Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/vR2pHc9Y0IwVyUUayvYvirO-JCA.cer
File: vR2pHc9Y0IwVyUUayvYvirO-JCA.cer (raw, json)
Hash identifier: 1KSiC9VXhR5NoiTncSHPt+5NyhLUF3d+OXFTgXmDukY=
Subject key identifier: BD:1D:A9:1D:CF:58:D0:8C:15:C9:45:1A:CA:F6:2F:8A:B3:BE:24:20
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E1FF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9156B77/A75EE2B8AA6B11EC9C546121C4F9AE02/vR2pHc9Y0IwVyUUayvYvirO-JCA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9156B77/A75EE2B8AA6B11EC9C546121C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Mar 2024 16:26:13 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 103.225.192.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123391 (0x1e1ff)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 1 16:26:13 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9156B77/serialNumber=BD1DA91DCF58D08C15C9451ACAF62F8AB3BE2420
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:4f:22:f9:1d:61:cd:fd:e3:4e:96:89:27:1c:
cb:10:0b:19:ae:be:a3:fd:78:59:01:83:ff:a7:ca:
da:79:15:00:47:ba:3c:92:cf:06:be:6a:7b:8a:5d:
50:2a:01:1d:51:c5:7c:bd:f8:45:96:90:7f:20:6f:
30:ec:5a:ac:56:60:ab:fe:1a:23:41:c6:b7:3b:b5:
84:71:41:2c:fd:73:e1:c3:47:51:41:aa:9e:a1:cd:
14:38:46:9e:c6:ea:82:22:b2:0b:5f:63:15:f2:f7:
7b:7b:cc:d2:eb:30:28:6b:73:11:66:2a:90:c4:a4:
74:c8:71:ab:6e:a3:3a:b3:8a:8e:88:4c:ac:b1:f3:
9b:0c:3a:6e:0f:b5:a8:45:8a:5d:52:49:33:d0:30:
fb:80:8d:89:93:dc:36:7d:53:54:57:ca:29:ca:ba:
eb:75:9b:3b:5f:15:ed:01:b0:cd:ce:10:11:dd:b7:
2c:6d:a6:de:74:bd:6f:6b:bc:86:3d:b0:0a:8b:64:
5c:f4:de:9a:75:b8:95:9a:08:47:fb:f4:3e:6f:d2:
53:2a:50:e2:c4:20:39:c2:e6:21:c8:3c:37:20:d7:
73:72:d8:15:9d:d6:e2:34:fa:f1:f8:99:36:19:61:
b5:75:85:fb:ea:29:c8:b8:47:4f:f8:f3:f7:ba:90:
a7:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:1D:A9:1D:CF:58:D0:8C:15:C9:45:1A:CA:F6:2F:8A:B3:BE:24:20
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9156B77/A75EE2B8AA6B11EC9C546121C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9156B77/A75EE2B8AA6B11EC9C546121C4F9AE02/vR2pHc9Y0IwVyUUayvYvirO-JCA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.225.192.0/22
Signature Algorithm: sha256WithRSAEncryption
1c:39:0d:15:cb:79:e7:c8:33:47:eb:f2:74:b1:8e:cf:27:b3:
3e:99:ff:62:7a:9a:b9:93:f3:bb:2a:bc:1a:e2:7a:44:f1:9e:
30:e2:9c:31:3d:81:75:3c:70:8f:e7:3d:e5:6c:48:cc:55:4c:
ac:af:d0:e5:16:72:b1:ed:59:99:13:5f:a3:cf:99:79:62:47:
13:f3:2d:dc:ae:a5:32:ab:8a:52:5c:fd:33:fd:e9:e5:a4:46:
22:4e:8e:23:66:0c:96:f9:92:1d:7b:f4:67:37:6f:88:d3:6f:
8a:37:cd:49:9f:5b:d4:03:0b:95:14:d5:e0:a0:89:b6:11:cb:
df:c5:86:f5:88:91:74:2d:65:cf:d3:53:25:7f:f3:35:e5:b1:
57:19:bd:e1:2b:35:7a:3a:77:01:58:54:66:8b:23:e0:41:d5:
35:14:c9:ed:7f:f2:e6:fc:e4:b4:c9:3f:be:1a:ca:67:14:1c:
51:6e:20:0b:db:0e:36:c0:a5:14:4b:15:47:ba:f2:38:da:0e:
e3:2d:07:6e:a4:b8:dc:2a:f8:8a:4e:08:9f:a4:f5:cf:f3:56:
46:fe:d9:a1:e6:40:b2:b8:3a:c8:53:d0:57:1d:4a:1e:74:c9:
c6:f7:de:d4:e4:0c:dc:1c:e3:1e:ee:a9:cd:36:7f:d5:b5:28:
59:2d:d5:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 03:33:29 2024 by rpki-client on console-ams.rpki-client.org