Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer
File: oto2N9MlP4mX2I0L2NqVmPeD-ZE.cer (raw, json)
Hash identifier: QKqeadczJ2oHSup1GqlLznDUBmgsCUSZ86SYNXxJIL8=
Subject key identifier: A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020518
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 05 Aug 2024 18:42:56 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: IP: 202.37.138.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132376 (0x20518)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 5 18:42:56 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A918AAA1/serialNumber=A2DA3637D3253F8997D88D0BD8DA9598F783F991
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:75:c8:d7:90:6d:c4:44:10:8c:c6:58:4d:7d:
54:31:80:f3:52:7a:be:46:e5:f7:aa:ee:36:4e:8d:
7a:06:bc:bc:01:5c:fa:ff:53:5d:18:0c:57:2b:3d:
c6:ff:6b:8e:6c:7f:8d:c6:f4:9e:01:2f:83:2a:44:
1c:2d:7d:7e:12:e0:2a:6b:e6:30:af:46:af:f0:20:
fa:86:19:75:b1:0f:d0:4a:09:93:cf:a9:45:57:a1:
d4:cc:a3:00:76:d6:2c:b6:ba:53:78:b4:9d:6e:ff:
f2:f0:c9:05:8a:43:c1:31:95:b6:38:ae:7b:a3:32:
d0:6c:3c:7b:18:f4:3d:5c:72:d9:39:4c:2a:d6:09:
0c:1d:5b:ac:17:69:b4:99:9d:e2:50:3f:8a:a1:f9:
cc:31:11:b8:4c:6a:d7:0b:b7:af:55:49:36:ca:72:
df:ae:d5:50:df:5a:fb:a8:64:4d:6c:d5:56:09:6d:
26:72:e8:6f:51:fb:4c:aa:8f:53:34:85:37:f9:d1:
57:d4:6f:5d:85:ff:85:be:ab:b4:b4:40:3d:73:94:
6f:7a:c2:7f:b5:70:42:e4:cf:66:48:57:c3:43:2a:
eb:21:7d:ef:28:b4:eb:88:fc:d1:7f:ba:1c:b7:1d:
4c:7f:1a:35:79:77:97:f1:ff:71:63:bd:03:91:83:
d8:4b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A2:DA:36:37:D3:25:3F:89:97:D8:8D:0B:D8:DA:95:98:F7:83:F9:91
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918AAA1/8114C79C486E11EEA960942CC4F9AE02/oto2N9MlP4mX2I0L2NqVmPeD-ZE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.37.138.0/24
Signature Algorithm: sha256WithRSAEncryption
3a:af:b7:25:30:cd:41:df:8f:44:66:5e:8f:5b:3c:89:e9:e3:
08:92:99:55:98:2b:dd:81:37:20:c1:a5:51:f6:96:54:30:78:
25:ae:c4:37:b1:5d:6b:98:64:23:f5:a1:34:0e:1c:a3:03:b9:
de:c3:c5:78:36:64:e9:cd:eb:ab:e6:bd:08:a4:77:a7:46:54:
13:46:20:de:9f:84:2c:95:2e:40:dc:c0:65:48:97:5e:e0:cb:
0b:22:d4:71:09:b6:15:98:25:1a:58:35:8c:7a:20:41:9f:9c:
6f:9b:31:95:16:da:7d:38:4d:1e:ea:a2:ed:16:b5:e2:44:4f:
cb:3c:9b:db:79:c4:87:c3:c6:47:3a:20:49:1f:7d:6b:91:ae:
bc:e4:63:13:ff:cf:bf:84:04:c7:d8:b3:f1:43:ed:75:03:58:
31:f6:93:8d:a2:68:39:ba:63:3f:2b:ff:13:ac:11:c4:70:6c:
4a:05:7a:9d:25:3f:7b:20:f6:fe:a1:0f:6a:4f:90:5a:e2:e8:
be:cd:8d:75:3b:ff:04:7b:46:24:24:47:fa:e1:eb:37:f1:5d:
ab:6c:8d:65:6b:ae:2c:8c:e9:e3:12:a6:fa:19:fd:37:4e:df:
f4:99:bd:6e:83:7a:82:41:da:70:ec:7d:37:84:d7:b6:09:ad:
13:a2:e7:af
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:15:47 2024 by rpki-client on console-ams.rpki-client.org