Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HC-QzT9RuKzQAhDjV96agctF0XE.cer
File: HC-QzT9RuKzQAhDjV96agctF0XE.cer (raw, json)
Hash identifier: eAz7cEslrSVeGLrgBHvzh/MKyWKXcWrfQRLGeTPWejs=
Subject key identifier: 1C:2F:90:CD:3F:51:B8:AC:D0:02:10:E3:57:DE:9A:81:CB:45:D1:71
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CCBC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915B01D/2192951695C311E6855A3E1CC4F9AE02/HC-QzT9RuKzQAhDjV96agctF0XE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915B01D/2192951695C311E6855A3E1CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 24 Nov 2023 15:19:31 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 135408
IP: 103.217.248.0/24
IP: 2001:df2:e00::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117948 (0x1ccbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 24 15:19:31 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A915B01D/serialNumber=1C2F90CD3F51B8ACD00210E357DE9A81CB45D171
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:7c:74:39:ba:33:b7:df:72:06:97:f1:41:d9:
2f:6c:40:1f:54:47:94:25:f7:58:7a:c8:4b:ec:d2:
b8:87:82:89:81:89:5b:24:81:08:c4:2e:a6:cc:51:
58:b9:4b:d3:c5:f0:88:42:a2:7e:be:bf:67:8f:a6:
25:54:1a:23:bf:08:40:b8:86:b7:be:58:29:19:10:
21:55:e5:c5:e5:9e:ff:93:a3:f0:76:33:98:2b:02:
4c:78:1b:11:ac:e3:79:84:3b:6a:8b:07:32:d6:e6:
8c:ea:7c:e3:04:b8:97:0b:d3:6f:4a:74:9f:69:c8:
04:75:64:6f:73:bf:f3:29:37:26:aa:ab:0b:c0:c7:
f0:8f:72:5b:5c:77:55:e7:43:5a:d7:bc:71:af:95:
fb:97:f4:4b:ca:27:37:15:f8:db:90:81:ae:4a:1b:
5b:91:e4:ee:35:b2:10:25:33:2a:86:26:58:00:4d:
0e:12:13:a5:a1:c7:12:91:77:b7:01:a3:78:9e:a6:
d0:a8:93:2d:f6:67:8a:7e:c5:db:b3:c6:c8:9a:f7:
14:09:9e:28:86:02:f1:28:e6:50:8d:01:15:ee:fe:
07:ca:97:0b:f3:64:47:62:b1:df:c6:bb:0d:d8:14:
c5:8c:29:14:f5:e6:9e:89:4a:56:12:d1:55:e0:28:
13:2f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:2F:90:CD:3F:51:B8:AC:D0:02:10:E3:57:DE:9A:81:CB:45:D1:71
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915B01D/2192951695C311E6855A3E1CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915B01D/2192951695C311E6855A3E1CC4F9AE02/HC-QzT9RuKzQAhDjV96agctF0XE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135408
sbgp-ipAddrBlock: critical
IPv4:
103.217.248.0/24
IPv6:
2001:df2:e00::/48
Signature Algorithm: sha256WithRSAEncryption
3a:e5:a8:79:fc:ad:db:49:81:9e:8c:03:8f:95:4c:e4:6b:4d:
e4:3b:ac:ab:9d:0b:7d:44:94:79:2d:ce:3c:7b:c1:ec:c6:df:
a4:8b:b5:0a:a9:62:a9:97:26:37:80:36:8b:21:db:db:ff:52:
cd:39:da:0e:a0:ef:b1:2d:f5:15:e8:1a:09:aa:07:96:a8:e3:
85:88:5e:18:32:8e:d8:59:6c:ae:0b:86:06:b8:a0:a6:60:eb:
56:24:cf:80:72:79:89:2f:ab:33:7e:7f:5b:81:f6:ab:f9:88:
eb:59:d1:a2:cc:cd:cc:83:21:ee:d9:18:8b:2e:8b:c8:03:4d:
66:b7:45:b5:6b:77:6e:4c:fe:28:b1:62:4f:66:bc:fc:52:9e:
66:5f:0c:59:64:84:7d:da:56:ad:de:c4:7a:a3:70:7a:46:16:
a0:36:46:ee:fd:5b:a8:b9:d4:24:1e:5d:31:e4:21:55:82:38:
28:74:92:fe:94:2d:80:a3:b4:ea:54:77:8f:13:ca:7b:a3:66:
6e:b3:59:8e:32:4e:ea:49:59:15:df:e3:77:5f:ae:dd:2d:ab:
82:c7:fc:0e:09:df:8a:e0:ce:bd:44:a6:40:2b:4a:84:3f:57:
49:66:28:f6:37:e0:82:49:31:cc:00:14:80:b6:04:c0:66:68:
2e:f6:88:a1
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:18 2024 by rpki-client on console-fra.rpki-client.org