:d1:26:9b:63:61:3b:a1:52:c0:f5:2e:bd:
77:59:19:87:a4:73:a1:6f:fc:41:b0:f7:bb:69:05:3b:a9:ac:
c8:c8:4d:49:5a:ed:ad:d5:17:e7:de:bc:1c:0e:61:02:ca:2f:
fb:02:17:40:60:11:f8:a3:25:ad:fc:b6:09:6a:66:7b:49:38:
03:9e:7c:6c:d0:f5:ba:26:fc:e5:7e:e0:4e:fa:81:56:8e:b1:
62:5f:9e:1f:26:8d:e6:5f:da:73:5c:4e:33:00:99:4d:d5:d5:
02:f8:2e:ab:13:a0:26:98:45:ac:d3:d2:0d:94:c3:6e:52:f3:
b1:ef:43:44:16:01:67:dc:57:ad:90:c7:ac:00:aa:b4:5d:c9:
37:a1:75:07:46:86:f7:50:55:7d:d6:bd:d8:c0:4b:9f:4c:b2:
7b:4a:0a:e7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:58:01 2024 by rpki-client on console-fra.rpki-client.org