Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer
File: oMgM7gY8nMgs3LC8dFxP5G3QJlc.cer (raw, json)
Hash identifier: WfVhO70Pp0B/DPvPflvf7ITLWLceIklCh+FG7OPX5bg=
Subject key identifier: A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E0BD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 26 Feb 2024 21:51:41 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.83.40.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123069 (0x1e0bd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 26 21:51:41 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91FAA91/serialNumber=A0C80CEE063C9CC82CDCB0BC745C4FE46DD02657
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:54:5e:23:4f:16:3b:89:50:ea:e7:c4:95:bf:
48:1c:ec:35:7a:a3:d7:31:c1:57:09:2c:25:d3:b8:
8a:af:f4:2a:fd:0a:e8:80:bf:66:13:6d:48:d4:7a:
22:db:f5:e8:ea:94:32:c2:bf:80:14:ff:16:ea:c1:
e8:fd:4c:2f:a4:06:65:6b:4d:fa:d9:c7:a2:59:6e:
70:4e:cf:4c:12:ac:f0:eb:bb:07:d4:36:61:d7:d3:
82:eb:28:1b:d0:d6:7e:6c:af:47:c9:9f:2d:15:d6:
81:fe:02:ab:36:f2:4b:ad:50:55:f9:8a:d0:5e:6a:
36:bf:3f:0b:88:61:bd:55:49:c3:4f:44:00:67:0a:
d8:56:0a:d1:f8:0b:d6:82:b3:8a:ca:ea:78:7c:27:
e6:d1:8c:a6:2f:eb:b4:b3:2c:c0:75:5a:f8:5b:8b:
21:ee:d9:43:e1:d6:6c:5e:3f:50:45:f1:26:27:40:
25:f7:85:3f:5b:7b:ff:e0:e8:9f:e6:3a:88:20:b7:
79:34:d9:6b:3c:c1:4b:72:54:dd:44:33:6f:b0:92:
f7:36:64:90:bf:35:7a:d4:64:e3:c5:eb:e5:38:76:
e5:11:ce:34:41:0d:19:c6:1d:30:bf:78:90:49:db:
ec:cf:cb:9b:b9:6f:bb:c7:01:2b:5f:9d:ea:dd:73:
b8:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A0:C8:0C:EE:06:3C:9C:C8:2C:DC:B0:BC:74:5C:4F:E4:6D:D0:26:57
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FAA91/9420D2100A5A11EEA3F5B441C4F9AE02/oMgM7gY8nMgs3LC8dFxP5G3QJlc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.83.40.0/22
Signature Algorithm: sha256WithRSAEncryption
c2:20:67:24:68:d7:75:18:de:72:ea:ce:b1:7a:7c:bc:f7:59:
b9:5a:20:97:e8:f1:a1:97:4f:35:09:4e:53:8b:00:16:ad:85:
2f:21:9a:53:ba:d3:34:00:02:26:8d:b1:4e:95:6d:38:d2:f7:
d2:04:96:28:eb:f5:95:81:9b:56:40:73:47:c3:45:ce:c8:28:
0f:6b:8e:a4:07:1c:33:84:97:07:dc:2a:e5:2b:c2:0b:c1:b4:
a7:95:5e:54:23:3c:c2:2e:fe:4a:93:9c:eb:91:32:12:37:0b:
0c:fb:8b:ee:f3:03:ce:ed:d0:15:6f:d4:a3:4a:53:e9:08:85:
51:4e:06:49:79:05:0c:e7:70:91:c4:f1:4e:25:4d:ac:8b:3a:
54:b5:e6:9c:b6:8e:3f:ed:4d:8f:75:6a:ae:60:24:86:b8:5d:
5c:50:cf:63:d0:96:7e:39:cc:26:e0:75:8f:74:39:0f:5d:d4:
cc:2b:17:b9:dc:45:60:35:bb:d0:96:37:7d:6e:c2:d6:53:9d:
54:9a:95:03:b7:48:9a:5a:33:c1:ad:bf:03:9c:2a:28:ee:4d:
ce:45:df:99:5d:5d:c2:6f:89:f8:75:59:4d:f3:7f:12:d7:58:
4f:5d:0e:3d:18:a3:64:b0:4d:6b:ab:50:7b:76:03:a7:4a:8a:
10:36:08:a1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:59:06 2024 by rpki-client on console-fra.rpki-client.org