Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/raez5kKEQOUk2gaDhqHt8yH4gR4.cer
File: raez5kKEQOUk2gaDhqHt8yH4gR4.cer (raw, json)
Hash identifier: MXzyaUSHQdzBIbW8ExDyf7P1RBxqDMXWgvBI2jZDcp4=
Subject key identifier: AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F988
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 17 Jun 2024 07:25:37 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: IP: 203.99.64.0/21
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 129416 (0x1f988)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 17 07:25:37 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91D7103/serialNumber=ADA7B3E6428440E524DA068386A1EDF321F8811E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f1:ec:6c:7d:cc:3d:ec:71:f3:6d:23:3a:5e:77:
98:c5:9f:46:a4:62:1a:39:c6:75:da:b2:43:78:db:
34:57:72:e1:48:b5:31:94:ce:65:05:25:4c:11:07:
2d:d2:9e:ec:30:f8:00:ef:47:0d:38:3e:40:7c:91:
eb:ef:8a:7c:b3:cb:7d:1c:94:eb:19:c5:cd:5b:04:
d1:84:68:a7:3e:ac:67:25:ed:e5:46:4f:de:cb:7d:
10:e7:87:12:2a:19:9c:57:7f:99:b0:ca:42:3a:5b:
4f:f6:fc:3c:56:22:d5:6f:20:85:87:e9:d2:62:84:
e2:d1:81:a2:66:5d:15:b3:98:68:49:ac:3b:60:2d:
89:c5:e9:68:ac:ae:81:a0:c3:65:bb:79:65:1a:18:
91:2b:46:1a:58:9f:31:3b:ea:e7:5a:99:46:d8:b5:
17:70:40:76:86:ec:e4:e5:44:57:ae:d4:ad:b2:d4:
9f:26:3d:63:74:a7:72:a5:4f:02:bf:80:8d:77:9f:
fc:22:0d:9f:35:39:a8:f6:ff:73:f2:02:62:85:9c:
9d:2c:0c:55:6f:a7:54:09:6a:e9:20:5d:11:23:1c:
6e:8c:64:db:35:89:f8:1c:6c:6a:3a:e3:5c:96:8e:
21:eb:45:9d:16:91:c1:65:56:7d:ee:f4:c5:7b:14:
3c:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AD:A7:B3:E6:42:84:40:E5:24:DA:06:83:86:A1:ED:F3:21:F8:81:1E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D7103/7AB8112A42D211EEB7C4D01EC4F9AE02/raez5kKEQOUk2gaDhqHt8yH4gR4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
203.99.64.0/21
Signature Algorithm: sha256WithRSAEncryption
42:5d:62:f4:f5:64:e6:57:1c:ba:0d:67:44:56:44:20:94:5e:
36:67:47:b2:ce:b1:3e:d3:8d:1d:8e:d7:1b:2c:26:33:de:32:
a7:95:c9:5a:53:f4:46:43:78:eb:a1:41:5d:75:72:4d:80:3e:
98:a2:0c:81:7d:e3:e6:aa:92:6a:90:20:2b:21:c9:34:35:d4:
e0:33:12:0f:d3:45:b3:6f:ae:85:ff:ad:55:8f:10:60:2a:4c:
76:19:f6:f2:f2:f6:84:67:e9:65:38:25:61:ca:4e:b2:c0:02:
15:80:24:d3:50:f5:3a:b5:b3:8f:a5:7d:98:1a:06:8e:11:0e:
1a:3c:bd:35:24:a2:ab:bc:4b:02:01:31:f6:c4:29:35:1b:c8:
04:59:88:b7:e9:37:47:ba:ce:9a:ac:0c:44:c0:9c:09:c0:c5:
b6:00:83:a4:9f:4b:75:ef:e3:34:42:bc:5c:d2:f0:a8:ac:31:
bd:00:56:f9:ac:ff:2f:78:4e:f1:85:84:0d:30:c4:b3:f2:3e:
0d:37:08:ab:78:ac:04:b2:3b:30:87:53:86:18:c0:1b:32:eb:
df:81:60:b5:dd:54:ed:4f:e0:80:76:59:07:66:e5:13:35:8d:
f7:ca:38:f9:98:17:12:05:8d:65:73:f3:08:b9:76:06:e2:06:
2a:b1:72:df
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:25:05 2024 by rpki-client on console-fra.rpki-client.org