Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mqU9J74bthSVPDedOeC7xfHBJKc.cer
File: mqU9J74bthSVPDedOeC7xfHBJKc.cer (raw, json)
Hash identifier: 7tgWvDLF5rQV8aGBTh9SY5b2DdRUqCMicel5ybcl0Ww=
Subject key identifier: 9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D6C9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 04 Jan 2024 17:55:51 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 135673
IP: 123.108.90.0/23
IP: 2407:d380::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 14 May 2024 23:39:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120521 (0x1d6c9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 4 17:55:51 2024 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91814CB/serialNumber=9AA53D27BE1BB614953C379D39E0BBC5F1C124A7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:e0:eb:d2:a6:e6:7f:92:b7:6e:d7:3a:ca:87:
c3:a4:be:c2:ef:8d:dd:82:5f:ff:3e:9b:ae:27:7f:
aa:85:81:1a:60:ff:9d:3f:89:b6:b4:80:0a:ca:b7:
bf:8b:39:ec:aa:ba:2e:78:13:2f:c0:1a:4e:32:0d:
a3:15:30:cd:f3:76:c2:9a:38:23:88:42:7c:5c:53:
cc:90:27:7a:59:db:8e:cb:8e:8d:7e:8e:b0:16:3b:
b9:9d:98:c8:f0:0e:36:62:97:27:82:7d:66:b7:8c:
f5:58:01:76:5f:cf:34:a3:c4:75:1a:5e:45:87:2a:
59:12:7d:04:49:18:e4:e8:57:4c:d5:6f:da:5c:e3:
80:75:b7:09:75:14:cd:41:5e:a9:5b:f9:24:cd:13:
60:d4:da:04:1f:ef:29:1a:36:15:85:4d:85:6a:1c:
ad:1a:cc:f1:b2:53:8d:3d:32:09:c5:b1:be:26:15:
7c:43:d5:c9:0b:4e:bf:b6:7e:d4:af:d7:5f:07:8e:
2c:1a:5c:2b:9e:31:23:99:51:09:be:d3:a6:20:da:
ae:67:91:da:4a:3d:0a:1d:57:5b:e2:d1:14:b8:95:
87:f2:b3:dc:f5:8d:db:39:cb:d5:bc:4b:ec:ff:0b:
28:49:04:46:70:0c:fe:26:04:d5:14:cd:9f:bc:2d:
8b:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:A5:3D:27:BE:1B:B6:14:95:3C:37:9D:39:E0:BB:C5:F1:C1:24:A7
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91814CB/ADEC543A1D7811EA8D301744C4F9AE02/mqU9J74bthSVPDedOeC7xfHBJKc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135673
sbgp-ipAddrBlock: critical
IPv4:
123.108.90.0/23
IPv6:
2407:d380::/32
Signature Algorithm: sha256WithRSAEncryption
00:8f:e1:48:56:b9:e4:3e:1a:91:4d:b1:25:07:1b:54:60:48:
a9:3e:9f:74:dd:0e:c3:8b:11:ec:6b:d1:6b:4e:8c:f9:6e:8e:
9d:59:7d:98:2e:b0:bc:60:82:45:9a:22:2c:78:00:7e:6e:7a:
1f:3f:25:7d:bd:b9:68:58:b2:c5:63:89:d7:e9:29:68:81:80:
d9:06:ae:af:4c:43:1e:9c:57:50:ce:10:27:41:8d:29:a7:66:
57:01:79:0b:f0:20:36:25:c8:e0:f9:a8:30:3b:3b:11:55:bd:
2c:32:83:1a:97:a6:2c:41:43:99:83:66:76:f7:78:dc:3d:2f:
ad:2f:7a:1c:bf:b1:86:83:eb:f0:9f:73:87:4c:5f:e1:2f:fb:
e4:2f:6f:98:7d:15:e6:c9:0c:9a:6c:a1:f2:3c:1b:b0:ca:10:
18:84:c9:3f:9b:07:59:5f:74:0d:5a:7b:41:d8:c2:b8:59:01:
26:69:b7:01:63:10:a5:a7:3f:c9:9a:bc:b7:62:67:bb:90:16:
05:c1:c4:e8:7f:1f:47:21:37:60:2f:a1:e5:b1:82:64:f8:30:
3d:24:39:54:9d:f3:2f:50:a5:c5:6c:60:86:59:2b:7a:66:11:
d8:ab:0f:b9:73:e7:d3:92:e1:29:29:dd:12:0f:57:c3:05:6d:
5e:f3:e9:b5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 00:10:59 2024 by rpki-client on console-fra.rpki-client.org