Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HJuixf6owDTaVR_a3GKlOnoC5ds.cer
File: HJuixf6owDTaVR_a3GKlOnoC5ds.cer (raw, json)
Hash identifier: ben56hYwgvOSno4iVS/H04H2Y5l9RrWVzHVR2ycPP4E=
Subject key identifier: 1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C549
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 20 Oct 2023 17:42:24 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: IP: 103.100.60.0/22
IP: 2401:b940::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116041 (0x1c549)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 20 17:42:24 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A9193D86/serialNumber=1C9BA2C5FEA8C034DA551FDADC62A53A7A02E5DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:6e:0b:20:c8:f6:fd:3d:13:0d:96:bb:b5:0c:
d0:03:e5:74:da:c5:db:83:e6:be:d8:78:93:94:7b:
dc:86:fd:de:2a:13:23:8d:79:b7:2c:94:c0:2b:4b:
2c:6f:e0:33:9e:e3:26:b7:e6:fb:f3:a7:60:b8:07:
4c:3d:ed:8c:ef:76:df:33:d0:4c:c5:22:1c:2a:0d:
37:e4:66:86:33:04:fa:fd:ec:73:58:31:f2:4b:f4:
4e:8f:76:09:09:69:de:c4:cf:33:c6:3c:f7:a0:3a:
48:d4:fc:1b:c1:8f:b9:88:22:aa:d5:60:23:c0:e9:
9b:1a:af:d6:3d:86:d4:0b:ee:d5:6c:5f:3b:18:ac:
e2:41:b7:da:5e:6d:c4:d4:a7:d4:e7:0d:57:b4:ba:
ab:90:58:ff:93:8d:e0:c1:9a:28:32:40:26:b3:35:
2d:68:15:cd:b6:e7:1f:ed:03:a8:ee:ec:b2:8c:65:
6a:d2:07:1f:1d:ca:20:af:1f:76:ee:ac:ef:e3:ba:
df:b3:1c:7d:9b:db:a0:5f:e1:9d:39:a4:51:05:b6:
24:f0:87:eb:44:bc:11:aa:24:d7:c8:b3:a4:f3:b8:
73:9d:65:13:19:ff:81:aa:09:60:fe:37:2e:7c:7a:
3d:69:6e:3e:93:db:fb:7f:85:a4:7e:2f:a8:b4:b2:
4a:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:9B:A2:C5:FE:A8:C0:34:DA:55:1F:DA:DC:62:A5:3A:7A:02:E5:DB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9193D86/C67D176E9A5F11EA9F626B5EC4F9AE02/HJuixf6owDTaVR_a3GKlOnoC5ds.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.100.60.0/22
IPv6:
2401:b940::/32
Signature Algorithm: sha256WithRSAEncryption
35:92:6a:ef:44:22:e9:cb:40:0c:01:fa:10:8f:1c:78:0e:27:
3d:2d:73:62:07:ce:45:fb:f1:d1:05:1b:30:aa:f1:b5:8d:af:
80:9a:c3:d9:74:26:12:7d:ca:57:b4:3d:3b:dc:c4:9f:3b:3f:
19:3d:22:ad:07:50:91:c4:01:18:0a:b0:4a:53:06:71:9c:03:
2a:c9:9a:8a:8c:5a:25:2e:2e:84:77:36:33:66:4e:57:46:40:
6b:ca:83:dd:19:64:63:ee:7f:c3:76:01:43:47:5a:3f:d0:b1:
1c:d7:0c:ea:62:1f:da:d1:b2:4f:ad:ef:4a:d3:c7:32:ca:85:
d9:c8:b2:1a:ec:88:88:9d:5a:09:43:e9:44:88:68:47:46:c2:
25:33:3b:37:45:30:98:9a:60:7f:4d:f8:ef:e8:cb:ba:c8:a4:
c9:31:4f:d0:e4:b1:8b:41:66:c6:cf:5e:78:fd:92:74:92:04:
e9:c1:53:38:01:a1:34:3e:e7:91:67:25:1e:7a:83:21:10:c1:
bb:16:fe:02:ce:09:69:7c:d6:6d:a7:9b:8c:cd:59:8b:f9:85:
04:9e:33:ba:3f:01:93:67:97:44:cc:ca:30:a2:6a:7e:d9:f1:
fb:0a:90:79:c2:e1:e2:f4:d5:49:e8:0c:e7:d1:4f:90:16:76:
80:f0:ee:05
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:50 2024 by rpki-client on console-ams.rpki-client.org