Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer
File: hlMymlHbxnnxvxfXkdg-x2ib564.cer (raw, json)
Hash identifier: DK1MjINIPj26N6UdjywlIjRPpZzh53n0JZS6mn5MvZs=
Subject key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B3F0
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Aug 2023 12:42:04 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 140969
IP: 103.153.240.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111600 (0x1b3f0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 1 12:42:04 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:41:3b:98:f8:b7:33:3f:db:7a:1b:ef:70:4e:
ad:f0:31:a1:73:ad:08:f8:16:1e:c6:a6:98:45:76:
04:7e:d4:57:e4:57:a3:fa:84:48:bc:74:7f:83:20:
b5:7f:0d:50:c5:66:4d:3a:02:ef:95:14:cc:04:83:
0d:91:9e:4f:2a:88:d0:2d:3b:80:24:aa:71:6a:8c:
d6:42:5b:db:ba:17:ea:98:43:97:c6:56:a6:50:d3:
a6:9c:14:6b:3e:82:bc:93:3f:a0:9c:16:40:98:13:
6b:f6:47:d6:9e:7f:d8:84:78:bc:54:2e:8c:1a:a1:
fd:94:a7:84:21:af:39:9f:61:92:d9:ea:e8:5f:d2:
98:44:94:cf:4e:3b:4f:e1:54:16:2e:5c:9a:c0:5a:
6f:55:b4:a0:23:ca:1d:b4:40:ab:b4:3b:30:43:ea:
79:f3:8e:72:f0:39:9d:64:e2:dc:44:ee:67:89:8b:
5f:03:31:4f:f7:c8:fc:42:0f:b6:85:95:2f:12:e4:
49:d0:78:bc:f0:7b:a9:30:ff:90:ad:14:bb:cc:21:
b7:d2:09:8e:73:0c:05:74:e4:55:f2:49:df:bc:d0:
ce:4a:1a:02:8f:87:c0:f7:84:7b:e1:72:b8:c8:fe:
8f:0e:fb:14:b7:91:2e:df:75:f5:7c:38:5d:5f:94:
85:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140969
sbgp-ipAddrBlock: critical
IPv4:
103.153.240.0/23
Signature Algorithm: sha256WithRSAEncryption
86:36:ba:26:53:c3:b1:f8:51:29:4e:8b:30:c6:64:5e:26:6d:
03:ac:85:0d:1b:be:e8:3b:90:b4:97:df:cd:62:b8:bf:23:1f:
07:ef:d2:18:e2:b9:c0:e6:0f:f2:35:3d:ee:57:c1:aa:26:4a:
c6:08:40:4a:8b:40:98:3c:6b:b3:e6:34:a9:5d:cf:6c:5a:76:
cf:04:5c:8b:9d:33:c7:e2:b8:cd:f1:31:4c:c8:97:30:a3:24:
53:1f:b8:86:16:21:de:c4:21:70:fd:7b:5d:85:75:2d:e7:92:
b3:52:d7:36:67:54:df:58:47:b1:3d:7b:63:a3:7e:27:75:b2:
8a:63:ea:d4:9e:29:0b:43:63:92:0d:94:54:75:ce:78:6e:ec:
81:2f:93:a5:98:4b:72:40:bb:db:c7:47:a0:34:ab:a6:a8:34:
d5:63:6b:a5:ea:fc:81:79:56:5c:50:22:b3:57:d6:8c:4f:25:
08:36:b1:36:98:9b:80:a0:2d:53:2a:11:0a:f7:ce:62:4f:fc:
23:78:28:f9:17:d7:82:01:03:55:cd:61:a5:51:bf:be:1a:45:
d8:dc:53:0c:17:ef:5d:94:e9:a9:a0:92:d2:87:cf:b8:55:f6:
15:9e:d3:4e:47:e0:f8:b6:63:50:e8:71:82:be:bb:b2:f4:7e:
b4:44:ad:83
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAbPwMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDgwMTEyNDIwNFoXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdE
NzkxRDgzRUM3Njg5QkU3QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDNQTuY+LczP9t6G+9wTq3wMaFzrQj4Fh7GpphFdgR+1FfkV6P6hEi8dH+DILV/
DVDFZk06Au+VFMwEgw2Rnk8qiNAtO4AkqnFqjNZCW9u6F+qYQ5fGVqZQ06acFGs+
gryTP6CcFkCYE2v2R9aef9iEeLxULowaof2Up4QhrzmfYZLZ6uhf0phElM9OO0/h
VBYuXJrAWm9VtKAjyh20QKu0OzBD6nnzjnLwOZ1k4txE7meJi18DMU/3yPxCD7aF
lS8S5EnQeLzwe6kw/5CtFLvMIbfSCY5zDAV05FXySd+80M5KGgKPh8D3hHvhcrjI
/o8O+xS3kS7fdfV8OF1flIVlAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUhlMymlHb
xnnxvxfXkdg+x2ib564wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTE3N0Q0LzJDRUVGRTM0RDFBODExRUE4QzU4MzczQkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExNzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxI
Ynhubnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiapMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5nwMA0GCSqG
SIb3DQEBCwUAA4IBAQCGNromU8Ox+FEpToswxmReJm0DrIUNG77oO5C0l9/NYri/
Ix8H79IY4rnA5g/yNT3uV8GqJkrGCEBKi0CYPGuz5jSpXc9sWnbPBFyLnTPH4rjN
8TFMyJcwoyRTH7iGFiHexCFw/XtdhXUt55KzUtc2Z1TfWEexPXtjo34ndbKKY+rU
nikLQ2OSDZRUdc54buyBL5OlmEtyQLvbx0egNKumqDTVY2ul6vyBeVZcUCKzV9aM
TyUINrE2mJuAoC1TKhEK985iT/wjeCj5F9eCAQNVzWGlUb++GkXY3FMMF+9dlOmp
oJLSh8+4VfYVntNOR+D4tmNQ6HGCvruy9H60RK2D
-----END CERTIFICATE-----
Generated at Wed May 8 21:04:49 2024 by rpki-client on console-fra.rpki-client.org