Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer
File: bDt_HBM9qcUdRE2oXmAqloRR_lQ.cer (raw, json)
Hash identifier: b5khJ+twWhPB4kZOvqqeKshWJgZxlD07+Uc+ii8CIWo=
Subject key identifier: 6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F268
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 17 May 2024 02:32:27 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 202.27.240.0/22
IP: 202.36.85.0 -- 202.36.86.255
IP: 202.50.199.0/24
IP: 202.50.205.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127592 (0x1f268)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 17 02:32:27 2024 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91626D2/serialNumber=6C3B7F1C133DA9C51D444DA85E602A968451FE54
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:b4:50:19:65:71:65:0e:18:34:4d:9d:2f:b8:
b9:3e:5a:47:bc:3f:4b:ba:57:7a:ae:bd:a8:ac:bb:
e2:29:44:ee:6c:76:90:28:fd:11:64:ea:30:07:51:
df:ed:fc:19:bd:80:02:16:51:72:e9:84:a8:87:09:
81:90:b9:e8:d5:d2:3a:b8:48:4c:f5:07:c4:6d:f2:
45:c0:fe:9e:16:f4:1e:a3:15:33:6c:1e:07:f2:8b:
3f:8a:ab:af:e7:5c:91:fb:b2:e8:6f:45:53:78:bb:
33:a2:bd:14:71:f6:b6:e1:7b:27:9f:49:e1:78:f2:
d6:d9:a2:02:7e:54:a3:9a:2c:d1:5e:a9:70:2b:cd:
24:af:f9:ba:b4:24:54:05:be:1f:44:75:c1:e8:02:
2f:73:4a:18:b2:f1:6d:ee:06:14:7d:04:4f:bb:c4:
08:63:af:a8:49:c8:54:7e:e9:b8:ea:92:5c:a3:17:
d8:7a:1f:e8:0c:d0:77:ba:dc:b4:96:67:b5:9e:2c:
5d:1d:38:f4:e4:84:80:2e:65:83:cd:8f:87:c5:f5:
42:e5:a5:38:5f:ba:46:67:14:47:bc:af:d0:0a:64:
4a:b8:ee:19:28:5f:5c:d3:35:45:fe:2c:82:ff:42:
77:b1:99:9d:9a:29:35:06:4b:3d:85:e3:9a:d2:68:
09:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6C:3B:7F:1C:13:3D:A9:C5:1D:44:4D:A8:5E:60:2A:96:84:51:FE:54
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91626D2/AF20834E13F511EFA09D321BC4F9AE02/bDt_HBM9qcUdRE2oXmAqloRR_lQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.27.240.0/22
202.36.85.0-202.36.86.255
202.50.199.0/24
202.50.205.0/24
Signature Algorithm: sha256WithRSAEncryption
20:67:f8:82:7a:93:c7:9c:f1:c8:05:9b:5d:7d:10:07:29:27:
c7:7d:b8:8b:8a:28:d7:f5:87:21:0c:d1:bd:fd:22:ff:f8:95:
6e:75:6a:03:ce:bb:f3:16:b8:09:63:de:47:43:b8:91:99:91:
53:9e:95:91:26:a2:9a:c5:18:40:21:32:73:13:2a:d9:91:92:
a4:9d:1c:11:34:95:36:ba:46:c9:a7:57:0d:5d:3f:95:91:c2:
b2:50:d7:f5:17:bf:91:e1:56:78:47:dd:72:3e:57:dc:74:3b:
0b:5b:33:e6:f3:c6:ca:f9:38:c3:49:95:3e:22:0f:5f:06:99:
a8:e5:da:40:b4:33:2c:a1:3a:bb:f4:c4:ab:81:d5:3f:d3:c9:
90:ba:a4:d7:75:29:d3:ed:76:b8:55:32:45:f8:65:6a:6f:48:
27:d9:b2:8a:62:5f:4c:9d:e5:f2:42:47:3f:c8:2d:84:f5:7e:
54:54:98:d8:18:25:38:07:78:e5:7c:32:c4:ee:06:81:c5:a2:
31:47:55:c2:b5:c7:33:1f:3f:c8:1b:a5:d2:1f:ca:b7:01:4f:
77:19:8d:b0:67:f6:5b:87:72:c9:fa:0a:19:b8:fa:02:8f:3a:
93:f6:27:e1:03:62:66:ce:cc:92:bd:d7:d3:6d:11:a4:bc:d1:
71:f7:71:d4
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:57 2024 by rpki-client on console.sobornost.net