Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/v1g_8H2jVv3igoGfR7zuJHUTEZo.cer
File: v1g_8H2jVv3igoGfR7zuJHUTEZo.cer (raw, json)
Hash identifier: ASyiCWrjsB2Zn5TGHC6h73gCEMGmrRgH8W2102O1nZc=
Subject key identifier: BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A9B3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 13 Jun 2023 12:48:43 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 10076
IP: 202.5.192.0/20
IP: 2404:ec80::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108979 (0x1a9b3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 13 12:48:43 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A912142C/serialNumber=BF583FF07DA356FDE282819F47BCEE247513119A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:fe:b5:73:95:75:52:dc:cf:ac:bb:db:01:fc:
ca:00:86:e9:54:b1:c5:47:0f:b5:34:ad:67:0b:c0:
ea:fa:86:61:a3:60:94:30:12:8c:d1:63:3b:87:0a:
6d:67:bf:08:ed:91:ed:4b:77:83:15:82:7b:9a:6b:
92:03:1a:c6:c2:9d:73:4a:88:6e:2a:ce:a2:9c:64:
7c:f1:32:60:2f:fd:cd:a4:bf:8a:9d:7e:9e:ea:30:
fe:d1:95:3b:ea:83:47:81:3c:e9:01:f2:18:22:10:
1a:a9:cd:aa:2d:90:ce:ee:8e:77:dc:97:0d:a6:80:
04:20:46:ac:0e:4f:53:e0:d9:82:ff:c2:fd:21:ff:
5d:b3:5d:76:61:0f:d8:66:98:87:23:01:a7:44:a4:
15:ca:cd:26:a9:e5:03:91:88:29:25:da:3f:b4:6b:
fa:6e:0a:a4:f5:f0:5f:1b:51:2f:4d:49:b1:43:76:
1f:cb:c8:27:ba:ef:ef:a7:b8:0c:77:db:16:0c:ce:
4a:74:b8:18:06:d2:a9:e5:86:1c:b8:b8:ac:30:1d:
77:1e:33:0e:a9:3c:fa:27:2c:be:99:7d:51:18:97:
6a:57:0f:cd:f2:fd:3d:82:a6:a5:10:fe:87:71:87:
5d:bf:41:dd:82:78:12:74:df:21:fa:c5:bf:63:40:
a7:c3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BF:58:3F:F0:7D:A3:56:FD:E2:82:81:9F:47:BC:EE:24:75:13:11:9A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912142C/20B37CFE1D8711E2BDEFF7DE08B02CD2/v1g_8H2jVv3igoGfR7zuJHUTEZo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10076
sbgp-ipAddrBlock: critical
IPv4:
202.5.192.0/20
IPv6:
2404:ec80::/32
Signature Algorithm: sha256WithRSAEncryption
cb:61:3d:f4:fc:a9:0d:17:42:d0:83:e2:d3:e4:e2:e8:f7:fd:
1a:83:ea:10:12:b9:1a:97:af:f9:be:0d:fc:bf:98:56:0f:25:
9d:5c:6d:bf:96:8a:d7:bf:0d:65:4d:8c:24:ee:2c:4e:64:58:
af:48:da:46:0b:f9:74:81:35:20:3f:f8:76:98:17:91:86:cf:
7d:46:f9:26:ff:ba:58:32:07:c5:ec:bc:97:29:75:89:ca:74:
af:19:df:1d:de:a8:fc:3a:7f:e7:1b:06:1f:11:75:db:6c:3b:
21:6e:99:12:d8:50:80:6d:23:05:b8:05:61:95:70:67:01:e5:
49:ec:15:62:79:50:60:c4:30:10:05:db:ab:fe:a0:28:e9:45:
1a:2b:4e:52:db:04:90:bb:34:f0:5a:0c:d0:1e:3f:0d:6c:5d:
c1:bc:a9:1b:54:96:c7:3f:07:70:8b:8c:58:d9:35:ba:7a:97:
40:bd:4f:42:04:21:b0:cc:c7:b9:ca:69:38:a5:06:63:29:71:
0f:4e:5b:d9:58:dd:6d:fc:ad:81:ba:bc:80:26:08:24:ba:0b:
cf:47:91:18:fa:3d:ee:21:35:3a:78:9f:5a:fd:e9:2a:fa:17:
fe:58:b5:4f:e3:8f:c3:09:75:89:d5:19:fb:d1:5c:95:e0:88:
af:b3:a2:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:15 2024 by rpki-client on console-ams.rpki-client.org