Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer
File: hgOgrKcgSw7-1k23DeUcdboDk1U.cer (raw, json)
Hash identifier: bOS9GmboA1luziZfUIPyHSOdYphLUNMNG2gTkUyP7yk=
Subject key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AFF6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 13 Jul 2023 12:33:04 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 133378
AS: 139285
IP: 103.140.236.0/23
IP: 114.134.190.0/23
IP: 2400:96a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110582 (0x1aff6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 13 12:33:04 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9d:a8:e7:7e:42:8f:1d:7d:20:c2:b2:84:bd:
94:7c:ce:91:24:c2:9f:99:73:28:77:42:67:5e:ae:
e1:7c:06:6b:dc:eb:80:20:ac:e8:9e:e3:88:79:aa:
57:fc:ff:2c:1d:ab:df:80:3f:3b:77:2f:19:02:f1:
0d:78:45:b6:86:7e:df:a9:e7:e9:9d:f8:45:be:5e:
3b:d4:52:17:ed:c0:dd:20:83:81:8b:12:41:95:1e:
d6:ca:e8:7a:59:c5:b3:7e:4a:74:be:a6:26:02:2f:
02:04:93:f5:02:16:13:03:71:a5:08:a1:58:f9:d2:
6a:ef:27:39:0b:6c:9c:56:2d:4f:54:5e:ab:e8:e6:
f1:9d:97:37:64:94:f4:81:57:19:2a:8f:86:ae:45:
6e:f5:c8:3c:17:82:75:53:ab:ca:1d:e5:c3:89:65:
45:2c:f8:f5:be:52:23:74:76:86:c2:14:3f:d6:e1:
c7:29:a5:08:4a:86:46:0e:6d:4b:cf:ca:53:2d:cb:
88:b1:fd:91:0d:4f:fa:ff:3d:85:43:0e:e7:0c:50:
69:22:80:52:d2:ff:84:bc:94:16:1c:be:1f:25:fc:
20:1a:4e:ec:b6:6d:64:ab:0f:95:88:7d:03:ad:4c:
14:14:a0:0c:13:56:ab:fe:b8:1a:21:5c:28:cc:82:
34:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133378
139285
sbgp-ipAddrBlock: critical
IPv4:
103.140.236.0/23
114.134.190.0/23
IPv6:
2400:96a0::/32
Signature Algorithm: sha256WithRSAEncryption
0d:c5:39:a8:ad:e9:ae:24:a9:b2:23:23:9a:34:65:4d:29:06:
5c:c7:85:d3:cd:15:a9:01:cf:61:7a:ec:8c:60:4f:6f:42:13:
7c:7d:15:a7:5c:22:1a:23:10:71:2e:39:66:a8:84:09:19:c0:
62:97:4a:7c:5c:66:8a:e0:dd:41:86:65:55:ac:dd:3e:8e:51:
c4:85:f8:64:eb:e6:69:5d:bc:27:38:66:c9:86:bd:5c:13:95:
af:a0:d6:0e:2e:d2:45:7b:93:e9:d3:38:fb:03:6c:3c:57:94:
23:66:1b:d3:e3:6e:d2:34:7e:3b:a8:45:79:8d:24:9f:4f:0a:
8c:a3:81:c5:2d:d6:99:90:aa:95:2a:3c:27:d6:12:94:24:32:
09:fe:f5:2c:4a:a3:42:8d:58:02:93:20:d6:b3:d2:0c:29:f7:
ac:e4:2d:da:84:9d:b6:13:ad:23:f6:89:a4:1a:7e:66:44:f3:
a7:7d:b0:f6:2f:8a:9c:34:53:2d:a1:51:fd:16:d4:cf:79:de:
e1:bc:d7:a4:8c:4a:a7:07:b4:05:f6:c3:a3:82:c2:68:39:0c:
e5:eb:ba:bc:f1:e1:c9:0e:db:98:8c:b0:be:de:98:30:e7:ea:
52:bf:7c:a5:bd:21:63:a5:3e:29:65:73:f9:39:6a:6f:48:52:
eb:f6:2c:52
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 08:28:39 2024 by rpki-client on console-ams.rpki-client.org