Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer
File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer (raw, json)
Hash identifier: /zn8wr8oNJygnKNtfZsn5PUk1iVfsXI5BuFqRiHg3v0=
Subject key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BAC1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Sep 2023 02:23:20 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: IP: 202.37.138.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 05:30:34 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113345 (0x1bac1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 1 02:23:20 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:75:c8:d7:90:6d:c4:44:10:8c:c6:58:4d:7d:
54:31:80:f3:52:7a:be:46:e5:f7:aa:ee:36:4e:8d:
7a:06:bc:bc:01:5c:fa:ff:53:5d:18:0c:57:2b:3d:
c6:ff:6b:8e:6c:7f:8d:c6:f4:9e:01:2f:83:2a:44:
1c:2d:7d:7e:12:e0:2a:6b:e6:30:af:46:af:f0:20:
fa:86:19:75:b1:0f:d0:4a:09:93:cf:a9:45:57:a1:
d4:cc:a3:00:76:d6:2c:b6:ba:53:78:b4:9d:6e:ff:
f2:f0:c9:05:8a:43:c1:31:95:b6:38:ae:7b:a3:32:
d0:6c:3c:7b:18:f4:3d:5c:72:d9:39:4c:2a:d6:09:
0c:1d:5b:ac:17:69:b4:99:9d:e2:50:3f:8a:a1:f9:
cc:31:11:b8:4c:6a:d7:0b:b7:af:55:49:36:ca:72:
df:ae:d5:50:df:5a:fb:a8:64:4d:6c:d5:56:09:6d:
26:72:e8:6f:51:fb:4c:aa:8f:53:34:85:37:f9:d1:
57:d4:6f:5d:85:ff:85:be:ab:b4:b4:40:3d:73:94:
6f:7a:c2:7f:b5:70:42:e4:cf:66:48:57:c3:43:2a:
eb:21:7d:ef:28:b4:eb:88:fc:d1:7f:ba:1c:b7:1d:
4c:7f:1a:35:79:77:97:f1:ff:71:63:bd:03:91:83:
d8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.37.138.0/24
Signature Algorithm: sha256WithRSAEncryption
6a:d1:b1:17:c1:01:02:18:ef:30:c4:4d:2d:d3:77:41:fb:b7:
11:b2:eb:b2:dc:33:78:a6:92:ca:c2:8c:9c:5e:86:b8:85:e5:
39:82:3b:32:90:5f:0c:c9:a2:e2:c2:c4:f5:21:38:c9:cd:b7:
f9:67:35:2f:4a:f5:d5:a1:bd:18:8d:9f:4d:d1:64:1f:ca:d0:
6a:f0:62:bc:b8:ac:6d:2f:8b:35:de:06:1b:72:63:87:e9:8d:
d2:f2:7a:5a:2c:b9:3e:cf:a2:d7:b8:53:0d:ff:c6:f4:bf:6d:
22:20:5a:2a:4a:bb:f3:70:e6:fe:d9:72:8d:70:56:c9:da:f6:
d6:b2:24:e0:c4:6b:20:ee:25:43:21:a0:05:87:69:84:93:97:
a1:3b:59:3a:92:cf:93:50:06:a9:1d:80:71:40:66:27:09:17:
a2:86:a4:e1:a8:bb:46:74:b1:a6:b4:9b:3d:67:ad:08:59:92:
94:71:b5:0c:a3:5f:b4:c7:3b:0f:7b:fb:c6:dc:97:49:f9:d8:
c3:fd:97:4f:36:1c:e3:e7:26:63:6b:f8:d8:3b:b2:6d:c1:5a:
4f:5b:83:a4:44:a2:59:4b:6d:80:d6:b1:11:15:40:2b:32:1b:
cb:e7:3d:93:85:dd:9c:df:83:96:c6:82:f2:f5:78:b4:02:c7:
c8:26:b8:2f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 06:14:33 2024 by rpki-client on console-fra.rpki-client.org