Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hwkr8ONn_aUUbSh9gQKybsj7grU.cer
File: Hwkr8ONn_aUUbSh9gQKybsj7grU.cer (raw, json)
Hash identifier: KgKvuxi8dI7YS68kY2IK86tQmFA0iwAkRZcBQUW9pvQ=
Subject key identifier: 1F:09:2B:F0:E3:67:FD:A5:14:6D:28:7D:81:02:B2:6E:C8:FB:82:B5
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C21F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/Hwkr8ONn_aUUbSh9gQKybsj7grU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 04 Oct 2023 19:37:24 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 38030
IP: 202.73.4.0 -- 202.73.6.255
IP: 202.161.176.0/20
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 23:35:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115231 (0x1c21f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 4 19:37:24 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91A1AC4/serialNumber=1F092BF0E367FDA5146D287D8102B26EC8FB82B5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:32:f0:7a:14:5d:d3:68:24:a5:cf:8d:aa:ca:
44:ee:36:d7:c9:97:0c:c8:24:56:77:f3:36:25:51:
a3:4b:3f:ad:93:09:8e:34:ce:ae:93:de:59:83:f8:
a3:84:af:51:cb:26:bb:c7:ed:01:9a:e1:4e:62:53:
55:f2:f7:26:45:c4:e5:6f:9c:77:c2:12:30:5c:75:
68:3b:07:5f:07:da:7b:ce:08:69:26:95:d0:aa:7d:
e5:f0:19:8b:80:1e:dd:0f:b9:a1:16:17:f6:bb:0c:
e6:31:47:1f:eb:ec:f6:a5:d0:ed:be:27:47:23:44:
fc:4d:c0:53:05:81:bd:08:fd:84:42:fb:05:29:b4:
7c:30:9e:6e:04:04:d7:f9:be:e9:57:19:0d:1b:18:
27:08:fe:b5:a1:34:29:80:04:f8:90:35:00:1c:c4:
0e:30:26:2c:1f:f2:1d:6a:19:31:55:af:08:1f:a7:
67:fd:36:c7:2e:14:38:a4:2a:20:7f:1a:d3:e5:f1:
97:7e:28:42:ed:38:d5:1b:bd:e1:2d:f4:84:88:e7:
7c:2a:ad:f1:30:f0:d8:b2:11:1a:ba:95:f0:77:cd:
77:de:3d:1f:0e:3c:23:f9:f4:66:fe:89:36:59:24:
9b:56:cf:a7:e7:75:7f:96:e3:a2:a5:09:02:eb:4b:
c7:37
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1F:09:2B:F0:E3:67:FD:A5:14:6D:28:7D:81:02:B2:6E:C8:FB:82:B5
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A1AC4/1CB53F30F6B111EC9CAAB34DC4F9AE02/Hwkr8ONn_aUUbSh9gQKybsj7grU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
38030
sbgp-ipAddrBlock: critical
IPv4:
202.73.4.0-202.73.6.255
202.161.176.0/20
Signature Algorithm: sha256WithRSAEncryption
9c:0a:11:df:1c:26:c3:f4:e1:bb:c7:87:66:c7:fe:7a:67:34:
22:1a:f7:46:1f:9a:67:3a:84:48:e0:0b:81:ac:65:69:09:4f:
91:b1:9b:ed:16:c9:6e:29:65:55:e2:83:b8:7e:be:d8:ca:37:
64:e2:24:d9:d0:86:76:7e:13:8e:a0:10:6a:b0:70:ac:a1:5a:
8f:1b:11:cb:c1:06:4b:65:d5:d6:cf:66:6d:d7:ae:42:b9:4f:
e5:fb:71:7c:e3:e3:bd:a8:2b:47:b1:82:4a:c4:8e:75:28:fd:
18:02:68:0c:d9:6c:89:f8:46:cc:1f:a5:f5:b7:bf:6a:1e:08:
94:8b:39:f7:c6:6d:f8:fb:e6:33:31:45:76:23:36:6f:24:01:
74:fd:5c:19:af:fa:f4:38:5b:46:80:09:54:f8:82:6d:5b:6a:
03:8e:02:b8:43:13:41:4b:f8:a8:d0:12:f2:5f:4d:d8:d2:70:
d1:0e:a7:c6:55:02:18:b8:ff:da:51:28:54:36:25:48:c8:83:
ac:4a:cd:46:39:6a:a7:c8:70:8d:b9:ae:f6:ca:28:14:2c:f7:
0e:64:59:9f:75:f7:6a:0c:5f:1c:24:7c:91:5f:e1:4e:29:42:
d5:10:1f:98:ee:95:9a:9a:53:0a:f9:fd:09:f6:7f:9f:59:42:
e3:9b:51:ed
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 01:02:53 2024 by rpki-client on console-fra.rpki-client.org