Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HC6Z_mGk-2-ihnNfjgaRmDakD_g.cer
File: HC6Z_mGk-2-ihnNfjgaRmDakD_g.cer (raw, json)
Hash identifier: gAYq06CyPAx1JgpB/YeIjgIKQahqx0TPlZyKurQTr7w=
Subject key identifier: 1C:2E:99:FE:61:A4:FB:6F:A2:86:73:5F:8E:06:91:98:36:A4:0F:F8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B3BA
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D246A/69C2D350057111EC94A2EC2CC4F9AE02/HC6Z_mGk-2-ihnNfjgaRmDakD_g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D246A/69C2D350057111EC94A2EC2CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 31 Jul 2023 23:58:37 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 139265
IP: 103.140.150.0/23
IP: 2001:df0:d980::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 12:36:32 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 111546 (0x1b3ba)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 31 23:58:37 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91D246A/serialNumber=1C2E99FE61A4FB6FA286735F8E06919836A40FF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:90:49:6b:1a:42:5d:36:0d:65:f4:d9:2b:14:
c3:44:11:d6:6c:2a:48:ed:f5:7b:0b:fd:0d:1b:6f:
b2:e8:6e:37:92:dc:38:83:1c:b2:81:97:39:d4:9b:
92:5f:29:8d:b5:4b:1f:e0:90:c8:45:44:a5:f5:c7:
61:41:2c:13:83:20:c6:fb:cf:47:05:cc:bb:fe:25:
ed:ae:4e:2d:4e:af:30:1a:bd:ea:99:57:b8:bf:90:
ee:fd:cc:af:91:2e:bf:46:12:24:1a:3a:2c:0c:fe:
77:24:54:1b:0b:d6:46:a2:a0:59:ff:30:86:b9:0c:
6b:2a:6c:eb:e4:c2:39:69:b1:fb:e8:b8:0b:b4:29:
2e:ad:68:47:95:d0:e4:01:2d:76:92:f9:19:08:1a:
ae:89:52:64:24:02:80:71:82:f7:09:ec:c8:6c:63:
dc:86:1c:34:ff:26:c3:fd:6b:55:f2:a7:32:81:16:
c2:f0:bf:29:1c:40:da:dd:dc:c6:df:47:0f:38:90:
d6:73:bb:f8:c9:58:53:49:9c:64:b1:bd:4f:30:9d:
91:c8:11:be:88:68:ed:c0:0b:d1:fa:5e:2f:a5:dc:
04:d5:5c:49:08:9b:d1:e3:25:4a:0e:e0:29:a6:b3:
3f:83:0e:c8:f3:bb:64:bc:37:c1:57:a0:42:6b:4d:
f1:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:2E:99:FE:61:A4:FB:6F:A2:86:73:5F:8E:06:91:98:36:A4:0F:F8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D246A/69C2D350057111EC94A2EC2CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D246A/69C2D350057111EC94A2EC2CC4F9AE02/HC6Z_mGk-2-ihnNfjgaRmDakD_g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139265
sbgp-ipAddrBlock: critical
IPv4:
103.140.150.0/23
IPv6:
2001:df0:d980::/48
Signature Algorithm: sha256WithRSAEncryption
76:9e:89:ee:5a:17:4d:f7:c4:3b:0e:78:a8:6f:5b:1e:92:01:
67:c8:e4:1d:c4:d5:1e:3d:ab:4e:f9:f6:b2:e1:c5:1c:a9:7f:
e5:bc:dd:ba:1d:c7:cc:8e:6d:aa:67:08:18:be:fc:28:f5:fc:
63:9a:24:f9:08:38:25:47:26:19:dd:70:89:27:a9:bd:a1:39:
e6:d1:e7:62:6a:ea:cd:d3:68:c1:4f:83:d4:ff:2f:f9:14:5f:
e8:d9:c7:e8:0d:c4:6a:72:c5:11:bc:89:9c:ad:0d:ba:9b:86:
e1:7e:b5:2d:12:51:dd:22:57:cc:32:01:71:8b:6e:cf:bc:2f:
87:39:f8:b3:6b:9a:0a:8e:f7:08:ec:25:ec:76:ce:24:57:b6:
eb:83:4a:e5:39:50:4b:0b:d8:24:22:4e:a0:a5:f3:66:d1:b2:
ea:79:4c:04:c5:0e:2f:45:96:64:4b:e7:d0:d3:9e:82:ad:b4:
af:ce:82:b1:07:c2:ed:d7:27:55:79:0d:cd:2d:cb:81:69:78:
68:ba:f9:d3:c1:99:f4:9f:07:dc:1c:c3:6e:db:3c:9f:fd:d3:
da:14:3c:b9:c1:be:6d:ad:57:3c:4f:3b:8f:c6:7c:9b:a6:6a:
ef:da:5e:55:e8:2d:e8:ef:0b:04:44:61:c6:69:bb:59:d6:59:
0c:80:49:83
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Sat Apr 20 13:46:57 2024 by rpki-client on console-ams.rpki-client.org