Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ggCxpefBdgW1czx0_sHvEnOz6iU.cer
File: ggCxpefBdgW1czx0_sHvEnOz6iU.cer (raw, json)
Hash identifier: Yooc6KEmPAHCEFUTQStz+at/FVkz2ve085Z8r9KyUAw=
Subject key identifier: 82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0202DC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 29 Jul 2024 12:40:15 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: IP: 202.86.224.0/20
IP: 202.87.64.0/20
IP: 210.88.16.0 -- 210.88.55.255
IP: 210.88.64.0 -- 210.88.143.255
IP: 210.88.192.0 -- 210.88.215.255
IP: 210.88.223.0 -- 210.88.233.255
IP: 210.89.96.0/22
IP: 2405:4e00::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131804 (0x202dc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 29 12:40:15 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A911AD0C/serialNumber=8200B1A5E7C17605B5733C74FEC1EF1273B3EA25
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:cb:2b:9c:77:7f:ea:63:aa:1f:12:54:e9:cb:
e1:d5:7e:2c:0e:95:92:ea:dc:c9:fb:36:1d:b9:0d:
eb:0e:b6:d3:51:d5:a3:e7:e0:70:15:d0:2b:78:43:
6d:85:5f:36:74:8d:4d:86:7b:52:32:08:22:a1:a9:
76:b6:37:bf:b5:c6:41:cc:ae:1c:61:14:a0:10:09:
69:c6:b6:a3:b7:07:15:a9:b3:ed:34:ee:e0:43:b5:
cd:b9:0f:12:ab:11:02:f1:25:9c:75:63:ff:87:4d:
0a:c1:3a:15:9a:eb:8f:e0:ba:f0:ed:b0:69:85:6d:
ad:ec:1c:48:98:1e:1e:e7:ac:9d:00:df:d4:3d:2d:
17:e8:d4:60:52:c2:a8:4b:b5:7f:c8:aa:dd:39:11:
70:73:cd:aa:73:ea:85:10:1b:2d:60:c2:cf:b9:7d:
c0:84:b3:93:6d:c7:14:16:19:90:1c:2e:b0:e2:70:
60:07:56:7c:06:ae:3b:06:9e:62:91:b1:d7:ca:2e:
ba:f9:24:b6:d9:dd:f7:75:8e:6a:be:e5:94:d9:8a:
84:51:17:61:4b:88:12:ac:48:09:12:90:19:2a:fa:
1c:a9:a9:b8:8f:6b:c9:a5:4c:d3:a1:c5:33:d0:1f:
91:7d:d7:79:4f:71:38:68:76:d1:12:55:af:9d:0a:
f1:0b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:00:B1:A5:E7:C1:76:05:B5:73:3C:74:FE:C1:EF:12:73:B3:EA:25
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911AD0C/1B0B358E1DAB11E28A7F00A808B02CD2/ggCxpefBdgW1czx0_sHvEnOz6iU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
202.86.224.0/20
202.87.64.0/20
210.88.16.0-210.88.55.255
210.88.64.0-210.88.143.255
210.88.192.0-210.88.215.255
210.88.223.0-210.88.233.255
210.89.96.0/22
IPv6:
2405:4e00::/32
Signature Algorithm: sha256WithRSAEncryption
70:c0:9a:54:aa:ac:11:3d:78:4c:fb:fc:02:e0:ca:53:a0:26:
65:50:bb:66:2d:fb:9b:a8:50:11:b8:4e:3e:dd:fd:65:66:bd:
b8:c6:cb:c0:b2:d5:a9:21:1f:2c:0a:e0:52:93:46:7b:0d:02:
41:2c:cc:46:f6:7a:21:07:df:0b:d1:c2:5b:aa:b3:50:92:3a:
f5:54:95:ac:37:77:1e:e4:72:de:2b:85:82:9b:cf:aa:e9:ed:
13:7a:52:8c:3c:d9:f0:3d:88:fc:91:ff:ab:52:15:de:f6:5b:
3f:05:cc:8c:e3:54:5c:d3:13:12:cf:1f:c4:4f:3d:2f:f4:88:
c9:b0:9f:7a:ab:e9:21:a8:f6:a6:70:38:cb:96:f2:00:d1:5e:
15:01:f4:2f:03:7d:15:08:55:56:46:5e:85:f3:f4:b7:e8:8d:
ea:e7:34:ef:5a:9a:12:ce:90:09:cf:a7:86:e5:12:4e:34:5a:
6a:5b:38:ff:89:12:46:5f:42:83:93:44:24:41:4b:44:93:3e:
93:ac:aa:0f:9f:1b:da:5e:5c:c1:aa:c0:98:32:1c:c8:cd:7b:
3d:9e:a5:9f:f9:c6:c2:91:ac:1e:05:1b:c0:fe:60:16:b2:ab:
8a:dd:cb:b4:e1:ed:48:67:36:c6:54:f6:f4:ab:ff:c5:36:9f:
4f:56:d6:70
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:03 2024 by rpki-client on console.sobornost.net