Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HaAa_AiIyqYXHgoOdBz8kE7S328.cer
File: HaAa_AiIyqYXHgoOdBz8kE7S328.cer (raw, json)
Hash identifier: C6/Y0NWq48Rdk4G1iA1SLnEnqxG2Nqqm7BZz8C9VFQU=
Subject key identifier: 1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E77B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 31 Mar 2024 14:07:57 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 135107
IP: 103.86.188.0/23
IP: 103.209.152.0/23
IP: 202.27.10.0/23
IP: 2401:f340::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124795 (0x1e77b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 14:07:57 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91352C6/serialNumber=1DA01AFC0888CAA6171E0A0E741CFC904ED2DF6F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a8:a2:f6:86:6e:4c:23:45:c8:3d:f4:1d:a1:f7:
3a:84:fa:dc:86:75:7a:f2:e5:b0:f9:3f:8c:4f:81:
32:59:5d:0a:0e:d6:7e:c3:05:7a:60:9b:f5:bb:dc:
e1:1f:44:bb:f9:ca:73:ad:69:a7:e1:f4:9b:fd:3a:
ff:71:bf:1c:49:a9:a4:e6:80:db:c9:e4:ec:26:9a:
f8:41:24:8d:e2:8a:82:fb:ca:26:50:17:76:76:04:
ce:cd:ff:08:65:d6:45:6d:75:75:b8:2e:0c:ee:12:
e5:bc:fd:2d:e5:2d:a6:3b:58:32:42:9a:69:bf:4c:
5d:2b:21:af:cb:82:f3:72:27:cb:1e:b5:92:37:d0:
e4:8f:7f:87:7c:ad:8c:51:e1:be:cc:0d:51:b0:38:
c0:5c:3d:2c:01:b2:2a:cd:aa:82:2a:3a:0b:9d:cf:
00:2e:98:d8:b7:38:09:02:29:75:8b:5d:21:d6:31:
23:b1:ac:67:a6:91:73:86:85:29:40:b6:9c:da:97:
fa:8c:12:84:0d:e4:26:10:59:bb:b8:20:5b:8c:b2:
f3:d3:01:4f:9b:d9:03:66:b3:dd:c4:ef:ab:21:b8:
0d:17:0f:a6:c1:50:5c:49:41:81:71:a2:ed:c3:20:
d3:13:77:0a:3d:5a:04:ef:a0:86:69:04:4b:d2:13:
d3:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1D:A0:1A:FC:08:88:CA:A6:17:1E:0A:0E:74:1C:FC:90:4E:D2:DF:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91352C6/1EDFE496B1D411EAA46F001AC4F9AE02/HaAa_AiIyqYXHgoOdBz8kE7S328.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135107
sbgp-ipAddrBlock: critical
IPv4:
103.86.188.0/23
103.209.152.0/23
202.27.10.0/23
IPv6:
2401:f340::/32
Signature Algorithm: sha256WithRSAEncryption
2c:c1:e6:8c:9b:03:da:05:19:99:05:e1:a7:76:a0:ae:b3:35:
0b:cf:90:f8:3d:9f:05:34:31:56:08:bf:a0:7e:71:c1:ac:08:
4b:b9:a8:86:d9:60:e1:ec:cd:0c:f8:1e:ad:ae:6c:54:22:c5:
a9:ce:98:d3:59:f8:3f:ba:9f:a7:54:92:c5:7b:11:7c:0d:2b:
9e:52:f6:f8:80:35:c0:6a:23:27:76:64:76:b1:05:14:13:77:
97:e1:01:9e:ce:ab:ed:26:0a:d0:c6:ad:57:40:c5:c3:f6:be:
3c:95:cf:56:61:f2:13:85:04:ef:ed:30:d4:ca:41:8d:38:a4:
ab:2a:24:b5:19:e3:bd:0d:4c:53:e7:4b:7a:fb:f6:84:d2:8f:
43:ac:bf:77:aa:70:dd:79:ad:96:2d:b3:49:01:1e:2f:93:07:
bb:5a:2a:5e:c0:af:66:42:f2:f2:ff:21:99:1f:41:ed:81:79:
f8:fe:ae:65:88:41:bb:3a:4c:c3:df:e9:25:d5:d7:0b:b2:f7:
73:60:51:06:9a:3b:1b:7a:8a:4d:ce:91:6a:77:dc:65:ba:1e:
9c:9f:76:41:a2:ce:62:4b:5b:ef:41:ba:36:09:ab:25:b5:36:
df:05:1d:04:6a:01:d5:59:d1:a2:af:af:45:f4:df:dc:05:d3:
5b:f7:b7:9a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 18:13:48 2024 by rpki-client on console-fra.rpki-client.org