Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hm540aRej9EmgIr_fOpPwI59kqg.cer
File: hm540aRej9EmgIr_fOpPwI59kqg.cer (raw, json)
Hash identifier: VdDHCSscndyf3E5A2UJrlIRe0fvvCNqgHNC6vwkRE7Q=
Subject key identifier: 86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ED2E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Apr 2024 13:38:11 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 152708
IP: 103.40.52.0/23
IP: 2001:df3:b7c0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126254 (0x1ed2e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 24 13:38:11 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A911CFCE/serialNumber=866E78D1A45E8FD126808AFF7CEA4FC08E7D92A8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:25:4b:1a:5c:a2:03:23:f1:61:cb:62:74:75:
66:c0:e2:bb:aa:ec:c3:fc:33:81:8c:8f:43:ab:02:
ef:18:4f:7f:3c:ad:be:16:81:08:4b:82:44:ab:46:
a7:f7:78:22:4f:78:f5:5f:16:f3:05:3b:d8:ae:10:
d7:2f:18:41:25:73:de:90:fb:fe:fa:cd:67:39:58:
6f:9c:95:5f:63:79:52:1a:f9:b4:ba:47:4f:74:d1:
8c:f2:8d:71:cb:c2:71:f9:7d:47:1d:ae:88:36:55:
52:22:3a:33:4c:2f:ee:dd:26:69:ed:37:04:32:f9:
84:4a:1b:3d:82:8e:c5:ae:30:89:05:27:0e:5b:7b:
93:c4:f7:67:52:ee:0f:bf:79:33:28:d0:cf:5e:08:
63:05:d9:11:21:0c:23:b3:f3:53:0b:47:e6:ef:66:
d4:e8:d5:16:a8:b8:45:c9:54:b9:a8:d5:3c:fc:2d:
41:b9:11:18:f9:98:eb:a0:53:2a:af:53:1c:39:1b:
e0:a0:87:80:a3:3d:eb:39:cb:62:45:64:cf:49:b1:
c0:67:d4:41:fc:7a:a6:2d:ae:90:55:4a:13:78:41:
4e:c9:5e:e5:b0:f7:27:67:00:ce:37:94:b2:0c:c3:
c3:5e:6c:7a:f9:fd:ae:b6:22:ec:5f:7f:92:74:c5:
3b:cd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:6E:78:D1:A4:5E:8F:D1:26:80:8A:FF:7C:EA:4F:C0:8E:7D:92:A8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911CFCE/E0BE36AC023F11EF8E5C1E58C4F9AE02/hm540aRej9EmgIr_fOpPwI59kqg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152708
sbgp-ipAddrBlock: critical
IPv4:
103.40.52.0/23
IPv6:
2001:df3:b7c0::/48
Signature Algorithm: sha256WithRSAEncryption
99:a4:98:7b:9a:2d:98:e4:87:9d:0c:17:79:4a:e5:96:fa:d4:
e5:db:28:91:c6:26:f6:36:d8:bf:38:5d:a1:f3:23:26:d6:e9:
a5:83:66:ba:52:29:99:d0:bc:1a:36:66:d9:0d:57:71:4e:87:
e2:c1:0d:6b:e4:72:a2:05:18:31:36:70:9b:a3:49:94:26:20:
79:27:c9:c9:7d:eb:18:55:25:1b:2d:50:cc:a8:ef:aa:e0:eb:
4a:46:67:cb:d7:c0:55:05:55:34:ae:11:dd:04:e8:66:0f:df:
2d:78:c1:ee:dc:36:e8:eb:65:85:b9:1a:e6:70:4a:76:bd:0d:
e4:18:78:90:7b:18:a9:c0:0e:16:3b:23:dc:24:dc:e0:48:82:
96:8f:01:c6:04:62:5f:f0:99:d8:c9:12:58:3b:6b:93:79:e1:
57:d9:63:ac:94:74:c7:00:3a:db:96:06:c7:94:39:6c:8e:e8:
39:48:21:d6:63:35:27:0e:f2:3c:78:ef:7f:ca:44:ee:a4:8c:
0c:d6:80:e5:4d:ca:0f:1c:4e:c8:ea:ce:ce:41:78:b9:41:e8:
54:92:07:92:3b:b1:36:9e:87:22:2a:65:1f:b1:4c:e2:21:c8:
1f:a5:04:82:0e:d5:55:42:da:41:6c:4d:39:03:77:bd:be:0a:
56:02:63:2d
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAe0uMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDQyNDEzMzgxMVoXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMUNGQ0UxMTAvBgNVBAUTKDg2NkU3OEQxQTQ1RThGRDEyNjgwOEFG
RjdDRUE0RkMwOEU3RDkyQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDKJUsaXKIDI/Fhy2J0dWbA4ruq7MP8M4GMj0OrAu8YT388rb4WgQhLgkSrRqf3
eCJPePVfFvMFO9iuENcvGEElc96Q+/76zWc5WG+clV9jeVIa+bS6R0900YzyjXHL
wnH5fUcdrog2VVIiOjNML+7dJmntNwQy+YRKGz2CjsWuMIkFJw5be5PE92dS7g+/
eTMo0M9eCGMF2REhDCOz81MLR+bvZtTo1RaouEXJVLmo1Tz8LUG5ERj5mOugUyqv
Uxw5G+Cgh4CjPes5y2JFZM9JscBn1EH8eqYtrpBVShN4QU7JXuWw9ydnAM43lLIM
w8NebHr5/a62Iuxff5J0xTvNAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUhm540aRe
j9EmgIr/fOpPwI59kqgwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTFDRkNFL0UwQkUzNkFDMDIzRjExRUY4RTVDMUU1OEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExQ0ZDRS9FMEJFMzZBQzAyM0YxMUVGOEU1QzFFNThDNEY5QUUwMi9obTU0MGFS
ZWo5RW1nSXJfZk9wUHdJNTlrcWcubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlSEMDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZyg0MA8EAgAC
MAkDBwAgAQ3zt8AwDQYJKoZIhvcNAQELBQADggEBAJmkmHuaLZjkh50MF3lK5Zb6
1OXbKJHGJvY22L84XaHzIybW6aWDZrpSKZnQvBo2ZtkNV3FOh+LBDWvkcqIFGDE2
cJujSZQmIHknycl96xhVJRstUMyo76rg60pGZ8vXwFUFVTSuEd0E6GYP3y14we7c
NujrZYW5GuZwSna9DeQYeJB7GKnADhY7I9wk3OBIgpaPAcYEYl/wmdjJElg7a5N5
4VfZY6yUdMcAOtuWBseUOWyO6DlIIdZjNScO8jx473/KRO6kjAzWgOVNyg8cTsjq
zs5BeLlB6FSSB5I7sTaehyIqZR+xTOIhyB+lBIIO1VVC2kFsTTkDd72+ClYCYy0=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:43 2024 by rpki-client on console-fra.rpki-client.org