Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer
File: HEIrsfyW_mDUsv9fbBJFDsye6Ww.cer (raw, json)
Hash identifier: ttgJRscuR1sfCBucIGDivtUIV7v2qsd7pmIlj4a4rP4=
Subject key identifier: 1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E7AE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 31 Mar 2024 18:51:11 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 136174
IP: 103.122.158.0/23
IP: 103.209.52.0/23
IP: 2404:c040::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 11:16:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124846 (0x1e7ae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 18:51:11 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A9163609/serialNumber=1C422BB1FC96FE60D4B2FF5F6C12450ECC9EE96C
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:fa:41:c4:63:de:f8:d2:f2:fd:3e:1b:43:c2:8e:
19:7c:22:e5:ac:07:ac:45:8d:bb:0c:24:92:7f:d6:
6f:36:c6:66:37:78:f2:44:e4:b1:5b:db:10:03:12:
7e:82:fd:9a:0e:90:34:55:65:04:7f:bc:25:06:d5:
4e:0c:c1:48:58:04:ac:7f:7d:44:20:b3:68:6d:47:
ed:ce:87:a6:81:d2:53:86:ec:92:5f:91:40:e6:20:
84:4a:c6:8e:be:82:54:b8:fa:31:49:fb:df:38:ea:
d6:54:94:4a:26:a0:62:b2:9b:55:de:60:24:52:92:
1d:39:18:fa:8e:66:01:92:3f:d3:55:fc:c5:2c:97:
8a:b1:27:97:14:e4:b5:84:c1:95:21:9f:cb:9d:30:
71:67:a9:e5:43:ea:f1:60:2d:cd:79:1e:4f:3b:ef:
2d:6e:95:05:71:d9:80:f8:09:5c:d2:c3:b6:b2:a7:
6b:4b:a1:17:35:48:7a:44:de:ef:6f:82:cc:8d:05:
f2:69:1b:37:89:32:f5:3b:00:1e:60:c4:18:67:7b:
d3:1e:f0:16:14:25:08:f8:2b:6e:61:83:df:58:db:
c2:f4:ed:49:77:e6:1b:68:ef:fa:c3:40:8c:02:33:
da:80:35:d4:a4:88:84:17:04:eb:7a:db:c4:1d:1a:
1c:55
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:42:2B:B1:FC:96:FE:60:D4:B2:FF:5F:6C:12:45:0E:CC:9E:E9:6C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9163609/23F9E8BA8FDE11EDAE369A53C4F9AE02/HEIrsfyW_mDUsv9fbBJFDsye6Ww.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136174
sbgp-ipAddrBlock: critical
IPv4:
103.122.158.0/23
103.209.52.0/23
IPv6:
2404:c040::/32
Signature Algorithm: sha256WithRSAEncryption
49:73:fe:9d:2a:16:e3:3d:7a:68:d5:20:ad:fd:b9:1c:71:cb:
a5:02:a0:a0:99:26:7e:19:27:93:b9:1d:47:bc:d1:04:5b:3c:
37:d2:19:30:ca:b3:92:36:24:73:88:a7:61:45:3e:4f:b7:a7:
84:c5:44:f4:15:37:30:ff:e6:4b:ee:67:c3:f8:cd:57:fb:76:
6a:79:26:9f:4b:b3:38:34:46:48:1d:49:30:10:49:ca:45:84:
b4:56:c2:76:db:f3:ef:81:ea:fc:44:4d:19:c4:00:3c:03:24:
2d:fe:15:03:0f:ae:34:59:cf:9f:c4:76:ad:db:a1:49:fc:de:
6a:c0:84:6a:e2:9a:15:01:82:5c:65:63:e1:dd:55:9a:0f:98:
b2:da:e4:a2:d6:96:25:2e:bc:4d:c8:be:64:e0:8a:f5:c2:7a:
0c:a9:7c:9f:84:b9:6d:5a:c9:4d:22:c8:41:e9:dd:19:85:6d:
38:8a:c2:f7:a8:77:f4:b6:5b:09:05:87:db:9b:f8:98:0f:6e:
cd:d3:f5:4f:1d:49:c8:44:2e:61:dd:0e:7e:1e:d4:f8:20:72:
c1:15:0d:fa:ac:f0:c1:05:4c:70:d3:5d:f7:5a:19:4e:81:73:
3d:70:fb:ce:15:3a:6c:8f:cb:2d:bd:95:0e:29:2e:fb:5f:7b:
e3:bc:e3:80
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 12:37:21 2024 by rpki-client on console-ams.rpki-client.org