Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/veGzlV8WJd92Ja9xy7eUuHw53Gc.cer
File: veGzlV8WJd92Ja9xy7eUuHw53Gc.cer (raw, json)
Hash identifier: GzVx0fQvKix1ValaQF6y+EZ9jmVTkwi0yq51du0Y5Bk=
Subject key identifier: BD:E1:B3:95:5F:16:25:DF:76:25:AF:71:CB:B7:94:B8:7C:39:DC:67
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ADC6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913387C/2C7D79E81D8911E28A693DE208B02CD2/veGzlV8WJd92Ja9xy7eUuHw53Gc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913387C/2C7D79E81D8911E28A693DE208B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Jul 2023 13:39:55 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 4844
IP: 210.23.0.0/19
IP: 2406:f000::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110022 (0x1adc6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 13:39:55 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A913387C/serialNumber=BDE1B3955F1625DF7625AF71CBB794B87C39DC67
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:5c:14:00:46:37:22:8d:d9:db:c5:43:de:cb:
86:f0:dd:0f:ec:c2:0a:4b:4a:0b:1f:ec:9d:64:38:
24:53:ee:a5:08:06:94:f5:da:cf:d5:c5:85:ad:c2:
d0:76:8f:58:c0:17:19:14:d8:94:f5:a3:67:68:6a:
15:e4:09:9e:ef:ba:e0:05:ec:f9:ec:c9:32:fe:d6:
a3:30:2b:0d:f6:cb:18:84:12:73:dc:db:32:81:5a:
42:ca:8a:f5:ab:13:60:e7:0b:f9:83:5d:56:fa:82:
ec:60:cf:cb:85:a2:4b:2b:4f:8c:02:a2:b4:e1:e6:
5f:7c:33:87:6a:9a:3c:4b:d8:aa:7e:e2:64:0e:cd:
f4:e0:de:4a:c0:3c:96:60:33:54:9e:43:1c:df:78:
b6:b9:a0:ff:98:6d:c6:f4:8c:78:d0:ff:ec:7f:d9:
3f:b8:ce:30:cd:3b:c1:ea:fb:f9:e5:da:2c:05:2b:
5e:4d:ff:34:64:49:e0:62:10:fe:41:4c:5c:7d:dd:
77:ba:15:d2:38:cf:d7:16:2e:e1:e1:d2:7b:7d:3f:
1b:60:07:c2:d4:fd:61:36:52:ce:37:01:59:db:76:
0b:8f:c4:db:61:2f:47:06:39:2d:c9:dc:86:d5:40:
67:19:eb:6d:82:01:33:08:5c:0b:83:90:ce:6f:e9:
55:f3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
BD:E1:B3:95:5F:16:25:DF:76:25:AF:71:CB:B7:94:B8:7C:39:DC:67
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913387C/2C7D79E81D8911E28A693DE208B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913387C/2C7D79E81D8911E28A693DE208B02CD2/veGzlV8WJd92Ja9xy7eUuHw53Gc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4844
sbgp-ipAddrBlock: critical
IPv4:
210.23.0.0/19
IPv6:
2406:f000::/32
Signature Algorithm: sha256WithRSAEncryption
26:27:e2:fa:64:84:5a:57:c2:44:d2:38:8a:25:db:aa:4b:54:
f4:87:d8:3e:a9:42:52:f4:c5:66:34:26:01:46:86:e1:6f:80:
b0:a7:29:d7:e6:a5:87:d8:26:13:18:5a:ad:71:bf:ae:50:d3:
5c:53:20:84:eb:8f:9a:08:57:71:05:83:18:bb:5a:01:38:f0:
e8:1f:0c:77:69:cd:3a:d0:ec:71:d1:0d:00:24:d7:37:e6:08:
44:31:1e:64:bb:29:26:bd:ce:43:bc:6d:19:f6:4c:af:45:7d:
94:31:cd:63:8a:b9:a8:0b:89:c1:7b:5a:e1:69:41:bc:90:46:
4a:b5:05:92:88:9b:9a:cd:80:9d:3d:e9:a9:67:fe:6e:3c:3a:
03:c1:d9:55:47:c4:e4:a0:13:3f:6e:5f:2d:7e:94:8a:01:6f:
89:ee:b7:44:f2:73:63:db:bd:d8:24:d1:3f:e6:42:7d:cc:68:
11:9a:c2:f5:5c:54:25:4a:68:fd:75:7a:63:20:d1:24:de:00:
37:e6:0c:09:f0:a0:f3:5b:6b:91:d5:ba:6d:1e:1d:6c:24:52:
9d:24:db:21:1f:cd:60:ef:84:16:3f:2a:9d:a1:0e:e1:a9:ca:
39:c2:a2:89:d4:6e:22:1f:70:0d:f3:90:b0:31:a3:cb:48:0a:
ce:b3:ee:34
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:39 2024 by rpki-client on console-fra.rpki-client.org