Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho7LZCXagzKIkuV7sN9kThrrc7M.cer
File: ho7LZCXagzKIkuV7sN9kThrrc7M.cer (raw, json)
Hash identifier: uC7+RJRRAqhjYEL+kIQcJLgk8CAjmmlsBhSTuVXkRkI=
Subject key identifier: 86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A088
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 May 2023 01:36:46 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 135402
IP: 45.248.52.0/22
IP: 103.216.196.0/22
IP: 2404:f980::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 02:50:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106632 (0x1a088)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 2 01:36:46 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A91C9945/serialNumber=868ECB6425DA83328892E57BB0DF644E1AEB73B3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:03:50:b6:1f:3a:73:25:a9:1f:69:61:32:08:
b5:34:2e:8b:9f:30:c7:f0:63:b6:20:76:29:a6:ac:
69:59:9c:b7:63:a5:38:25:07:75:0c:cf:71:61:db:
db:e0:03:f4:76:40:be:ea:43:cf:6e:19:6f:db:35:
59:e3:35:fe:ba:d0:95:35:a6:6a:bd:0e:06:95:e5:
68:8f:73:3d:00:42:60:c3:43:3f:fb:31:2c:6f:5f:
f8:54:1f:ce:05:33:83:df:04:ba:67:ae:cd:2a:d3:
45:cb:21:a6:a3:e4:f6:e0:c6:7c:74:34:fe:28:3a:
b1:db:4e:96:a1:04:aa:e6:90:fc:4d:f2:e2:9d:bf:
8b:29:e2:b8:33:9e:23:ba:6a:d1:ec:5e:b0:df:bf:
3f:aa:92:8a:f2:8f:4e:ea:47:1e:72:7b:17:b3:9e:
7a:d1:71:cb:1b:a4:26:d5:d3:d0:68:35:39:dd:9e:
cb:0d:19:78:ed:bb:a4:e8:97:3c:83:a7:95:18:b9:
88:fd:69:ce:94:ff:3f:1d:c4:dc:13:18:0f:6e:d8:
0b:81:75:cb:4b:a5:ad:33:f8:31:c7:25:25:94:16:
7e:ef:91:5f:e2:91:15:ec:45:93:cd:b6:96:67:be:
37:a7:aa:9a:f7:7f:f2:ed:e4:aa:fb:07:8e:7e:00:
a9:7f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8E:CB:64:25:DA:83:32:88:92:E5:7B:B0:DF:64:4E:1A:EB:73:B3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9945/BC00C8F2F09E11ECAEE73E19C4F9AE02/ho7LZCXagzKIkuV7sN9kThrrc7M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135402
sbgp-ipAddrBlock: critical
IPv4:
45.248.52.0/22
103.216.196.0/22
IPv6:
2404:f980::/32
Signature Algorithm: sha256WithRSAEncryption
92:70:96:15:d7:d4:12:a9:a8:ee:f8:dd:81:95:17:85:a3:f1:
f9:9c:c2:8f:20:f9:2f:12:39:4a:c2:ef:ac:1c:4f:c0:7d:f9:
eb:52:cf:9e:1c:02:12:84:6d:78:28:7e:3c:60:e2:8e:ea:4f:
86:70:aa:4b:8e:48:9d:01:c0:21:e8:05:2f:f7:2b:19:38:ed:
28:91:c8:3b:81:ae:e5:3d:12:01:2a:84:94:50:a3:b4:05:8d:
ce:94:5d:3b:60:90:7e:78:43:c1:44:43:37:23:ed:44:77:fe:
c3:ad:b6:9c:a7:4a:da:16:ac:34:56:c4:11:91:86:22:cd:b3:
bf:84:3d:a7:01:b8:06:c2:2a:e8:6d:f7:89:e5:be:61:9b:36:
14:00:a6:4b:03:08:9d:a6:65:cb:d3:9b:05:9b:36:ed:bc:f0:
16:f1:54:2a:e1:d0:f9:a2:2a:31:0e:96:5a:bb:f4:e0:73:e1:
0a:d3:db:97:9b:20:ff:20:e8:be:1e:0a:d7:8e:28:16:3e:3d:
9e:21:8b:9b:5d:b1:d9:87:d7:f6:67:d8:09:3d:bb:a1:8e:5b:
d2:04:8a:72:49:ad:64:10:04:90:09:ea:38:0f:d1:4c:40:82:
98:12:9a:59:34:a0:7b:8f:80:11:44:57:d0:b9:ff:3c:e0:b4:
33:98:0b:b2
-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgIDAaCIMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDUwMjAxMzY0NloXDTI0MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQzk5NDUxMTAvBgNVBAUTKDg2OEVDQjY0MjVEQTgzMzI4ODkyRTU3
QkIwREY2NDRFMUFFQjczQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC2A1C2HzpzJakfaWEyCLU0LoufMMfwY7YgdimmrGlZnLdjpTglB3UMz3Fh29vg
A/R2QL7qQ89uGW/bNVnjNf660JU1pmq9DgaV5WiPcz0AQmDDQz/7MSxvX/hUH84F
M4PfBLpnrs0q00XLIaaj5Pbgxnx0NP4oOrHbTpahBKrmkPxN8uKdv4sp4rgzniO6
atHsXrDfvz+qkoryj07qRx5yexeznnrRccsbpCbV09BoNTndnssNGXjtu6TolzyD
p5UYuYj9ac6U/z8dxNwTGA9u2AuBdctLpa0z+DHHJSWUFn7vkV/ikRXsRZPNtpZn
vjenqpr3f/Lt5Kr7B45+AKl/AgMBAAGjggMkMIIDIDAdBgNVHQ4EFgQUho7LZCXa
gzKIkuV7sN9kThrrc7MwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUM5OTQ1L0JDMDBDOEYyRjA5RTExRUNBRUU3M0UxOUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDOTk0NS9CQzAwQzhGMkYwOUUxMUVDQUVFNzNFMTlDNEY5QUUwMi9obzdMWkNY
YWd6S0lrdVY3c045a1RocnJjN00ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhDqMDQGCCsGAQUFBwEHAQH/BCUwIzASBAIAATAMAwQCLfg0AwQCZ9jE
MA0EAgACMAcDBQAkBPmAMA0GCSqGSIb3DQEBCwUAA4IBAQCScJYV19QSqaju+N2B
lReFo/H5nMKPIPkvEjlKwu+sHE/AffnrUs+eHAIShG14KH48YOKO6k+GcKpLjkid
AcAh6AUv9ysZOO0okcg7ga7lPRIBKoSUUKO0BY3OlF07YJB+eEPBREM3I+1Ed/7D
rbacp0raFqw0VsQRkYYizbO/hD2nAbgGwirobfeJ5b5hmzYUAKZLAwidpmXL05sF
mzbtvPAW8VQq4dD5oioxDpZau/Tgc+EK09uXmyD/IOi+HgrXjigWPj2eIYubXbHZ
h9f2Z9gJPbuhjlvSBIpySa1kEASQCeo4D9FMQIKYEppZNKB7j4ARRFfQuf884LQz
mAuy
-----END CERTIFICATE-----
Generated at Thu Apr 18 03:36:22 2024 by rpki-client on console-ams.rpki-client.org