Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/HLS_2cCnMryPSmDIaUyR-DTKvBM.cer
File: HLS_2cCnMryPSmDIaUyR-DTKvBM.cer (raw, json)
Hash identifier: uq2jH/xUG7Ht/xTRnhZl71o7Qd50cKCBbiyEyWfi9nY=
Subject key identifier: 1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 5418
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 Apr 2024 04:58:05 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: IP: 148.66.128.0/19
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 17:47:52 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 21528 (0x5418)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Apr 2 04:58:05 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A91D83D0/serialNumber=1CB4BFD9C0A732BC8F4A60C8694C91F834CABC13
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:6b:4a:01:c7:8c:e7:52:e2:7a:e4:67:37:5d:
4a:0e:28:05:45:6f:74:c2:c8:0b:5a:6f:25:37:89:
f7:0e:9b:ea:7f:2f:63:91:e1:3b:3e:5b:ba:8d:f3:
83:a8:9f:47:8c:97:05:5c:09:16:b0:dd:bc:82:ad:
97:76:5d:ba:63:d5:a9:40:78:24:3e:b0:e7:e6:69:
9a:98:fe:0a:a5:e3:64:5f:a8:0f:a7:37:72:43:e5:
dc:14:ff:64:89:79:0d:86:1d:63:d8:ec:6f:92:d9:
12:ec:9e:1d:44:bd:82:fc:1a:15:c1:a5:49:51:33:
ba:18:c0:10:a4:89:37:2c:76:1f:54:2e:40:2d:59:
5a:2f:5e:c1:34:ec:f2:db:d1:14:52:de:36:5a:0d:
16:b0:b7:5d:cf:cd:04:49:b1:00:14:00:e0:6d:95:
72:c2:cb:70:0f:e4:29:6b:3c:bc:4f:31:dd:4b:22:
8e:67:0b:50:66:56:e9:b6:a2:55:97:98:56:99:0d:
14:97:41:89:1f:b4:18:9d:f1:c2:51:10:51:b0:95:
07:c9:4e:82:69:d2:b4:78:8f:af:22:bf:fa:b9:29:
ce:df:98:62:35:5a:9b:9f:82:fb:12:94:b6:1f:26:
d8:88:8a:a7:d8:c8:f7:fe:2d:62:b1:08:c7:d7:9d:
fd:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:B4:BF:D9:C0:A7:32:BC:8F:4A:60:C8:69:4C:91:F8:34:CA:BC:13
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D83D0/03116312AFBC11EAA961CB86C4F9AE02/HLS_2cCnMryPSmDIaUyR-DTKvBM.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
148.66.128.0/19
Signature Algorithm: sha256WithRSAEncryption
76:90:c6:20:44:22:58:73:b8:8a:7d:67:dc:b2:9e:fb:16:58:
5f:22:09:fe:11:14:37:06:2c:2a:fa:b5:ac:dc:a7:3f:f7:3b:
53:8d:63:ab:c6:fb:0e:2a:25:d8:a6:a9:1d:44:5e:32:25:fb:
fd:9a:07:fc:56:2e:a2:30:40:af:58:0e:53:29:a1:3d:80:54:
b6:68:35:39:a9:d8:0d:46:f7:cb:66:89:60:f8:0d:a5:de:88:
6d:78:9b:94:71:98:7b:19:44:5c:18:f8:b9:6c:e1:68:1b:f7:
22:16:40:77:1e:f5:2d:e1:e1:42:1a:45:6f:57:9a:cf:dd:5f:
5c:ff:4f:3c:11:b9:2b:e1:a4:a9:46:e5:21:73:48:b7:3e:58:
42:26:3d:c7:e3:7d:35:e4:83:cb:59:2b:91:ab:fa:25:4b:d8:
3e:97:c6:46:ab:90:e6:5a:c3:f0:b5:8c:4c:90:c4:e9:19:65:
9a:9a:45:a3:87:1c:93:c6:d4:2c:f1:59:8a:d1:d2:4e:f2:23:
08:a9:6b:1c:b6:8a:98:8c:03:4f:3d:67:cb:f7:00:60:49:e7:
38:94:dc:d1:4d:7b:cd:03:53:36:e6:27:35:98:e4:6a:1e:95:
b6:80:cb:a8:4d:cc:56:e6:e7:79:6e:e8:cb:b7:3e:75:5d:3a:
97:39:c3:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:08 2024 by rpki-client on console-fra.rpki-client.org