Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer
File: HNSe-8N-9KjGyIdlYr0RM0S8ftE.cer (raw, json)
Hash identifier: fpcrve4ju4H1du6bTAzvd4EH7pQRcWugryjzuUKu9Jo=
Subject key identifier: 1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02100C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Sep 2024 13:47:00 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 136798
IP: 103.96.128.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135180 (0x2100c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 27 13:47:00 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A913277C/serialNumber=1CD49EFBC37EF4A8C6C8876562BD113344BC7ED1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:9f:3d:ee:fa:33:87:aa:bc:53:e8:86:9e:a4:
22:8d:33:f4:48:35:96:ce:01:13:63:d2:0a:a4:34:
2d:3a:1c:38:06:ed:b5:3b:c4:b7:23:31:5d:3b:14:
0b:36:2b:5f:83:9b:89:e5:42:b6:1f:f8:43:97:14:
58:19:87:6e:1c:73:81:20:cf:5b:aa:51:d7:81:83:
b0:9d:ba:b1:a1:85:ef:0d:9f:ae:8a:ea:12:f7:06:
46:3a:0b:a3:fd:b3:53:8e:ea:8c:27:f1:47:19:15:
07:36:d8:12:de:ce:4c:43:87:15:84:15:a8:5f:96:
30:37:a8:5f:30:a5:00:7a:94:97:a5:a8:39:a4:34:
94:be:ef:16:c9:34:ea:58:61:c3:3f:75:23:16:9e:
91:2f:52:0f:a2:2c:08:6f:f9:e6:c6:d6:40:43:b0:
f6:53:60:31:95:5f:29:da:2c:32:b8:b8:e8:d4:76:
f3:e4:0e:19:8e:45:99:ac:5e:4c:b7:ce:55:bc:74:
0f:93:08:b1:51:98:79:67:ff:3d:36:89:d6:bf:78:
d5:39:ae:ff:d7:45:1e:fe:a2:86:24:d0:93:16:c0:
b5:44:2e:9e:36:68:80:92:c7:d7:79:1a:5a:98:57:
fe:41:f7:a8:7a:90:a1:8a:51:3d:4c:dd:a1:12:28:
1f:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1C:D4:9E:FB:C3:7E:F4:A8:C6:C8:87:65:62:BD:11:33:44:BC:7E:D1
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913277C/B97C7396C9F211EDA1D99E65C4F9AE02/HNSe-8N-9KjGyIdlYr0RM0S8ftE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136798
sbgp-ipAddrBlock: critical
IPv4:
103.96.128.0/22
Signature Algorithm: sha256WithRSAEncryption
19:fe:af:bd:a6:98:db:b8:ab:ec:b4:a9:7f:e0:27:59:20:25:
b4:e4:ba:ee:93:4c:b8:de:99:6f:a1:c5:0a:80:be:1a:e7:44:
a7:2b:8c:36:84:d5:b1:e9:3b:a0:4d:e2:7c:42:9a:2f:51:09:
7a:74:64:bf:66:a2:bf:f4:c3:f3:3a:42:db:c9:12:04:59:37:
d4:3e:b8:75:84:3f:82:fe:98:dd:bd:94:bd:47:dd:63:c7:b1:
0d:09:19:6d:04:29:3a:14:6f:80:d8:64:9b:ac:8a:91:5a:a1:
75:4c:7a:b1:69:54:5f:e6:d7:c6:b9:e4:79:e2:35:d4:ad:f5:
6b:ee:fa:f4:b3:02:04:22:2c:23:78:7f:1b:e5:4c:8b:ea:2b:
74:1f:6c:c6:98:c3:f4:57:ca:fb:64:06:8d:86:e8:85:c2:ef:
1d:08:52:93:92:16:7c:f5:20:c7:1a:ba:81:1e:e3:0a:29:d6:
6a:e8:64:29:54:d3:75:8c:d0:b8:fc:da:0d:db:c8:d1:84:e7:
52:23:14:f1:b7:e3:d0:52:dd:4a:96:a7:b1:7b:f9:7c:41:67:
10:7e:49:8e:1f:bc:a7:bc:50:58:b7:78:89:94:7c:d1:f2:01:
28:41:11:4c:c8:c0:b4:c4:d5:e0:e4:15:64:2c:5e:03:fe:1d:
a7:a4:39:e1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:33 2024 by rpki-client on console-ams.rpki-client.org