Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mPTtHqVu_jfKE0-HapZfKsb6N0g.cer
File: mPTtHqVu_jfKE0-HapZfKsb6N0g.cer (raw, json)
Hash identifier: 4vJqSg2M8S1yORxO8g2ve5sOCwgmnf14XX00mVKodyQ=
Subject key identifier: 98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BE7A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Sep 2023 05:43:14 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 103.226.244.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 10:14:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114298 (0x1be7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 20 05:43:14 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9190EF5/serialNumber=98F4ED1EA56EFE37CA134F876A965F2AC6FA3748
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b4:e0:3e:dc:b9:a7:e8:4e:38:c2:7b:7c:f7:35:
06:cb:e3:00:c5:ed:2e:60:63:f5:dd:41:e0:a1:c3:
54:4b:be:3d:3b:d8:48:a9:9d:de:50:83:06:94:60:
05:92:2c:ef:79:37:a1:8c:45:c4:43:14:fd:ca:88:
65:bb:48:61:28:ba:28:70:ab:00:1f:60:68:30:49:
65:ec:cd:5d:25:c6:b1:1f:b2:4c:4f:36:09:c5:3a:
69:b7:1f:ee:42:f4:d1:e4:fa:3e:8f:4f:a2:c4:97:
6f:87:4f:56:47:08:6c:f6:e4:d1:86:ce:d5:03:19:
51:d8:26:b1:31:f4:0e:15:a5:e5:5a:c8:ad:32:f4:
62:54:ca:21:bb:07:66:f1:7b:f6:36:45:2e:ec:3b:
89:b4:a9:9f:1f:da:b3:87:0e:80:dc:d4:c2:b9:24:
24:cb:ae:12:59:f8:c4:ae:e1:db:09:3c:a2:15:22:
db:be:95:09:af:7f:d9:64:ae:aa:42:6e:d4:7c:11:
ed:1f:b7:d5:c8:ae:10:3c:cf:74:44:6e:0e:4b:a8:
07:e1:ed:3e:ef:9d:52:45:59:e3:83:27:80:f2:83:
62:9e:99:22:25:24:dc:d3:28:c3:8e:6e:ef:df:3c:
23:66:91:98:2e:78:e8:95:d5:e4:d0:2e:0f:ad:ac:
53:ef
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:F4:ED:1E:A5:6E:FE:37:CA:13:4F:87:6A:96:5F:2A:C6:FA:37:48
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9190EF5/9406628E577811EE8CDF857AC4F9AE02/mPTtHqVu_jfKE0-HapZfKsb6N0g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.226.244.0/23
Signature Algorithm: sha256WithRSAEncryption
d6:99:8f:8a:b0:e2:16:7b:d3:76:1a:1c:b5:d8:fa:75:a3:29:
ab:a8:2f:a4:ef:e4:7d:ec:a4:79:15:f0:4d:f5:21:2f:e0:fa:
fd:18:0b:fa:a3:01:f8:cc:ce:c6:56:57:8d:58:1e:58:da:a2:
af:0c:6f:db:e9:82:2e:5d:14:bf:0a:26:da:b4:04:d2:e3:78:
40:c8:54:12:9f:02:01:2c:7f:4c:25:5d:f6:ff:a0:21:8b:43:
58:29:be:e5:81:85:ff:21:2f:9a:98:16:71:55:78:7b:52:af:
6f:06:85:98:fe:c4:8d:4b:fd:12:93:fd:d2:c3:af:cb:84:78:
e5:65:87:58:2f:f3:3f:11:29:15:4c:59:7f:cc:90:b9:7e:03:
11:9d:b3:1b:85:3b:51:d3:39:0a:8f:a0:b4:91:bd:c8:82:ad:
8c:c4:a2:57:06:39:44:64:fb:e3:0c:36:e6:9e:c2:db:5e:59:
f1:34:bc:8f:18:f4:5f:9b:aa:a1:4b:d0:5c:71:47:67:42:15:
05:6a:3e:fb:d8:b9:48:15:fa:64:99:78:44:e6:d1:40:c4:90:
21:38:ef:c8:0d:44:89:2b:96:f9:37:eb:fe:c6:3c:73:be:40:
84:d8:bc:9e:18:1e:72:1f:56:6c:11:94:49:33:c2:82:5f:2d:
09:2c:4b:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 11:35:38 2024 by rpki-client on console-fra.rpki-client.org