Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer
File: k3hpHVqDzAJrjR8jKAYAg3G-3AQ.cer (raw, json)
Hash identifier: ArqkYCLAdB3S92m58cx4q6LZZQvernMlRdRLu4hLx4o=
Subject key identifier: 93:78:69:1D:5A:83:CC:02:6B:8D:1F:23:28:06:00:83:71:BE:DC:04
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0216B7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Oct 2024 16:38:32 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 103.9.51.0/24
IP: 103.81.162.0/24
IP: 103.195.143.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136887 (0x216b7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 28 16:38:32 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A9164FD2/serialNumber=9378691D5A83CC026B8D1F232806008371BEDC04
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:64:41:e7:e0:64:66:35:8a:55:2f:93:21:ee:
67:f3:fe:37:b3:c0:fb:95:6a:ac:4a:82:23:bf:c8:
17:53:76:db:01:e4:88:0b:2a:86:7b:65:6b:b4:63:
6e:1b:dd:bd:8f:ac:dc:07:f8:3a:02:a8:98:34:34:
b0:96:a8:1d:a3:a2:27:6f:68:3a:8a:9a:1e:4d:25:
be:1f:54:4d:94:60:03:1a:10:de:b0:bd:f1:10:5d:
d8:1e:c8:bf:1c:7f:57:33:9c:67:90:e9:40:32:d4:
0e:f3:81:27:3f:74:5a:6c:1d:d6:0d:44:01:fd:33:
f2:69:cc:45:1c:4c:3b:03:b7:c6:32:3c:15:68:af:
f1:1c:aa:8f:e7:6e:e9:25:ad:7d:5d:78:9e:aa:7d:
5a:b3:a9:e8:3e:b2:7f:0e:f8:fa:cb:be:c2:91:52:
7b:0b:4e:b3:c9:b1:af:be:a8:a3:cf:c5:de:df:52:
71:58:6f:52:6b:c7:e3:80:c0:fc:06:80:54:37:26:
c6:57:30:66:cf:d3:08:2a:16:b5:91:3d:17:b8:b2:
50:2e:d6:71:54:fc:85:22:cf:f6:a0:6e:d2:45:51:
24:c1:5e:74:b5:0d:dd:e0:6d:3e:a2:31:8c:f7:92:
2c:4d:e9:d4:a8:5b:80:b0:54:29:50:6e:f4:72:e2:
5e:d7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:78:69:1D:5A:83:CC:02:6B:8D:1F:23:28:06:00:83:71:BE:DC:04
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9164FD2/B94B4F7C0C3611EB85233121C4F9AE02/k3hpHVqDzAJrjR8jKAYAg3G-3AQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.9.51.0/24
103.81.162.0/24
103.195.143.0/24
Signature Algorithm: sha256WithRSAEncryption
37:7c:82:1d:48:93:4e:ea:63:ab:ad:0b:0e:b0:e8:b4:25:bc:
90:9b:f0:d0:66:62:83:3d:22:33:0a:f5:84:3f:7a:25:7f:1e:
2d:59:06:c0:d5:0f:2f:bb:b2:47:ad:ae:67:8c:d5:6e:98:7f:
e7:23:30:dd:26:fd:a0:99:34:a2:01:10:05:fc:17:f6:6a:e1:
07:88:67:23:6d:76:c2:88:21:6a:f7:fc:fd:8a:d0:85:09:a7:
36:d0:58:ec:b3:35:1b:f6:4b:14:fd:88:db:90:dd:73:ee:66:
3e:db:0f:86:18:90:be:ef:35:3f:89:18:ab:91:49:7b:e7:b6:
86:c5:6d:a8:1d:ca:15:73:1f:6b:76:62:7a:eb:c5:2f:fb:78:
62:57:47:1e:80:e9:34:d9:5a:33:c4:aa:70:7d:5f:ae:31:fb:
07:3e:39:ae:72:c9:f2:56:64:73:64:dc:dd:32:d5:63:58:74:
91:99:40:73:92:7c:76:9a:a0:76:74:4e:bd:4a:84:27:b7:65:
d2:bf:95:99:80:35:36:0e:a3:e6:ea:a9:f9:e1:be:f4:62:a0:
ed:a7:b0:2e:fd:dc:03:17:b9:89:d7:16:fc:be:8e:1c:aa:a9:
ee:b0:d1:e1:7a:1d:1c:e9:a9:55:5b:ca:72:b1:b7:f3:2b:30:
70:eb:03:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 08:03:11 2024 by rpki-client on console-ams.rpki-client.org