Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/USSgTiOq3aRNlKsNSrLAt7IL_HU.cer
File: USSgTiOq3aRNlKsNSrLAt7IL_HU.cer (raw, json)
Hash identifier: ykmz5v+q3htwH5MH/rYH5iPB439UFBbXS6SOW+spOUs=
Subject key identifier: 51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AF73
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 10 Jul 2023 17:27:53 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 137889
IP: 103.116.164.0/22
IP: 2402:fd40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 27 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110451 (0x1af73)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 10 17:27:53 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91A8151/serialNumber=5124A04E23AADDA44D94AB0D4AB2C0B7B20BFC75
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8d:77:68:64:1a:e8:42:8a:fe:7b:03:dd:4e:
91:1b:99:f2:73:e2:f7:0c:8b:33:ec:89:54:29:8b:
d1:3f:84:34:03:a0:8c:4d:a1:02:16:30:34:38:8b:
93:ab:72:f7:1c:60:13:08:d4:93:9c:ef:f7:18:40:
ff:bc:a8:89:8e:5b:54:e6:8e:18:95:1f:d4:c8:3e:
81:b4:49:bc:b6:ae:24:5d:14:1b:2a:38:67:18:0c:
f9:31:ec:05:2a:8c:f0:fe:4f:9c:d1:37:37:6b:48:
86:db:ba:1e:d6:c1:ec:c1:10:27:40:b9:d5:3d:2b:
a1:65:fc:26:df:3b:1e:7f:c5:f4:7a:58:dc:d6:95:
ac:1e:6f:70:67:1f:bf:db:20:66:94:5d:d0:5d:b2:
b6:dd:17:e2:ff:c3:cc:c2:90:6d:f6:33:98:44:d5:
bd:09:bd:ea:05:54:c6:69:cb:9a:ac:02:41:f3:ff:
4e:f4:de:d9:4a:3a:f3:87:e9:b8:83:a8:8a:d0:23:
4b:9f:d7:57:11:0f:f4:4a:9a:7d:00:d6:90:44:cc:
50:dc:94:6f:db:fc:19:6c:0e:88:f6:52:e4:be:6e:
0f:ee:22:4e:96:1b:91:43:ee:d2:88:39:5a:25:d4:
5f:24:0e:be:66:af:02:54:56:ea:42:20:9f:7b:0b:
5b:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
51:24:A0:4E:23:AA:DD:A4:4D:94:AB:0D:4A:B2:C0:B7:B2:0B:FC:75
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A8151/70114DAA0C5711EA98510256C4F9AE02/USSgTiOq3aRNlKsNSrLAt7IL_HU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137889
sbgp-ipAddrBlock: critical
IPv4:
103.116.164.0/22
IPv6:
2402:fd40::/32
Signature Algorithm: sha256WithRSAEncryption
5f:2f:da:0e:85:b3:97:1f:72:53:b0:9d:6b:09:4a:24:81:0b:
fb:9d:57:8c:d0:d4:fa:cb:68:26:cd:d4:67:bb:e1:14:52:d7:
69:dd:36:94:50:5e:27:a5:14:91:74:53:65:10:31:63:82:6b:
20:f9:1f:10:bd:f0:b9:c2:8c:70:66:38:2a:48:39:18:2b:f9:
fe:a5:5e:db:ba:74:ab:3e:8f:d4:01:ec:99:48:6c:57:4c:26:
87:07:9c:34:8e:4c:65:e8:2e:f2:d6:2f:62:7d:f6:40:cf:7a:
f1:ca:b2:84:b9:4e:14:72:88:e8:82:13:68:4a:b6:f6:89:0e:
f6:27:22:79:0c:de:12:d2:48:37:cc:13:4b:cd:b3:3b:79:eb:
0a:da:ac:0e:1d:ee:7a:5e:c0:9e:2e:ba:f8:ef:90:95:f8:ba:
15:69:f8:35:79:ae:0c:0f:75:a1:ee:a6:8d:15:43:34:01:fd:
57:22:52:47:f6:f5:f0:36:a2:72:db:db:dc:b7:4f:81:62:69:
5e:03:02:dc:f5:85:75:8b:a4:4e:15:c7:86:40:74:31:1b:f2:
1e:70:1b:a2:e0:ed:74:4e:b5:ec:53:38:8b:7f:73:6d:99:8b:
01:a4:a1:2e:c9:14:78:b7:78:55:09:29:ce:9e:12:bb:bb:6f:
6a:04:ae:01
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 20 03:57:53 2024 by rpki-client on console-fra.rpki-client.org