Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/H3amlEQsq0PX0XzW_fmpfgt_qo4.cer
File: H3amlEQsq0PX0XzW_fmpfgt_qo4.cer (raw, json)
Hash identifier: h4cp3oJk7B8mHV+TfvnTzzwcNr5AhQip//RIbb2o22E=
Subject key identifier: 1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A1A7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 05 May 2023 02:12:31 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 142042
IP: 103.165.97.0/24
IP: 2001:df6:6680::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 14:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106919 (0x1a1a7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 5 02:12:31 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9158059/serialNumber=1F76A694442CAB43D7D17CD6FDF9A97E0B7FAA8E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:d3:c7:d1:0b:32:72:ae:bd:c0:4c:44:25:6b:
8b:ad:99:6a:d1:81:b5:3e:89:fb:1a:b7:2f:0f:8c:
56:30:ad:21:5b:ea:73:d5:1b:b0:7a:05:53:bd:9f:
12:3f:9c:ca:43:15:d9:67:6d:51:67:35:b0:0a:88:
e9:e0:dd:30:e7:21:67:ac:d7:57:20:41:dd:96:c4:
4e:ac:7f:cc:b7:8e:0f:10:26:d7:aa:4d:7a:71:a9:
bd:89:0f:9e:53:cc:d7:dc:e4:bf:05:b9:0f:8f:48:
17:89:3f:89:d8:b0:24:77:03:d7:61:f8:0b:4b:0f:
d5:13:00:72:2b:37:9b:ca:53:f3:8a:6b:c0:76:d7:
0c:60:9f:50:c9:45:11:aa:bc:ec:cb:fa:a6:9b:0c:
33:81:af:69:3d:66:45:fd:f2:26:12:0d:9e:31:7b:
3d:f7:30:b9:76:d5:42:3f:28:33:bb:57:20:7d:12:
76:9d:12:94:a3:63:1d:86:7d:b0:e3:d9:b2:00:29:
db:77:41:45:1b:88:c1:2b:e8:cb:7d:2b:8a:09:e8:
3a:ef:49:70:43:46:f1:32:1d:13:84:1f:fc:92:a3:
e4:5d:cb:d4:91:36:0f:8f:d6:fa:7d:35:d8:5e:4d:
17:c8:13:8b:e6:5e:f6:59:4a:d1:12:27:31:c3:01:
25:67
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:76:A6:94:44:2C:AB:43:D7:D1:7C:D6:FD:F9:A9:7E:0B:7F:AA:8E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9158059/BBD81DA89CC111EBBFDE6579C4F9AE02/H3amlEQsq0PX0XzW_fmpfgt_qo4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142042
sbgp-ipAddrBlock: critical
IPv4:
103.165.97.0/24
IPv6:
2001:df6:6680::/48
Signature Algorithm: sha256WithRSAEncryption
c5:9d:84:08:ca:cb:15:e5:8f:6f:0f:91:7c:15:f5:a3:66:d4:
22:26:1d:03:83:59:68:b5:11:45:f7:c8:6e:ec:28:b5:64:5b:
a1:6b:e0:5b:52:c9:ff:ac:17:76:ee:c4:6b:5e:df:e8:44:32:
3a:88:e9:dc:a2:8e:bb:b2:32:8d:e6:e1:00:65:a0:72:45:e4:
91:5d:ee:19:c8:63:b0:c4:57:bc:56:ef:74:b3:2e:d8:37:10:
0a:34:6f:de:f2:1a:35:c3:41:ab:d0:e5:b2:69:58:e8:04:da:
46:19:a8:9f:c9:64:aa:dd:66:95:56:31:bd:9a:00:98:42:5d:
c2:6c:cb:f3:1a:04:20:46:71:74:22:fc:bc:40:6d:47:55:05:
65:4f:f1:84:ae:f6:db:11:34:57:84:48:77:94:5b:ce:cb:f8:
9c:e2:6b:ea:77:82:90:a9:35:1d:f1:68:e2:81:b1:10:38:00:
68:da:f5:d9:fd:5a:37:0e:bc:c9:a1:59:cc:fc:b4:33:11:28:
c6:5b:03:c0:57:c9:c6:13:7c:02:3f:66:7b:aa:10:f2:3e:5c:
f2:8e:d2:77:5d:98:d2:50:c5:c6:bf:d5:db:c1:19:79:36:fa:
c5:b3:bd:21:f7:44:a5:03:72:99:d9:77:f2:82:33:1c:23:bc:
c1:a3:84:ec
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAaGnMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDUwNTAyMTIzMVoXDTI0MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTgwNTkxMTAvBgNVBAUTKDFGNzZBNjk0NDQyQ0FCNDNEN0QxN0NE
NkZERjlBOTdFMEI3RkFBOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCu08fRCzJyrr3ATEQla4utmWrRgbU+ifsaty8PjFYwrSFb6nPVG7B6BVO9nxI/
nMpDFdlnbVFnNbAKiOng3TDnIWes11cgQd2WxE6sf8y3jg8QJteqTXpxqb2JD55T
zNfc5L8FuQ+PSBeJP4nYsCR3A9dh+AtLD9UTAHIrN5vKU/OKa8B21wxgn1DJRRGq
vOzL+qabDDOBr2k9ZkX98iYSDZ4xez33MLl21UI/KDO7VyB9EnadEpSjYx2GfbDj
2bIAKdt3QUUbiMEr6Mt9K4oJ6DrvSXBDRvEyHROEH/ySo+Rdy9SRNg+P1vp9Ndhe
TRfIE4vmXvZZStESJzHDASVnAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUH3amlEQs
q0PX0XzW/fmpfgt/qo4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU4MDU5L0JCRDgxREE4OUNDMTExRUJCRkRFNjU3OUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1ODA1OS9CQkQ4MURBODlDQzExMUVCQkZERTY1NzlDNEY5QUUwMi9IM2FtbEVR
c3EwUFgwWHpXX2ZtcGZndF9xbzQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiraMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQAZ6VhMA8EAgAC
MAkDBwAgAQ32ZoAwDQYJKoZIhvcNAQELBQADggEBAMWdhAjKyxXlj28PkXwV9aNm
1CImHQODWWi1EUX3yG7sKLVkW6Fr4FtSyf+sF3buxGte3+hEMjqI6dyijruyMo3m
4QBloHJF5JFd7hnIY7DEV7xW73SzLtg3EAo0b97yGjXDQavQ5bJpWOgE2kYZqJ/J
ZKrdZpVWMb2aAJhCXcJsy/MaBCBGcXQi/LxAbUdVBWVP8YSu9tsRNFeESHeUW87L
+Jzia+p3gpCpNR3xaOKBsRA4AGja9dn9WjcOvMmhWcz8tDMRKMZbA8BXycYTfAI/
ZnuqEPI+XPKO0nddmNJQxca/1dvBGXk2+sWzvSH3RKUDcpnZd/KCMxwjvMGjhOw=
-----END CERTIFICATE-----
Generated at Wed Apr 24 15:50:53 2024 by rpki-client on console-ams.rpki-client.org