Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer
File: kCs-s81I0JqgoQybLLKA0KDNLbo.cer (raw, json)
Hash identifier: VltqLq9idBXFILO7Hfp0bIbwIqmwEVxxt0hVQouT9sg=
Subject key identifier: 90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B7AB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 18 Aug 2023 17:57:01 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 45.120.208.0/22
IP: 103.61.28.0/22
IP: 2001:df0:8e00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 11:34:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112555 (0x1b7ab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 18 17:57:01 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e6:6c:f3:ef:cb:a9:f6:9e:36:dc:85:c7:5a:
d9:b9:10:0e:ce:de:77:1b:39:35:af:33:6e:1b:a0:
0b:03:2f:dd:53:fd:b3:8f:40:ae:cf:ea:82:ab:8e:
8b:e3:f7:57:68:05:68:b7:d0:2f:be:15:09:9d:05:
a5:31:73:b9:71:19:1d:ce:99:7b:6f:12:22:83:0b:
97:3f:b2:88:2e:9f:61:0e:c3:37:d2:d0:25:c2:0f:
13:ac:df:7c:da:ee:3a:9c:bc:5c:3f:d2:37:22:92:
04:b6:20:97:af:97:0f:63:4d:89:68:47:e7:da:2f:
aa:64:29:ee:7c:d8:1a:ba:f0:ce:99:42:f0:cc:2c:
c7:fd:b4:e9:ca:56:a8:8d:d7:ce:d8:63:98:87:79:
8a:a9:8c:78:c3:dc:0e:13:ad:dc:b5:e4:aa:c5:a7:
41:52:fd:55:c2:f0:ba:53:9a:d9:3b:16:27:e5:e9:
9a:35:f2:a9:dd:1d:23:2c:f4:78:01:70:39:c6:21:
ad:cc:f9:c9:9c:44:a6:d0:fa:12:32:97:af:ec:4b:
2a:5f:7a:1c:e0:b3:78:52:36:ac:a0:90:81:e4:54:
27:f9:53:b1:bf:bd:33:04:86:13:28:28:5e:7c:3b:
f5:a7:1b:c3:79:fa:08:b5:b3:02:80:d8:f8:38:d6:
56:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.120.208.0/22
103.61.28.0/22
IPv6:
2001:df0:8e00::/48
Signature Algorithm: sha256WithRSAEncryption
03:1d:8f:bc:18:6f:33:59:ed:9a:d8:c1:47:b7:27:69:27:b0:
59:66:80:cf:28:4f:69:35:c9:b4:1b:f7:7d:cf:20:57:b1:98:
85:7d:d3:66:a2:6a:da:17:a9:71:b1:a1:b0:c7:f0:f2:23:14:
ab:e3:4d:70:ec:95:52:ba:8b:92:6e:6b:5e:14:49:f3:f3:22:
88:6a:91:c4:bc:71:1e:c6:38:dd:c1:9b:08:f1:97:02:3e:f5:
5d:8b:5d:13:03:c5:ec:8d:89:b6:34:00:41:c1:5c:7f:96:af:
c8:71:f4:04:df:64:69:f5:8f:05:1a:96:2d:83:57:df:0c:2e:
31:be:ce:2f:f9:4a:5f:a8:c8:d6:0c:fa:fa:66:29:bc:39:56:
a4:33:2a:c8:dd:53:8c:80:7d:2d:a9:95:c1:a4:6d:d1:ff:7c:
5d:00:4f:44:c7:c7:d9:f4:8e:59:5a:de:b1:ee:72:9b:48:e6:
33:b3:69:c5:79:fb:84:da:f5:68:d0:22:8d:e6:fa:5b:2e:89:
8e:54:7b:47:11:b7:2d:98:d5:84:22:41:70:6e:cb:70:87:43:
29:d1:e5:c7:b7:05:b3:98:76:08:1a:48:1a:c8:fb:60:d1:d2:
d3:eb:cf:00:a1:9a:0b:6a:64:6e:92:e4:90:7e:54:90:03:6a:
80:b0:5b:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 13:18:54 2024 by rpki-client on console-ams.rpki-client.org