Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/u6vT8W4QD9nJXUdIhOTanLb6do0.cer
File: u6vT8W4QD9nJXUdIhOTanLb6do0.cer (raw, json)
Hash identifier: eqK0yrxlRp3c/u+C0jESgVBSqppkPO5eVmrmH8+T3Mo=
Subject key identifier: BB:AB:D3:F1:6E:10:0F:D9:C9:5D:47:48:84:E4:DA:9C:B6:FA:76:8D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0219FA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 06 Nov 2024 16:17:32 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 103.21.220.0/23
IP: 2400:b820::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 06:14:29 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137722 (0x219fa)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 6 16:17:32 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91886E3/serialNumber=BBABD3F16E100FD9C95D474884E4DA9CB6FA768D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b8:5a:3f:af:13:9f:54:9b:cd:5a:59:24:75:ff:
09:28:5a:4b:64:e0:f5:42:f4:c0:16:22:2a:f7:b8:
d7:fe:74:70:7c:31:00:73:05:36:0c:26:d4:15:f3:
25:98:6f:1a:e5:ba:17:8e:16:d2:19:de:2d:65:73:
d4:1e:6d:45:55:fd:cf:d9:b6:98:7e:9f:54:93:78:
5b:15:96:15:18:fc:6e:1f:82:ce:34:74:f1:ea:75:
0c:14:83:5f:4a:73:08:cb:c3:3f:c7:29:05:f7:5f:
c9:55:55:01:c6:d4:54:c2:5d:5c:82:b3:32:9f:1b:
e5:40:05:e1:90:ef:9d:6d:ff:2a:33:a5:d2:da:e1:
99:02:c4:09:16:37:a5:05:1c:cd:f0:cc:fb:af:ed:
d4:47:1a:8c:36:4c:b5:c5:f7:ca:d2:fe:23:cb:7e:
83:7c:2e:65:49:70:67:d4:1e:f6:15:ee:be:96:c8:
ac:5f:7b:54:5f:18:6e:31:48:fa:38:01:23:b8:bf:
c0:69:e3:63:62:c0:5c:c6:1e:d6:9f:04:69:64:12:
47:94:e5:75:f7:39:c5:3b:cd:65:fd:ff:50:a4:6f:
09:d3:b6:54:6f:dc:3b:39:0b:db:cc:44:8b:36:80:
d0:23:5c:20:06:69:49:c7:6e:dc:d0:e3:ff:0c:eb:
83:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BB:AB:D3:F1:6E:10:0F:D9:C9:5D:47:48:84:E4:DA:9C:B6:FA:76:8D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91886E3/1247B860669211ED82BE7133C4F9AE02/u6vT8W4QD9nJXUdIhOTanLb6do0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.21.220.0/23
IPv6:
2400:b820::/32
Signature Algorithm: sha256WithRSAEncryption
5f:5a:3d:dd:ba:a9:ef:e5:e6:e8:82:fc:97:1a:3c:7e:2f:42:
34:8e:f2:4f:83:14:df:fd:19:53:82:dc:0a:d9:50:e5:b9:f4:
b4:5a:17:32:8f:4e:70:6b:86:2d:d8:e1:7e:74:16:13:e8:da:
75:4a:af:af:66:9f:3b:2f:cf:ad:9a:c9:be:2e:75:78:9f:65:
c1:a1:d6:95:f8:05:39:ff:6c:e4:b1:e4:b4:7a:7a:3a:f7:a3:
a4:51:82:a8:ce:fc:8d:a9:18:fd:57:02:b0:8a:b0:1e:c4:13:
31:2e:91:82:3a:d7:b9:27:3c:3f:6c:19:23:f1:f2:c1:bc:a8:
1b:11:6f:2f:b8:c2:60:cf:09:bb:f3:49:79:58:5d:41:2a:99:
10:a8:47:5d:ae:d5:73:97:6a:77:4d:e9:1f:a7:c9:f0:87:e4:
43:a4:2f:de:2a:99:d2:41:9b:7e:a3:2b:5b:4e:91:9c:ba:c2:
b6:a0:85:e0:94:7a:c5:f9:87:18:ee:f6:7c:5b:d1:c9:47:e5:
a8:43:23:de:91:46:37:f0:b7:ff:e3:7b:e6:38:8f:c0:af:37:
1f:95:4b:5c:39:89:4a:2c:bd:67:5f:be:5f:18:dc:8e:b5:9a:
47:75:10:c5:d3:5e:97:3f:3f:eb:97:57:79:1c:94:0a:2f:ac:
85:fb:04:54
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 06:59:10 2024 by rpki-client on console-fra.rpki-client.org