Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kCs-s81I0JqgoQybLLKA0KDNLbo.cer
File: kCs-s81I0JqgoQybLLKA0KDNLbo.cer (raw, json)
Hash identifier: MzSM0OLzCX/lF5nz79khqmRzImiLk+R3EKctlL/y5Ng=
Subject key identifier: 90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020831
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 21 Aug 2024 14:38:54 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 45.120.208.0/22
IP: 103.61.28.0/22
IP: 2001:df0:8e00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133169 (0x20831)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 21 14:38:54 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A915A161/serialNumber=902B3EB3CD48D09AA0A10C9B2CB280D0A0CD2DBA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9b:e6:6c:f3:ef:cb:a9:f6:9e:36:dc:85:c7:5a:
d9:b9:10:0e:ce:de:77:1b:39:35:af:33:6e:1b:a0:
0b:03:2f:dd:53:fd:b3:8f:40:ae:cf:ea:82:ab:8e:
8b:e3:f7:57:68:05:68:b7:d0:2f:be:15:09:9d:05:
a5:31:73:b9:71:19:1d:ce:99:7b:6f:12:22:83:0b:
97:3f:b2:88:2e:9f:61:0e:c3:37:d2:d0:25:c2:0f:
13:ac:df:7c:da:ee:3a:9c:bc:5c:3f:d2:37:22:92:
04:b6:20:97:af:97:0f:63:4d:89:68:47:e7:da:2f:
aa:64:29:ee:7c:d8:1a:ba:f0:ce:99:42:f0:cc:2c:
c7:fd:b4:e9:ca:56:a8:8d:d7:ce:d8:63:98:87:79:
8a:a9:8c:78:c3:dc:0e:13:ad:dc:b5:e4:aa:c5:a7:
41:52:fd:55:c2:f0:ba:53:9a:d9:3b:16:27:e5:e9:
9a:35:f2:a9:dd:1d:23:2c:f4:78:01:70:39:c6:21:
ad:cc:f9:c9:9c:44:a6:d0:fa:12:32:97:af:ec:4b:
2a:5f:7a:1c:e0:b3:78:52:36:ac:a0:90:81:e4:54:
27:f9:53:b1:bf:bd:33:04:86:13:28:28:5e:7c:3b:
f5:a7:1b:c3:79:fa:08:b5:b3:02:80:d8:f8:38:d6:
56:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
90:2B:3E:B3:CD:48:D0:9A:A0:A1:0C:9B:2C:B2:80:D0:A0:CD:2D:BA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915A161/B07B2AB84B1011E9AAE3EE43C4F9AE02/kCs-s81I0JqgoQybLLKA0KDNLbo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.120.208.0/22
103.61.28.0/22
IPv6:
2001:df0:8e00::/48
Signature Algorithm: sha256WithRSAEncryption
6f:2d:e9:57:05:80:be:2e:53:40:7e:6a:98:d9:58:e8:d9:ce:
6f:78:76:47:b3:08:da:34:71:5c:a1:18:75:aa:d7:0d:5c:fc:
aa:87:db:bf:02:be:76:44:1e:74:52:8d:e8:b7:8d:c4:21:d1:
a8:b6:35:64:03:23:f1:1f:7d:56:df:ea:08:79:a9:c4:d4:6d:
d8:11:72:8a:4d:be:35:37:05:be:69:2f:27:03:d3:fc:15:bf:
3a:45:5d:bf:ed:97:1c:15:8e:c4:38:93:19:68:bb:cb:c5:a9:
56:bd:c2:9e:75:95:67:ae:53:5a:6f:9a:76:bb:87:ec:df:dc:
15:98:00:2d:4b:a6:47:60:89:5e:e4:4a:83:bc:5e:bc:ed:97:
01:24:1f:ff:c3:cb:eb:17:e9:73:47:2d:f3:ea:a2:0e:b9:f4:
b8:60:22:7f:54:6d:9e:c0:45:04:d2:5a:52:b6:38:92:89:e0:
24:72:3d:c1:26:f7:aa:14:44:5b:bc:fe:59:c4:32:97:a6:05:
ac:3e:95:37:ba:99:0f:c1:59:c3:36:85:36:76:73:05:6b:52:
95:74:b9:27:93:04:02:89:eb:22:da:48:01:12:dd:62:b2:ea:
ff:0d:8b:fc:d5:f4:9d:af:fa:89:9b:98:5e:10:e9:4a:c3:e3:
37:ef:84:aa
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:45 2024 by rpki-client on console-fra.rpki-client.org