Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u4g-aByWIiVDBg6XnT6Chuq2iok.cer
File: u4g-aByWIiVDBg6XnT6Chuq2iok.cer (raw, json)
Hash identifier: bQhWZ+xWQaNUjUpLx0vSKFp68zjL9wY29/CJFek3no0=
Subject key identifier: BB:88:3E:68:1C:96:22:25:43:06:0E:97:9D:3E:82:86:EA:B6:8A:89
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E397
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 08 Mar 2024 18:18:33 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.176.114.0/23
IP: 2400:33a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123799 (0x1e397)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 8 18:18:33 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A91A4413/serialNumber=BB883E681C96222543060E979D3E8286EAB68A89
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:15:e1:6d:29:94:7b:0a:92:c9:72:fa:b3:9d:
b4:3c:3f:e1:3e:ec:06:b3:ad:2e:47:e1:0d:04:ab:
e3:0a:d0:6a:73:ef:e1:c8:34:4c:8f:10:c7:ba:f4:
44:34:6c:b2:d3:16:04:42:28:61:77:aa:06:71:d5:
9c:22:92:37:a0:75:f8:3c:09:77:ec:02:f3:47:39:
57:45:3f:c4:3c:70:c0:7d:39:c7:ac:a2:7c:88:77:
ab:a3:79:ff:74:ec:6b:d9:c4:a9:86:ef:dc:d5:d2:
34:24:08:6e:4f:3d:15:8b:58:f9:9b:b9:c4:e1:81:
37:33:eb:db:a6:67:31:33:ae:cf:73:59:1a:4e:56:
d6:3e:b9:c3:7b:fb:2b:42:2d:01:ef:10:6e:14:19:
8a:90:8a:c8:ba:e6:1e:76:82:f2:86:a9:51:37:e3:
10:df:76:47:80:82:dd:8a:40:94:35:b0:72:7b:b7:
89:df:60:37:38:2b:74:01:8c:ff:ac:ea:a9:42:f4:
f7:75:65:f8:3f:a0:f4:a2:46:7d:32:ce:f2:07:6c:
73:9e:c3:21:34:72:1e:e1:aa:45:9b:65:d0:f9:29:
fa:a5:c9:19:eb:dd:53:64:e5:2a:b7:0d:6c:47:6f:
1f:ee:a5:34:6f:54:06:85:eb:ee:74:2d:76:99:95:
75:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:88:3E:68:1C:96:22:25:43:06:0E:97:9D:3E:82:86:EA:B6:8A:89
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A4413/20002C12236711ED97C2EF27C4F9AE02/u4g-aByWIiVDBg6XnT6Chuq2iok.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.176.114.0/23
IPv6:
2400:33a0::/32
Signature Algorithm: sha256WithRSAEncryption
05:3b:a6:8d:bb:52:be:83:42:7f:6b:6d:f4:d6:8c:d0:75:57:
76:1c:ed:7b:73:0a:62:2f:5d:77:d4:14:d7:ae:89:65:de:70:
e7:e6:9c:1c:df:b4:68:87:d6:45:73:66:90:f2:d5:3a:80:b2:
17:c7:3d:88:3b:1c:6c:de:52:95:dd:2c:93:44:d5:04:57:26:
c3:8e:5c:c3:7a:f9:ca:71:6d:bd:8d:56:d2:9f:a6:9c:ce:b5:
92:39:cc:d9:96:1f:a8:7d:f4:d5:f4:e4:23:b2:54:1d:62:e5:
0e:f4:95:d4:44:00:4c:8f:6d:22:37:03:82:b2:40:fe:06:f3:
45:59:e5:33:21:d6:bf:19:77:17:f0:93:77:14:35:42:f9:4e:
94:8c:67:31:19:8a:4b:fc:f0:38:05:ed:03:c1:45:95:5a:f4:
e1:b9:eb:5b:45:9f:46:75:42:32:88:02:69:1f:da:ea:9e:46:
cb:d1:28:0f:28:a8:0c:4b:65:a7:4b:7f:c3:59:7d:97:df:1a:
d9:fa:23:da:bc:f6:6f:5f:05:69:7b:08:4d:6b:3a:79:b7:f8:
0b:ae:16:e3:94:fa:45:af:02:4e:38:c6:b9:bb:d3:ab:e7:cf:
44:22:54:ee:9f:41:f6:13:0e:9d:cf:de:54:8a:a4:c4:76:88:
1f:c6:49:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:04:07 2024 by rpki-client on console-fra.rpki-client.org