Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sBO5crQspa2fahYr87XHT5M8HgU.cer
File: sBO5crQspa2fahYr87XHT5M8HgU.cer (raw, json)
Hash identifier: tIQc6lpvSZXYt83fMhBKqF2Tc82q/L6iQMdaYaIvBGw=
Subject key identifier: B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ACEA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 29 Jun 2023 19:38:10 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 103.168.209.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 18:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109802 (0x1acea)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 29 19:38:10 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91E2B66/serialNumber=B013B972B42CA5AD9F6A162BF3B5C74F933C1E05
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bf:ca:f8:c9:07:69:d2:ee:66:ff:7b:6c:a7:90:
6a:44:c7:6a:0d:bc:35:1c:b1:26:bb:5b:85:33:98:
fd:ed:00:2d:ba:1d:fb:32:90:08:87:8a:04:ff:50:
6f:a1:45:cf:13:d0:ff:6f:fa:ff:cd:f0:a2:bd:aa:
8a:49:56:98:8d:bd:dd:1c:d3:01:0b:63:c5:60:74:
63:42:56:11:3d:5c:93:3f:3b:56:06:a7:bd:f0:d1:
2d:46:1d:b6:b9:e4:08:86:05:6f:f8:5e:32:73:e7:
5f:01:51:ac:ef:59:6d:05:fc:78:8f:e4:30:1c:8a:
cb:95:88:34:ef:4c:88:66:a8:07:63:3f:67:ac:ba:
a0:d1:15:a7:32:6d:86:fc:88:63:23:25:f5:24:f2:
97:3c:f9:83:17:4a:77:0c:d6:65:39:52:f7:04:7a:
66:d6:75:ec:97:a4:90:84:fc:47:62:86:1a:e8:c8:
78:20:c8:35:11:9f:a8:ee:fb:89:c8:94:15:85:d8:
ab:f2:2c:35:b3:0c:5e:d6:ff:65:f7:c9:61:a1:df:
bf:fe:a6:1c:3e:26:23:7b:55:88:33:69:d8:c9:1c:
03:69:9b:92:e6:80:ca:a4:c0:72:0c:d0:94:a4:95:
06:2e:63:80:bc:86:eb:6d:94:dc:28:cd:5a:e8:a7:
41:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B0:13:B9:72:B4:2C:A5:AD:9F:6A:16:2B:F3:B5:C7:4F:93:3C:1E:05
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E2B66/53E8FBEADA5B11EB83BE371AC4F9AE02/sBO5crQspa2fahYr87XHT5M8HgU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.168.209.0/24
Signature Algorithm: sha256WithRSAEncryption
11:b7:ca:76:12:8e:5b:dd:90:ee:3e:9a:30:1b:b6:b8:e4:82:
32:cb:16:a0:dd:90:4b:86:33:15:5a:c8:f1:2b:ef:19:4b:c1:
a0:71:84:58:3b:ce:17:b3:41:fa:98:50:dc:06:74:90:25:48:
74:7e:5b:ed:13:26:0e:e3:c7:de:bf:5d:50:a0:0b:02:33:12:
51:f5:64:eb:19:2d:0d:6b:84:f3:2d:ae:35:ea:ec:47:03:c0:
1d:c2:ea:62:d8:0f:e6:99:dc:d2:8a:6b:12:9a:23:f7:38:bf:
fd:08:26:46:3d:eb:5f:e2:27:26:79:87:da:71:a8:37:4d:da:
57:92:47:90:44:3d:da:56:3b:e5:5d:70:8c:f0:7f:cd:a7:03:
9b:61:b0:44:6c:6f:5c:a0:b5:0a:de:e3:a8:4e:59:d7:f2:2d:
16:67:32:14:b1:14:75:2f:de:f9:54:17:42:54:e1:e9:74:8d:
31:65:37:67:28:ee:28:a4:54:5a:e9:49:5a:f3:b3:4c:c2:b5:
1e:17:76:1e:c2:e3:7d:03:a0:de:92:e1:d0:7f:5b:52:d0:68:
91:95:e4:17:10:bd:72:29:f9:29:8f:69:37:da:e2:4f:b5:30:
e8:6b:b8:8d:2f:1d:c8:c4:92:b4:42:90:72:e5:15:a5:f6:80:
b8:00:09:ba
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 21:18:59 2024 by rpki-client on console-ams.rpki-client.org