Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/rXZeStXAqz70hB0-NIQoC-rLzC0.cer
File: rXZeStXAqz70hB0-NIQoC-rLzC0.cer (raw, json)
Hash identifier: K2J91CbIxpksxnJP39Qlz0+94iPSfUSDsSRzuSTZ0Xs=
Subject key identifier: AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DF30
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 16 Feb 2024 13:39:19 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 151833
IP: 203.223.179.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122672 (0x1df30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 16 13:39:19 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A913CC0C/serialNumber=AD765E4AD5C0AB3EF4841D3E3484280BEACBCC2D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:c4:71:96:ec:b7:f4:05:aa:6f:ec:9d:bd:40:
86:55:0d:01:53:6a:f7:eb:ef:8e:db:ff:47:1c:1a:
8e:f7:f2:93:11:42:b8:4f:4b:f4:2e:dc:b0:0d:75:
14:2a:21:1e:3b:26:58:e9:00:27:96:d9:2a:90:df:
f1:19:44:18:93:13:cc:54:d1:2b:c3:e7:55:57:8f:
6f:01:05:0f:23:c8:54:97:fd:75:35:bf:df:2c:24:
69:46:70:87:4f:e4:c9:12:88:05:28:85:1e:b0:e1:
8e:e5:24:01:4d:49:29:bf:57:24:d9:b4:8e:58:22:
07:a3:b5:f9:7b:58:d4:67:5e:63:ec:bf:b6:cd:c8:
29:fc:ef:f2:5c:22:73:5b:ed:89:0b:db:9e:c1:f8:
f7:24:81:15:62:76:26:d6:e9:45:6b:50:77:72:e2:
6f:02:69:53:c6:a0:18:19:16:3b:6f:6b:d1:ec:56:
69:80:10:d3:ce:4f:72:ce:d0:a7:cd:01:8c:b4:e5:
c2:c1:c5:e9:09:09:a3:34:14:3c:1e:4e:f6:56:7f:
f1:4e:8f:a7:50:8b:1e:45:5d:15:00:22:82:91:c1:
6d:cc:4c:32:c2:91:d4:99:af:49:3d:f2:96:a7:fd:
28:e9:75:db:2a:b2:a9:85:49:20:79:1a:a9:87:50:
b9:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:76:5E:4A:D5:C0:AB:3E:F4:84:1D:3E:34:84:28:0B:EA:CB:CC:2D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913CC0C/8425856A835711EEABEB2A3FC4F9AE02/rXZeStXAqz70hB0-NIQoC-rLzC0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151833
sbgp-ipAddrBlock: critical
IPv4:
203.223.179.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:83:c5:b4:cc:86:8e:4f:84:34:a4:cc:29:f3:f0:60:05:cc:
c1:ba:16:6b:6a:c2:b4:79:d1:27:3c:ea:be:58:b8:dd:63:8c:
b4:ae:53:e2:b2:c0:63:e5:a9:bf:b2:41:0f:0d:5d:f9:d4:2b:
c1:98:52:fa:38:a2:2c:75:9f:f2:f3:1e:8c:01:1d:71:b5:c9:
94:ab:9a:27:24:7c:cc:d2:74:f7:ef:25:07:b0:a4:c1:8a:ec:
ef:c6:26:35:63:d0:7a:08:a8:96:1c:e6:3e:10:3b:b9:12:f7:
9e:fb:61:30:4d:7f:fb:da:e1:fe:ad:04:49:2f:e2:ee:79:16:
e0:d6:06:e6:e9:17:b1:5d:de:cf:5f:ed:fb:95:17:e2:e2:10:
d8:21:5c:3c:4e:29:c3:0b:fd:ae:29:b4:f6:13:f3:17:6f:66:
bd:03:f6:93:4e:52:c7:3a:b3:5b:43:78:2c:4a:eb:92:17:1d:
96:ce:e6:76:6d:3a:69:31:29:f5:33:18:55:f5:e8:c2:aa:15:
c9:9f:4f:2f:71:97:f4:98:67:d4:5a:93:2a:1d:59:a3:9d:67:
53:b3:ae:33:9d:1c:c3:71:0d:e4:97:31:12:d6:bf:51:36:34:
1a:89:d4:b4:bf:b5:2a:e2:25:e2:39:25:2f:3f:ef:91:96:02:
4c:51:05:84
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:51 2024 by rpki-client on console-fra.rpki-client.org