Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer
File: rQbbzFM0xtdRNy-xeVT0qq3cnD8.cer (raw, json)
Hash identifier: wA//EA8iZc6ts90TSrBuuGYud+8NjyFgWuGDWLc4al8=
Subject key identifier: AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021E09
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Nov 2024 19:08:02 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 103.175.92.0/23
IP: 2001:df7:ef80::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138761 (0x21e09)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 27 19:08:02 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A919F55C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e1:7c:94:35:9d:bd:df:f8:5f:c7:0f:cf:55:51:
3c:df:1a:15:d6:da:70:c6:34:90:b9:9e:30:a1:19:
cb:ec:95:91:a6:cc:a0:83:4b:1c:a7:f9:fc:1f:b2:
b8:dd:4f:2c:6f:50:c6:38:89:e1:55:75:2f:87:8a:
13:f8:d0:65:db:4c:c2:e3:5e:60:39:91:bc:be:29:
a4:99:a0:f0:d1:8b:8b:c6:5c:32:e9:97:d2:d5:fe:
d4:43:e7:c7:a9:f3:d3:2a:7b:97:a4:26:3a:26:a6:
c8:78:78:e4:ac:0f:e9:0d:2d:81:69:47:0e:ec:f0:
f4:71:dd:22:02:2f:25:c2:b9:57:ec:cc:62:1c:0a:
38:be:3d:87:cc:db:10:69:50:4f:98:4a:e6:c9:68:
e5:b0:f8:55:f1:8a:d9:52:d0:b7:29:2b:fe:5b:65:
9c:90:09:f0:72:1d:e6:89:0d:01:0c:e7:77:d2:08:
f8:c0:4e:01:3a:4f:56:39:52:09:bb:09:c3:78:b5:
6c:72:5f:26:1e:53:a5:ef:44:c6:73:f9:e8:9e:55:
9f:b2:ad:54:87:41:7e:a8:46:47:c5:bc:c0:8d:01:
f6:60:98:b5:cd:65:5a:7b:dc:b4:2c:be:1f:64:bd:
0b:53:2a:be:a9:ea:5c:82:c2:f5:34:94:8f:2f:9f:
db:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:06:DB:CC:53:34:C6:D7:51:37:2F:B1:79:54:F4:AA:AD:DC:9C:3F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919F55C/9F19F96E370F11ECBEB72A42C4F9AE02/rQbbzFM0xtdRNy-xeVT0qq3cnD8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.175.92.0/23
IPv6:
2001:df7:ef80::/48
Signature Algorithm: sha256WithRSAEncryption
c6:65:c6:e7:ee:f3:7d:73:15:87:3d:ed:c4:52:b2:70:60:78:
8f:93:2a:fa:9b:fc:64:94:dd:44:d4:1d:03:5b:8e:ba:88:99:
38:d7:e5:96:fb:1f:94:07:ad:32:5d:a2:89:45:3f:73:40:02:
af:31:58:f7:de:9d:50:ff:c9:d5:12:09:ef:41:c2:b3:51:58:
25:e8:5c:1a:4c:17:99:12:aa:bf:19:82:af:a4:d8:46:1c:63:
d7:16:3f:fb:34:21:14:82:35:78:c5:83:e2:09:0e:80:2e:5b:
15:e7:e3:b5:9a:e9:76:2e:34:ca:d5:40:0b:ee:80:f9:d4:94:
64:16:ce:ad:63:60:b4:c7:f0:23:9a:12:4c:5a:86:63:06:b9:
53:53:b3:15:e9:5d:3b:cf:a2:e6:3c:39:a7:19:57:45:97:30:
8d:18:2c:99:05:0d:9b:62:96:15:77:4a:80:99:c9:73:55:16:
8a:74:f4:52:ee:ad:a7:11:2f:27:16:9b:51:1c:dd:d6:f5:42:
4a:e6:cb:ea:8a:60:73:ce:09:25:a0:e4:7d:47:96:de:8f:c8:
cc:20:56:61:d4:cc:84:6d:28:74:f7:41:34:48:6e:10:c4:73:
f4:14:4d:54:f5:9c:7b:71:65:40:4d:d8:c2:9d:47:89:9f:96:
7a:94:3f:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 07:57:36 2025 by rpki-client