Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer
File: uOlsag2VSKKgQMvnGZdFun2x7Sg.cer (raw, json)
Hash identifier: Rxsutp6TS5TXlNM1jn09dzSASavb/WaP0nYEvpgtilA=
Subject key identifier: B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C447
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 16 Oct 2023 16:04:40 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 43.246.220.0/22
IP: 103.35.208.0/22
IP: 2401:f840::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 23:54:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115783 (0x1c447)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 16 16:04:40 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:dd:44:22:81:c6:24:c7:f7:b0:b1:82:87:2e:
e9:5b:f6:83:f2:c6:36:79:e9:56:b0:3d:96:48:09:
2e:bd:f6:88:c9:0b:01:cd:ef:15:33:10:44:b9:0e:
49:8a:43:cf:3f:f3:75:c2:c1:1e:66:fc:d5:69:19:
0f:2f:fc:67:c0:85:8b:e1:3b:ea:cd:65:cd:1e:6f:
eb:35:e3:93:51:9f:02:4b:96:4a:d7:68:24:37:1d:
76:77:d0:92:ed:3f:c0:e3:29:ad:79:01:7c:69:0a:
08:dd:75:35:d5:49:1a:2d:c4:aa:37:06:fb:86:c0:
79:15:ff:ce:18:2c:c5:e5:0e:bb:05:db:21:3f:49:
7b:b1:12:82:07:1b:f1:c4:d6:03:8e:7d:e4:aa:94:
4c:64:34:83:8c:3c:54:35:33:56:66:28:f6:87:98:
6f:49:70:a7:d9:36:72:c8:0b:b6:a6:de:22:79:12:
4e:f4:bd:97:d9:ac:26:02:3a:8a:21:c8:e4:3a:7d:
44:16:37:3c:5f:5b:cd:34:c0:8f:8d:ed:1e:27:3b:
55:8e:c6:df:47:cc:75:6b:f6:2b:9b:6e:80:6f:1d:
23:f5:84:9b:66:ca:9b:e1:09:9e:30:26:86:ab:a1:
7f:95:82:8b:10:05:45:6c:e1:59:61:3f:16:4b:e8:
6c:3d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.246.220.0/22
103.35.208.0/22
IPv6:
2401:f840::/32
Signature Algorithm: sha256WithRSAEncryption
14:22:9c:19:c9:cb:73:66:90:f9:44:2d:1c:a3:76:d7:04:22:
13:8e:48:1d:43:d2:7d:9e:03:2e:b1:49:c6:7a:4c:f9:67:b4:
2f:d6:43:34:07:59:bc:e2:d7:c7:ae:f0:38:52:f1:f2:45:3c:
47:f0:b0:eb:61:0d:9a:9f:a0:aa:2a:32:25:cb:be:3e:fd:8c:
ba:58:d4:1b:24:51:cc:94:b9:5b:89:fe:9a:c4:e5:f5:1b:23:
39:bf:7c:c4:f3:0a:5d:a6:7e:43:26:76:ca:67:f1:d7:00:57:
96:62:71:ae:22:6c:21:52:93:12:2f:2d:1c:07:61:e2:6e:e7:
0e:e9:d7:56:00:d4:12:76:d3:18:cd:e7:c5:ac:49:2b:84:15:
d9:b6:25:e5:4e:75:1e:0a:eb:ee:08:ec:9d:aa:99:0b:d5:a5:
0e:df:96:0f:f0:c0:a3:89:f4:62:89:1e:36:f7:df:63:00:b2:
9a:18:9c:9c:be:6c:1f:e6:1a:52:0e:32:05:dc:23:09:db:02:
bf:ce:d4:28:23:92:9b:c3:06:4f:ed:b7:29:0d:fc:a4:a8:0c:
ce:17:29:4a:1a:6b:b1:1d:02:d2:3e:94:06:f0:bb:05:6a:97:
e8:88:49:5f:0e:95:91:75:71:5a:46:9c:7c:7c:c3:32:b4:28:
fe:76:9e:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 00:53:19 2024 by rpki-client on console-ams.rpki-client.org