Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.cer
File: rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.cer (raw, json)
Hash identifier: sWyw2AjkVyj09Fg5h4LwuPhqqSH8doBb9azbEnnAX+E=
Subject key identifier: AC:89:19:0D:37:67:2F:D6:B4:23:1D:13:FC:77:FB:26:9F:D0:76:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DF20
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 15 Feb 2024 22:30:05 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.134.12.0/24
IP: 2001:df7:ab00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122656 (0x1df20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 15 22:30:05 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91F577C/serialNumber=AC89190D37672FD6B4231D13FC77FB269FD076A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:53:46:99:80:ba:f7:23:15:95:c3:f3:0f:d9:
4a:b3:d1:15:cb:ea:ac:a6:07:90:40:84:7e:7a:a7:
63:8a:5c:3e:d9:6b:36:d0:9a:d6:d2:21:8c:23:d1:
f6:f9:55:90:1d:a1:4c:09:21:78:0a:33:8d:d5:3d:
62:fa:64:4e:9f:34:f1:d3:63:1a:b0:0e:45:58:08:
fe:a8:8f:49:71:45:04:e3:8e:c7:13:25:90:a8:94:
f8:f4:34:b1:06:ef:98:ca:fd:85:20:8a:ac:29:91:
89:de:3c:9f:3e:c4:ad:e4:38:20:be:5b:1a:b5:3e:
5f:31:e9:30:fc:e7:f1:d8:a2:dc:e3:d7:19:1e:26:
bd:38:29:b7:35:f0:2b:b7:f9:de:e1:c3:57:06:fe:
b2:5e:54:7a:af:3e:7f:9b:cf:c0:74:ce:2f:30:65:
9e:6e:a2:89:8c:10:c7:79:7b:1e:67:db:f7:a4:f3:
3c:1d:18:6d:74:75:66:c2:a4:ec:83:68:9e:84:04:
be:06:86:8b:65:da:20:0e:eb:9f:19:8d:e3:ea:01:
44:51:2b:d0:4e:6b:77:b4:c0:f5:73:58:d3:ba:91:
f4:43:4b:e0:35:a0:93:46:15:3c:1e:62:6c:40:7c:
4d:81:3b:d5:ac:a4:c8:77:37:68:63:c4:a7:94:4b:
79:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AC:89:19:0D:37:67:2F:D6:B4:23:1D:13:FC:77:FB:26:9F:D0:76:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F577C/58DB98C6568C11EC826B2F1EC4F9AE02/rIkZDTdnL9a0Ix0T_Hf7Jp_Qdqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.134.12.0/24
IPv6:
2001:df7:ab00::/48
Signature Algorithm: sha256WithRSAEncryption
a1:98:b7:d3:a5:ce:ed:f9:2b:36:79:0c:e3:74:4d:56:a9:d1:
4a:b1:22:35:24:2b:7b:69:a9:87:01:98:9a:d9:b3:fe:5d:c7:
85:1a:f4:a5:5c:eb:3b:5e:25:5c:d3:7f:91:37:ed:3a:8a:bc:
21:c1:f4:fa:e0:41:e2:e5:02:b4:a2:2c:02:b8:2d:d8:01:f0:
fe:da:1c:31:41:4a:6b:31:10:34:a9:81:03:c3:1d:ed:e5:af:
66:e1:9f:65:df:59:e9:ce:ac:d6:9f:65:56:4d:11:34:7b:26:
0c:dc:56:ac:30:04:9c:00:da:67:08:94:77:c1:97:b9:05:d2:
52:95:cf:9b:37:e6:14:4a:f6:d3:76:c2:77:e6:d1:c0:38:59:
0e:7c:c5:64:8a:94:13:7e:fa:d8:ea:fb:ed:2b:86:fd:59:00:
e0:9c:a0:e9:ca:f3:02:06:a8:45:42:af:6a:5b:c9:f5:d0:35:
4f:5d:d9:f1:a2:9f:2a:3e:af:1e:8b:5f:c6:7e:7e:9d:6a:64:
e7:4d:fe:15:4a:04:e6:34:cb:a2:b7:92:fe:14:9b:d2:de:86:
ea:82:72:74:2d:b4:bf:5a:02:7e:01:71:5d:78:c8:b8:4c:09:
30:95:1b:19:45:55:a9:ef:f7:db:4a:34:de:85:0c:f6:ac:3b:
50:1d:78:20
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:51 2024 by rpki-client on console-fra.rpki-client.org