Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mFJq8YqDozT1eZgqMXm23R6X3i4.cer
File: mFJq8YqDozT1eZgqMXm23R6X3i4.cer (raw, json)
Hash identifier: 2XhfxiS5kBYMscGogK06blcgxGAWGInd7xrcO8cD3yI=
Subject key identifier: 98:52:6A:F1:8A:83:A3:34:F5:79:98:2A:31:79:B6:DD:1E:97:DE:2E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F17D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 13 May 2024 13:34:48 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 17926
IP: 203.211.60.0/22
IP: 2001:df0:14::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127357 (0x1f17d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 13 13:34:48 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91308CE/serialNumber=98526AF18A83A334F579982A3179B6DD1E97DE2E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:2e:73:7c:43:6c:ae:45:27:29:0e:7f:c4:0a:
2b:9b:19:ad:e8:d3:05:a2:bb:20:23:fe:61:c7:34:
9d:33:f1:b9:3d:5c:27:f2:f3:e1:5a:10:6a:a2:cf:
b4:99:88:59:c7:75:94:fb:ba:c7:a7:32:f4:c5:7d:
93:9e:1b:24:8d:3d:4a:ff:de:87:1e:7c:c1:1c:dc:
5e:e5:5a:5a:f8:22:8c:00:f5:12:ad:22:a7:69:95:
ac:0d:90:4c:ed:7b:68:75:0c:61:17:17:da:29:69:
04:1a:5c:c9:c4:33:85:10:df:1f:c7:e6:52:65:ea:
c3:f1:bc:8b:8a:6b:2f:c9:14:ad:db:83:85:5a:96:
fe:6a:bd:26:6c:80:8f:49:82:3b:de:7c:e7:81:f4:
9a:72:53:58:66:87:13:f5:71:9b:0b:f1:2e:c4:4c:
33:4d:57:29:e7:01:d2:4a:e4:49:52:24:be:82:97:
0d:81:f5:b1:77:3d:99:ee:30:f8:1a:36:e8:b7:72:
67:c5:b4:0a:1f:b8:fa:da:72:ff:e5:78:48:b9:d9:
6c:70:60:40:f5:a6:41:3a:a2:e5:d3:d1:59:1b:09:
11:46:b9:a9:b8:f1:6d:29:e0:49:3e:75:1a:74:dd:
1c:0d:de:29:fd:3f:02:36:5b:db:63:07:99:7a:3d:
09:b3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:52:6A:F1:8A:83:A3:34:F5:79:98:2A:31:79:B6:DD:1E:97:DE:2E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91308CE/257CF7261D9911E2967B9D8308B02CD2/mFJq8YqDozT1eZgqMXm23R6X3i4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17926
sbgp-ipAddrBlock: critical
IPv4:
203.211.60.0/22
IPv6:
2001:df0:14::/48
Signature Algorithm: sha256WithRSAEncryption
49:b7:fe:37:9d:84:ba:ae:88:8c:a9:18:74:53:7e:64:6f:78:
ab:77:47:06:8a:70:fe:c3:37:17:20:6b:f9:01:12:b5:3b:91:
fe:c3:be:db:53:1e:cf:a6:ab:df:96:45:55:8a:29:96:ce:42:
cf:50:af:6d:b7:84:4c:f0:4f:b1:26:85:34:87:bf:46:16:7c:
28:cd:4b:9b:db:64:ad:d0:ff:e0:73:18:12:7e:fa:64:65:93:
c8:04:3f:a0:a9:86:42:b8:38:d1:df:d9:bb:b9:e7:fa:68:f7:
72:20:95:f9:a3:cb:08:ae:c2:71:c8:25:aa:d3:ae:92:08:d9:
ca:86:19:7c:46:2b:a5:d4:29:27:1e:8b:dd:75:af:9f:c2:c6:
2f:9f:90:83:23:74:1b:bf:a1:7c:e9:41:f7:da:7e:94:de:b7:
a7:49:9c:51:34:d8:d1:14:f2:4f:c8:a7:2c:b2:e5:08:a5:6a:
25:b0:75:3b:ac:9e:81:74:02:ec:31:0f:6b:5e:23:43:e3:4c:
82:df:27:87:7f:2a:a5:92:5b:a6:e3:85:fa:1d:26:7f:07:4e:
8f:f1:72:6a:a9:af:7e:75:d4:c9:b8:ec:8a:7c:f0:73:c4:7c:
39:c4:79:dd:1d:dd:02:04:6c:92:fb:56:db:75:15:70:2d:8b:
45:b8:a6:39
-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:47 2024 by rpki-client on console-fra.rpki-client.org