Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/o9XPQ95bPYucND7UScFpDr40Fw4.cer
File: o9XPQ95bPYucND7UScFpDr40Fw4.cer (raw, json)
Hash identifier: 1AQ/wwaKVN8gWVib4d/TX3fQt7g6qFU9FqRwP5/6mrg=
Subject key identifier: A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DE57
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 11 Feb 2024 14:08:11 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 103.147.62.0/23
IP: 2405:acc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122455 (0x1de57)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 11 14:08:11 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A914CCD1/serialNumber=A3D5CF43DE5B3D8B9C343ED449C1690EBE34170E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:4b:54:ac:7b:2d:32:6b:11:0f:6c:81:05:53:
6e:89:a2:83:aa:99:cc:c2:88:89:33:68:b2:a7:2b:
ba:bc:09:16:de:65:e8:eb:06:08:95:1d:35:79:0f:
ca:fc:10:67:b7:84:76:fd:bc:ab:a0:25:46:9c:a6:
a7:07:02:6a:61:87:43:04:e9:a9:c4:a9:2a:cd:c0:
20:b8:bb:18:25:d4:11:23:2f:b0:f9:c5:78:17:95:
08:36:9c:3b:be:4e:dd:bc:e3:63:61:0a:94:ba:8c:
cf:92:94:56:4f:7b:29:45:f5:72:ea:6e:81:d8:1f:
8a:d5:c4:65:15:6b:2d:24:86:f1:24:a6:d8:f3:77:
b4:84:dd:21:1e:65:47:7c:ff:b5:8f:da:ea:76:fe:
6a:e1:89:36:e5:c2:ad:14:c5:6c:b0:2a:7e:82:60:
91:7c:e0:06:b9:0d:01:f6:e5:38:3d:b0:b6:23:f5:
f9:80:77:90:e7:17:19:b3:de:df:2d:93:74:ab:f7:
81:ee:cf:7a:62:e0:66:88:42:2c:94:09:73:04:37:
b9:90:33:99:85:37:36:3e:f9:64:85:24:e7:88:3f:
19:17:73:59:9c:fa:7d:03:36:63:b6:9e:9b:2e:cb:
c9:7c:19:d2:3d:9f:53:67:59:70:43:14:14:74:99:
a9:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A3:D5:CF:43:DE:5B:3D:8B:9C:34:3E:D4:49:C1:69:0E:BE:34:17:0E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A914CCD1/AD7F45A4CDC411EBB5F48355C4F9AE02/o9XPQ95bPYucND7UScFpDr40Fw4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.147.62.0/23
IPv6:
2405:acc0::/32
Signature Algorithm: sha256WithRSAEncryption
cf:62:fc:2a:b6:9e:d7:3b:fa:4e:26:86:6f:d5:51:31:42:0e:
36:53:c0:b7:3a:34:f5:93:c8:f4:62:f5:f7:8d:55:67:ee:20:
be:86:6b:02:6b:12:48:62:65:24:17:61:5e:1d:bf:e7:91:30:
19:a8:f1:b2:df:21:96:29:07:8c:b8:00:27:73:df:5a:ee:18:
0a:8e:ad:a9:ae:e9:14:87:5e:60:30:d8:a6:ea:52:39:c3:79:
db:38:f1:f3:b4:2e:84:6a:4f:62:13:9e:c9:15:c0:55:ac:e7:
6a:48:ff:05:94:44:02:cf:63:b6:16:d1:b1:b7:6a:02:a6:15:
77:95:cb:9c:8c:a6:79:27:85:7a:c5:a7:ef:14:be:44:5a:25:
f7:4b:19:02:80:42:ab:24:7a:cf:10:a2:75:48:ac:1e:cc:8a:
d8:f8:a9:ca:c1:25:67:2b:a6:c7:38:e7:80:21:24:4b:8a:83:
f7:97:f3:c4:f4:9b:d1:d3:3a:0f:5f:82:fc:01:aa:a1:ea:f2:
d8:cf:ad:be:9d:32:e4:01:e8:12:92:4a:fb:ca:5e:6a:6b:25:
f3:2e:ac:99:44:bd:a9:a6:82:ba:b9:b1:bb:7f:3f:b3:3e:f1:
df:79:38:40:6b:1a:41:15:64:f5:53:f7:c8:18:13:6d:60:dd:
b8:6f:51:1d
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:03 2024 by rpki-client on console-ams.rpki-client.org