Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kbx5rhXMrqROT-eEX7_KY-f6654.cer
File: kbx5rhXMrqROT-eEX7_KY-f6654.cer (raw, json)
Hash identifier: zT3LoM1FNSYngKXCQ72rTGgvFRp8pJ3Pgk2fkvViVdA=
Subject key identifier: 91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C0BB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 29 Sep 2023 18:16:30 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 140702
IP: 202.87.4.0/22
IP: 203.57.38.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 21:25:50 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114875 (0x1c0bb)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 29 18:16:30 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9194335/serialNumber=91BC79AE15CCAEA44E4FE7845FBFCA63E7FAEB9E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:10:3d:e7:46:86:18:16:b7:03:80:ce:92:0e:
cf:c6:b8:ed:c7:16:31:f7:9b:8c:62:57:84:ee:47:
7b:5d:ba:54:08:e7:f0:3b:b7:91:b3:bb:3e:a5:bb:
cb:fa:72:2d:e6:6b:29:5d:0e:c3:a0:0a:a8:7b:bc:
0c:74:e3:2a:4f:e4:6b:c2:cd:40:a3:0d:30:11:6b:
74:ff:e0:b4:39:3e:d8:19:5f:f0:7a:d4:0b:e6:a6:
0e:4b:4c:d6:34:70:42:95:31:23:79:66:b0:56:1e:
59:d3:45:79:f9:4c:30:3d:c4:9c:66:bb:3c:21:5d:
0f:f4:76:9b:3b:93:ad:1e:46:e9:71:d1:30:83:0c:
bc:7f:d8:22:aa:d9:e5:be:9b:80:eb:4f:16:42:da:
24:ee:eb:a5:c8:33:2c:0f:ee:97:d3:3d:cd:37:8b:
1b:6f:42:f6:1c:b9:54:16:49:87:8f:2f:02:e6:c0:
e3:dc:04:e1:b8:b6:fd:91:e8:4f:64:39:22:9d:8f:
bd:f1:39:a3:97:97:6f:c4:f0:1c:63:9f:19:b7:97:
69:98:38:67:ef:b2:6a:92:52:d2:98:d5:d0:de:5e:
d8:f9:f5:99:f2:8f:a2:e4:04:13:5c:00:dc:b7:5a:
5f:71:9a:99:9e:aa:ad:c8:b6:34:ff:95:ba:e9:57:
92:19
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
91:BC:79:AE:15:CC:AE:A4:4E:4F:E7:84:5F:BF:CA:63:E7:FA:EB:9E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9194335/342D222851D111E9AF1FF73CC4F9AE02/kbx5rhXMrqROT-eEX7_KY-f6654.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140702
sbgp-ipAddrBlock: critical
IPv4:
202.87.4.0/22
203.57.38.0/24
Signature Algorithm: sha256WithRSAEncryption
62:12:40:7e:c4:2c:e5:1b:e7:a1:5e:0a:1e:fc:3c:1e:64:d4:
e4:84:b7:47:66:04:35:9f:7e:73:29:04:b1:5b:49:27:b9:15:
dc:68:de:73:0b:d2:7b:e4:54:1c:cc:ac:4c:86:48:d8:b0:cd:
69:43:f0:16:e6:4c:ff:04:9d:36:ab:99:bf:93:fc:48:a5:d7:
b9:ef:88:6c:51:6c:a5:ef:aa:3f:9b:d0:0f:6b:47:44:13:49:
ed:dd:08:3c:e9:a0:5f:30:23:d0:68:d8:bc:5d:0c:b8:68:be:
7b:69:7c:ea:68:a9:48:fb:ec:bc:65:ae:52:4f:63:f4:8b:5a:
41:f6:36:ae:16:f5:87:20:80:6a:fa:9b:10:60:fc:6f:34:de:
33:cb:32:42:24:fb:28:5a:b0:de:de:93:3d:70:7c:f9:df:62:
6b:85:f6:78:74:1c:41:22:b2:b9:47:ef:bb:85:a6:28:26:a8:
74:11:22:fa:56:3c:0a:cb:d6:9a:f4:bb:4f:ea:86:df:29:89:
d9:0b:19:ec:48:81:a4:8c:14:16:e7:03:70:6e:34:55:fb:35:
b9:70:b0:ad:7e:9f:48:c0:a7:36:b6:cb:49:bf:e5:8a:0f:83:
c7:2e:3c:18:e1:2d:2b:37:97:fe:f6:80:f2:bf:8a:32:b3:90:
07:1d:27:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 18 22:04:12 2024 by rpki-client on console-fra.rpki-client.org