Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer
File: Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.cer (raw, json)
Hash identifier: ZAOoTMqMKpz+G2EhHtR++eRnwfdE3xG7uHw1ARghxSg=
Subject key identifier: 1E:ED:26:3F:04:28:D8:4E:3F:BE:51:75:3D:16:D4:B3:D6:27:97:C4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ED30
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Apr 2024 13:42:16 +0000
Certificate not after: Wed 28 May 2025 00:00:00 +0000
Subordinate resources: AS: 136416
IP: 103.86.200.0/22
IP: 2400:c740::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126256 (0x1ed30)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 24 13:42:16 2024 GMT
Not After : May 28 00:00:00 2025 GMT
Subject: CN=A913B5C2/serialNumber=1EED263F0428D84E3FBE51753D16D4B3D62797C4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:8e:a0:43:ef:92:13:ae:c4:0c:d2:af:71:73:
bb:08:a7:52:98:3b:8c:05:56:5f:fb:80:bb:c0:b5:
f4:57:17:12:fc:8a:eb:a0:16:03:f7:58:05:a4:27:
c9:6c:67:eb:94:44:06:1f:da:aa:9b:35:4b:f4:87:
a2:17:d4:1c:0c:e7:b7:19:9a:49:a2:fe:a7:71:4c:
78:4d:b6:f4:c4:e9:46:03:e0:d9:7d:0b:c1:b4:62:
1f:91:0c:a5:ed:4a:eb:b1:a7:01:84:85:c1:15:15:
ae:60:13:5d:32:f8:c0:71:4d:d2:e8:10:65:9d:b8:
2a:5d:37:37:52:d6:4c:4f:dc:84:ad:38:15:94:54:
91:b1:39:c1:9a:4f:3d:2a:c3:39:63:26:ce:04:45:
ed:68:47:c2:22:92:b8:f8:a2:75:8d:a2:a4:21:3e:
0e:57:5b:a3:03:3c:12:0b:eb:99:ba:a6:b6:ed:68:
5b:cb:60:4c:a1:b9:07:45:a0:45:db:b5:0e:c9:04:
e4:ff:5a:52:89:78:41:78:92:94:87:c5:e7:16:71:
fd:90:74:63:a0:e7:b1:cd:dc:4a:b8:42:f2:67:76:
64:49:59:22:74:08:c0:15:6e:fc:a8:d8:99:2d:e8:
58:49:79:f5:02:b4:c6:10:60:0c:05:90:26:29:ad:
3b:a7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:ED:26:3F:04:28:D8:4E:3F:BE:51:75:3D:16:D4:B3:D6:27:97:C4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913B5C2/779D04A0364111EB8499D219C4F9AE02/Hu0mPwQo2E4_vlF1PRbUs9Ynl8Q.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136416
sbgp-ipAddrBlock: critical
IPv4:
103.86.200.0/22
IPv6:
2400:c740::/32
Signature Algorithm: sha256WithRSAEncryption
16:61:a5:53:b9:08:5e:1b:b5:48:b2:3f:50:f6:7d:b0:d5:15:
90:94:e7:92:d0:d8:6c:35:6a:1e:9c:5b:cd:8b:f2:f5:a8:97:
3d:f4:aa:a4:b2:33:a0:11:a7:1e:2d:75:1d:62:f7:7d:41:d2:
eb:c1:d9:97:ac:44:96:e1:12:8c:f8:5a:e9:98:72:84:6b:f8:
1c:f8:5d:1a:6b:c2:ea:d9:3d:07:37:b8:10:af:f7:4b:62:5f:
6b:02:d3:29:d4:cd:10:8f:ca:ce:98:dd:49:a3:e9:9b:9a:e2:
62:8b:88:2d:0e:42:f9:95:10:50:2c:31:e6:34:b9:ce:9e:f7:
0f:b1:16:5d:d7:36:db:29:7e:e7:98:9d:45:47:94:7d:98:a2:
f5:90:55:79:8b:1b:49:15:04:e7:00:2a:00:69:0a:3b:0a:1f:
1a:9a:c8:22:53:ac:97:dc:03:1c:79:d5:73:c5:16:9d:e7:63:
d4:26:43:18:3c:ec:b6:bf:db:59:93:7f:f3:7d:32:20:ce:82:
b6:15:1e:44:37:7b:0e:ea:18:f4:01:29:63:b5:63:a9:d1:0b:
69:bd:2f:c7:e3:ae:75:ef:74:e2:31:cb:f0:15:ec:24:32:3f:
e4:79:76:e9:a4:a0:9f:da:ef:02:bc:a7:be:e4:0d:ba:25:06:
05:c0:44:cd
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAe0wMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDQyNDEzNDIxNloXDTI1MDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxM0I1QzIxMTAvBgNVBAUTKDFFRUQyNjNGMDQyOEQ4NEUzRkJFNTE3
NTNEMTZENEIzRDYyNzk3QzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCqjqBD75ITrsQM0q9xc7sIp1KYO4wFVl/7gLvAtfRXFxL8iuugFgP3WAWkJ8ls
Z+uURAYf2qqbNUv0h6IX1BwM57cZmkmi/qdxTHhNtvTE6UYD4Nl9C8G0Yh+RDKXt
SuuxpwGEhcEVFa5gE10y+MBxTdLoEGWduCpdNzdS1kxP3IStOBWUVJGxOcGaTz0q
wzljJs4ERe1oR8Iikrj4onWNoqQhPg5XW6MDPBIL65m6prbtaFvLYEyhuQdFoEXb
tQ7JBOT/WlKJeEF4kpSHxecWcf2QdGOg57HN3Eq4QvJndmRJWSJ0CMAVbvyo2Jkt
6FhJefUCtMYQYAwFkCYprTunAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUHu0mPwQo
2E4/vlF1PRbUs9Ynl8QwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTNCNUMyLzc3OUQwNEEwMzY0MTExRUI4NDk5RDIxOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzQjVDMi83NzlEMDRBMDM2NDExMUVCODQ5OUQyMTlDNEY5QUUwMi9IdTBtUHdR
bzJFNF92bEYxUFJiVXM5WW5sOFEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhTgMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ1bIMA0EAgAC
MAcDBQAkAMdAMA0GCSqGSIb3DQEBCwUAA4IBAQAWYaVTuQheG7VIsj9Q9n2w1RWQ
lOeS0NhsNWoenFvNi/L1qJc99KqksjOgEaceLXUdYvd9QdLrwdmXrESW4RKM+Frp
mHKEa/gc+F0aa8Lq2T0HN7gQr/dLYl9rAtMp1M0Qj8rOmN1Jo+mbmuJii4gtDkL5
lRBQLDHmNLnOnvcPsRZd1zbbKX7nmJ1FR5R9mKL1kFV5ixtJFQTnACoAaQo7Ch8a
msgiU6yX3AMcedVzxRad52PUJkMYPOy2v9tZk3/zfTIgzoK2FR5EN3sO6hj0ASlj
tWOp0QtpvS/H465173TiMcvwFewkMj/keXbppKCf2u8CvKe+5A26JQYFwETN
-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:50 2024 by rpki-client on console-ams.rpki-client.org