Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/lCJM-heqoN5UOrYQifwdOdGZDj4.cer
File: lCJM-heqoN5UOrYQifwdOdGZDj4.cer (raw, json)
Hash identifier: rjPLOt1B2Ri4HJZGqZL9K2A3B73SSVflhgRM4tRaIO8=
Subject key identifier: 94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ADDE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Jul 2023 17:39:54 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 43.255.40.0/22
IP: 103.254.144.0/22
IP: 202.6.244.0/22
IP: 203.209.144.0/20
IP: 223.252.112.0/20
IP: 2001:df0:6800::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110046 (0x1adde)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 17:39:54 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A918B936/serialNumber=94224CFA17AAA0DE543AB61089FC1D39D1990E3E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:f6:9a:c7:15:f5:5c:7d:a6:be:10:8d:a0:f0:
1d:12:a1:ab:46:93:94:ff:f9:79:46:d9:85:6b:01:
98:83:2f:50:99:9d:e3:64:8a:36:fe:62:06:87:ac:
7c:19:db:6e:02:bf:48:a6:e7:8b:3f:38:a6:ae:af:
85:6c:23:71:a0:45:02:3a:b6:8a:59:77:50:c2:60:
3e:38:ab:1f:f3:df:3c:81:15:85:82:0c:d9:9f:68:
da:ad:5d:3e:70:fe:76:cc:e9:7f:bb:0a:10:42:52:
05:a8:c5:d3:40:ee:92:74:f8:ec:1f:57:cb:bf:eb:
08:ad:92:e8:2e:f7:d6:0d:4c:e8:7c:ba:25:c0:6f:
be:22:7c:81:8a:c9:45:5a:3c:9c:91:2a:31:42:7f:
1a:d3:e4:8a:a1:80:ae:fb:99:7d:2e:b1:d6:ea:dd:
8b:2a:1e:e1:75:d9:7a:1f:3c:e9:44:9c:19:25:90:
f6:75:0a:81:48:b6:b8:d7:09:64:8a:5a:6f:33:57:
49:a3:56:0e:a6:69:78:0c:65:33:bd:e5:24:e6:8d:
14:58:55:ff:f2:d6:cc:54:34:50:d0:fc:40:a0:08:
c0:6a:f2:6d:f9:a5:0d:2f:35:fc:22:d8:ce:4d:0e:
62:96:e5:c9:c4:8c:fc:7b:2f:f8:1a:f9:d2:9f:7d:
da:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
94:22:4C:FA:17:AA:A0:DE:54:3A:B6:10:89:FC:1D:39:D1:99:0E:3E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918B936/4ED22FD2F0CD11E5A4432E74C4F9AE02/lCJM-heqoN5UOrYQifwdOdGZDj4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.255.40.0/22
103.254.144.0/22
202.6.244.0/22
203.209.144.0/20
223.252.112.0/20
IPv6:
2001:df0:6800::/48
Signature Algorithm: sha256WithRSAEncryption
92:8d:69:df:c4:34:f1:3a:4e:8e:ac:e9:5b:f9:a6:33:ad:0c:
69:b2:0f:ad:0f:95:b1:2a:7e:23:c2:71:25:b7:4f:d4:61:63:
12:43:29:ea:8e:67:0b:74:84:a3:89:c6:64:62:a6:29:db:06:
90:af:1d:74:7d:d7:29:06:46:ef:e5:94:32:91:d6:d5:56:6d:
6a:e7:14:23:bf:aa:a7:7d:d9:42:3f:02:92:bc:ff:71:63:8a:
f0:97:c1:60:4c:2f:d7:89:1e:b2:b0:95:0d:cd:91:02:a8:74:
06:59:d6:df:9e:ef:48:9f:8c:08:b0:7d:6d:7d:98:e5:0c:2a:
08:c3:69:e5:3e:8b:7b:b6:36:4d:11:1a:bc:d1:85:b0:ab:16:
76:b9:29:03:d3:b8:03:7b:d6:60:f3:a6:b3:42:5a:f7:01:d0:
c1:02:f7:d0:ab:97:15:d1:33:fb:a0:0d:22:c0:13:15:1c:18:
6a:40:d0:2d:f0:56:c4:5d:23:11:a7:ab:c3:48:31:b6:86:8c:
c0:9d:25:6b:77:71:e5:26:95:92:85:cd:84:94:ce:2a:f1:5c:
b0:85:3f:2d:db:43:5b:65:c1:9d:6e:5a:a0:c9:04:ae:a1:c7:
29:20:d3:81:1c:71:70:79:a3:c9:7f:95:b4:a9:44:4a:82:6f:
44:ef:5d:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:33 2024 by rpki-client on console-fra.rpki-client.org