Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer
File: rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer (raw, json)
Hash identifier: qbvqdfR+JCaE2pkL+BSAF2B8GtlL7PskX2iZe/sJ6jM=
Subject key identifier: AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CD75
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 28 Nov 2023 20:20:31 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: IP: 103.175.92.0/23
IP: 2001:df7:ef80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 14:11:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118133 (0x1cd75)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 28 20:20:31 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A919F55C/serialNumber=AD06DBCC5334C6D751372FB17954F4AAADDC9C3F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:94:35:9d:bd:df:f8:5f:c7:0f:cf:55:51:
3c:df:1a:15:d6:da:70:c6:34:90:b9:9e:30:a1:19:
cb:ec:95:91:a6:cc:a0:83:4b:1c:a7:f9:fc:1f:b2:
b8:dd:4f:2c:6f:50:c6:38:89:e1:55:75:2f:87:8a:
13:f8:d0:65:db:4c:c2:e3:5e:60:39:91:bc:be:29:
a4:99:a0:f0:d1:8b:8b:c6:5c:32:e9:97:d2:d5:fe:
d4:43:e7:c7:a9:f3:d3:2a:7b:97:a4:26:3a:26:a6:
c8:78:78:e4:ac:0f:e9:0d:2d:81:69:47:0e:ec:f0:
f4:71:dd:22:02:2f:25:c2:b9:57:ec:cc:62:1c:0a:
38:be:3d:87:cc:db:10:69:50:4f:98:4a:e6:c9:68:
e5:b0:f8:55:f1:8a:d9:52:d0:b7:29:2b:fe:5b:65:
9c:90:09:f0:72:1d:e6:89:0d:01:0c:e7:77:d2:08:
f8:c0:4e:01:3a:4f:56:39:52:09:bb:09:c3:78:b5:
6c:72:5f:26:1e:53:a5:ef:44:c6:73:f9:e8:9e:55:
9f:b2:ad:54:87:41:7e:a8:46:47:c5:bc:c0:8d:01:
f6:60:98:b5:cd:65:5a:7b:dc:b4:2c:be:1f:64:bd:
0b:53:2a:be:a9:ea:5c:82:c2:f5:34:94:8f:2f:9f:
db:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.92.0/23
IPv6:
2001:df7:ef80::/48
Signature Algorithm: sha256WithRSAEncryption
45:4a:79:2d:00:9d:61:21:8d:d0:85:ab:62:17:2a:48:4c:72:
fe:e7:1d:fe:8a:78:ff:1d:1d:7b:36:11:1e:35:0d:32:69:dd:
b2:09:71:80:c0:47:a4:c6:9f:2f:72:c2:51:79:0c:e5:02:2b:
10:25:67:4e:69:6b:e3:42:09:53:cb:71:1c:b3:66:01:ed:e0:
02:c7:08:40:21:e6:b9:9b:10:4e:28:76:2d:f2:a4:0e:ee:5e:
cb:60:47:c2:65:d1:2d:70:94:74:49:b5:9b:e8:af:1a:0b:78:
19:d1:ba:d1:82:68:85:ce:cc:a2:92:7f:8b:d3:d7:e0:05:45:
e7:ee:86:79:61:cd:d1:cd:4a:1d:53:7e:da:05:5c:5c:8b:be:
3f:66:dd:98:b0:a6:d0:6a:7f:8b:d9:6e:d7:75:d1:95:fc:77:
67:e8:c4:f1:50:06:27:1a:7c:90:92:a5:88:61:f1:dc:3c:fe:
ad:65:eb:3b:73:9f:1b:ab:73:d2:d7:6f:df:61:90:47:4c:69:
4b:e2:02:87:31:04:4d:e4:1c:6e:3c:01:c6:e3:4b:80:d4:ff:
49:e0:3b:19:da:9c:cc:38:05:13:32:5d:8d:3b:49:ad:62:ba:
55:a4:c2:0b:9d:92:7a:fc:9c:a2:89:d5:c9:db:ee:ea:26:d2:
24:e6:6c:68
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 15:04:52 2024 by rpki-client on console-ams.rpki-client.org