Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer
File: kz73JgbZ1bKf46QfIMUrIMr1Vbo.cer (raw, json)
Hash identifier: My3WWSjZJKrakSVbCDfGDGaZD1tdMrUT5+7Dlv651QA=
Subject key identifier: 93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021217
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 04 Oct 2024 01:26:32 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: IP: 103.38.192.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135703 (0x21217)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 4 01:26:32 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91D6503/serialNumber=933EF72606D9D5B29FE3A41F20C52B20CAF555BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:80:54:ec:cc:ff:60:4e:51:69:ef:48:ce:5c:
a3:fd:7c:49:93:5b:f3:05:17:e5:8a:08:85:3b:9e:
df:72:a3:26:07:88:3d:c1:ad:e7:95:92:b5:72:ea:
3b:b1:16:19:24:f0:fd:93:a1:51:7e:20:3d:30:47:
9b:6b:77:15:7d:27:10:00:58:0f:58:07:51:f9:ed:
7f:3e:58:27:01:52:d3:56:57:c7:55:11:d4:2e:09:
a3:92:7d:6f:6f:e9:6f:fb:0f:94:df:d5:38:bd:f6:
65:cc:22:4d:fc:7c:86:33:00:f5:1b:99:dc:37:d4:
f4:13:6e:e0:a3:49:0e:6d:80:9f:00:94:c8:3c:13:
38:21:67:4e:57:63:81:f6:6b:17:a2:8e:ea:df:a9:
e7:31:d2:67:f1:4e:22:44:d6:0b:d7:06:c2:ea:e1:
14:ba:8e:de:18:cb:1c:d4:26:fd:20:96:77:81:cf:
48:32:f8:01:00:52:3e:48:80:1a:32:bb:5b:24:6e:
f3:d0:ac:f8:f1:6b:fc:60:5c:0e:1f:5b:fd:c2:dc:
33:35:89:fe:78:39:2d:aa:21:38:f0:72:e6:70:23:
ef:d3:47:13:a6:30:5a:c9:2c:40:04:8c:6d:88:01:
e5:0c:8c:26:2f:e4:c0:a1:af:8e:45:09:a5:24:8a:
53:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
93:3E:F7:26:06:D9:D5:B2:9F:E3:A4:1F:20:C5:2B:20:CA:F5:55:BA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D6503/0154B4B6EE8711EAB52A5C09C4F9AE02/kz73JgbZ1bKf46QfIMUrIMr1Vbo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.38.192.0/22
Signature Algorithm: sha256WithRSAEncryption
01:41:9f:be:bf:b0:ae:41:ff:80:3e:a1:16:8f:1d:17:e3:2f:
85:96:20:c5:d2:83:4f:8b:eb:eb:93:cd:5e:c8:f3:3a:09:cd:
89:64:18:f4:96:3b:34:3d:72:eb:36:df:d5:c1:62:60:64:63:
c1:3f:57:70:08:80:59:9a:be:67:ea:28:95:d4:52:60:76:c1:
72:31:0d:fb:78:ae:62:f6:87:01:09:93:8b:20:70:c3:ca:db:
19:d1:e3:91:92:7a:ae:07:b6:c1:19:7d:1e:2d:6c:23:9c:54:
8a:a3:5c:ca:62:53:d8:37:2e:a1:42:ad:9a:8b:c6:1f:d4:55:
c4:3b:47:57:b7:ee:b9:e0:ce:04:72:29:ff:d1:9b:e8:f9:40:
7c:02:18:e1:bd:97:09:ee:03:1c:4f:b5:71:77:39:f9:be:67:
47:de:30:1a:f6:14:f0:ae:18:26:36:0f:8f:45:93:53:21:2f:
eb:85:cc:84:9b:b0:9a:81:fc:51:65:70:51:f3:26:35:0f:ae:
19:91:11:c7:e9:a7:65:b6:b9:7d:8f:7b:e7:29:75:27:df:7d:
86:b3:85:11:80:0a:99:c4:46:c5:fc:a1:5a:ce:22:00:a6:9b:
60:cc:b0:1e:93:cb:6d:10:66:0b:4b:b7:07:d2:ff:15:ad:45:
27:84:0e:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:46 2024 by rpki-client on console-fra.rpki-client.org