Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hgOgrKcgSw7-1k23DeUcdboDk1U.cer
File: hgOgrKcgSw7-1k23DeUcdboDk1U.cer (raw, json)
Hash identifier: t+W+1BBWF8poImfyMYxvIQFaq1mAT8i1a8y9A0t5/Tg=
Subject key identifier: 86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020631
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 12 Aug 2024 05:54:21 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 133378
AS: 139285
IP: 103.140.236.0/23
IP: 103.227.172.0/22
IP: 114.134.190.0/23
IP: 2400:96a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 29 Nov 2024 20:43:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 132657 (0x20631)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 12 05:54:21 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A9118EB2/serialNumber=8603A0ACA7204B0EFED64DB70DE51C75BA039355
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:db:9d:a8:e7:7e:42:8f:1d:7d:20:c2:b2:84:bd:
94:7c:ce:91:24:c2:9f:99:73:28:77:42:67:5e:ae:
e1:7c:06:6b:dc:eb:80:20:ac:e8:9e:e3:88:79:aa:
57:fc:ff:2c:1d:ab:df:80:3f:3b:77:2f:19:02:f1:
0d:78:45:b6:86:7e:df:a9:e7:e9:9d:f8:45:be:5e:
3b:d4:52:17:ed:c0:dd:20:83:81:8b:12:41:95:1e:
d6:ca:e8:7a:59:c5:b3:7e:4a:74:be:a6:26:02:2f:
02:04:93:f5:02:16:13:03:71:a5:08:a1:58:f9:d2:
6a:ef:27:39:0b:6c:9c:56:2d:4f:54:5e:ab:e8:e6:
f1:9d:97:37:64:94:f4:81:57:19:2a:8f:86:ae:45:
6e:f5:c8:3c:17:82:75:53:ab:ca:1d:e5:c3:89:65:
45:2c:f8:f5:be:52:23:74:76:86:c2:14:3f:d6:e1:
c7:29:a5:08:4a:86:46:0e:6d:4b:cf:ca:53:2d:cb:
88:b1:fd:91:0d:4f:fa:ff:3d:85:43:0e:e7:0c:50:
69:22:80:52:d2:ff:84:bc:94:16:1c:be:1f:25:fc:
20:1a:4e:ec:b6:6d:64:ab:0f:95:88:7d:03:ad:4c:
14:14:a0:0c:13:56:ab:fe:b8:1a:21:5c:28:cc:82:
34:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:03:A0:AC:A7:20:4B:0E:FE:D6:4D:B7:0D:E5:1C:75:BA:03:93:55
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9118EB2/7AC767DE066911EDB0AE8E37C4F9AE02/hgOgrKcgSw7-1k23DeUcdboDk1U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133378
139285
sbgp-ipAddrBlock: critical
IPv4:
103.140.236.0/23
103.227.172.0/22
114.134.190.0/23
IPv6:
2400:96a0::/32
Signature Algorithm: sha256WithRSAEncryption
49:5c:30:b4:a7:8f:d7:47:5b:18:38:ce:08:58:27:57:31:95:
92:af:8d:ea:df:2b:5c:08:f0:52:00:47:ee:6d:e5:a1:82:4c:
37:90:9e:d0:d9:e3:e7:20:24:9c:52:2f:fe:7b:c1:ef:8c:ed:
b5:1b:3a:04:58:aa:36:2d:a6:f0:1e:38:a1:0f:7b:a2:b0:cb:
ac:f4:87:7e:ad:fe:2d:8f:6e:0e:b8:ba:f3:08:92:2e:8e:4b:
35:54:27:01:d6:35:cd:cc:0b:ec:25:0b:2f:09:18:71:e3:94:
5a:a7:71:4e:f3:fc:44:4a:6f:89:96:80:13:50:7a:9f:73:4e:
08:e5:c8:9c:e5:39:09:d8:54:90:51:a1:9f:f0:5a:3c:89:ca:
84:d8:9f:1b:21:ab:0d:8c:8f:76:23:12:a7:bd:71:91:b0:b4:
f0:5f:c7:be:24:89:55:c8:da:1c:2b:68:aa:05:1e:77:bc:67:
28:66:7d:3a:4a:b7:f5:f4:57:14:87:07:e1:ab:75:df:90:d7:
19:50:1d:8e:97:de:1a:2c:9b:a3:d2:b9:3c:08:7d:dc:be:33:
97:b2:a8:e3:2d:1a:95:5f:73:72:05:48:38:6c:22:44:99:1f:
e1:85:5a:30:76:a0:b8:b9:6c:85:ef:43:be:7e:c5:0e:c4:6c:
ad:66:05:cf
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Nov 22 22:24:56 2024 by rpki-client on console-fra.rpki-client.org