Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer
File: HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer (raw, json)
Hash identifier: ronMV4Sf+x5e7WOcHhYuSBP1/KHGzVOvTCbL4HLf9pc=
Subject key identifier: 1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C00C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Sep 2023 13:12:57 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 136798
IP: 103.96.128.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 02:50:26 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114700 (0x1c00c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 27 13:12:57 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9f:3d:ee:fa:33:87:aa:bc:53:e8:86:9e:a4:
22:8d:33:f4:48:35:96:ce:01:13:63:d2:0a:a4:34:
2d:3a:1c:38:06:ed:b5:3b:c4:b7:23:31:5d:3b:14:
0b:36:2b:5f:83:9b:89:e5:42:b6:1f:f8:43:97:14:
58:19:87:6e:1c:73:81:20:cf:5b:aa:51:d7:81:83:
b0:9d:ba:b1:a1:85:ef:0d:9f:ae:8a:ea:12:f7:06:
46:3a:0b:a3:fd:b3:53:8e:ea:8c:27:f1:47:19:15:
07:36:d8:12:de:ce:4c:43:87:15:84:15:a8:5f:96:
30:37:a8:5f:30:a5:00:7a:94:97:a5:a8:39:a4:34:
94:be:ef:16:c9:34:ea:58:61:c3:3f:75:23:16:9e:
91:2f:52:0f:a2:2c:08:6f:f9:e6:c6:d6:40:43:b0:
f6:53:60:31:95:5f:29:da:2c:32:b8:b8:e8:d4:76:
f3:e4:0e:19:8e:45:99:ac:5e:4c:b7:ce:55:bc:74:
0f:93:08:b1:51:98:79:67:ff:3d:36:89:d6:bf:78:
d5:39:ae:ff:d7:45:1e:fe:a2:86:24:d0:93:16:c0:
b5:44:2e:9e:36:68:80:92:c7:d7:79:1a:5a:98:57:
fe:41:f7:a8:7a:90:a1:8a:51:3d:4c:dd:a1:12:28:
1f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136798
sbgp-ipAddrBlock: critical
IPv4:
103.96.128.0/22
Signature Algorithm: sha256WithRSAEncryption
8a:6c:27:3a:0f:e9:44:f0:b0:42:f3:18:33:85:76:b4:22:34:
24:c2:34:df:2c:1e:8d:a9:fb:75:6b:cc:91:b8:1a:f6:15:20:
ef:dd:73:ef:7d:74:1e:b5:7c:db:21:ac:aa:8d:dd:a2:8e:33:
f4:bd:30:42:f1:ab:f3:92:d8:73:3d:fd:09:97:d8:c8:f3:57:
f0:23:74:34:0c:af:43:39:7a:97:ee:28:bf:7c:fe:0a:61:90:
e8:fc:ae:0c:9d:ee:52:16:2e:a9:44:ca:a4:e8:1a:89:f8:28:
03:d4:41:62:f1:23:2f:5a:80:93:57:87:c9:bc:12:c2:74:1f:
72:0b:bb:06:d4:d4:e2:aa:f2:e1:35:78:1a:68:af:ed:d9:99:
99:b5:d1:af:59:9d:77:68:17:23:e7:0f:61:e1:9a:83:8f:a5:
c4:67:18:8c:e3:59:32:cf:7d:bf:ca:db:97:4e:00:8a:93:6e:
70:29:16:69:7c:df:49:a5:96:a2:a1:6a:56:1b:02:17:dd:43:
76:29:35:33:85:1e:66:b5:a7:12:9e:26:62:d6:05:a7:62:a6:
8e:99:1a:bc:2c:2f:bd:0c:47:08:79:eb:25:53:6b:b5:3a:08:
de:53:0c:86:2f:c5:ad:14:6c:33:3e:2e:67:83:25:37:e6:1f:
f0:e5:00:dd
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 03:51:27 2024 by rpki-client on console-ams.rpki-client.org