Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer
File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer (raw, json)
Hash identifier: hVZTBUVcv1DpvdMcaorPjw4l2UKz0FS/LJq6VZ2bO10=
Subject key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021D17
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Nov 2024 15:56:47 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 133738
IP: 103.103.100.0/22
IP: 2401:f140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138519 (0x21d17)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 22 15:56:47 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A916E64F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:80:1c:3f:4c:ca:27:c3:a7:77:df:1e:e2:fe:
fc:8c:f8:8f:56:31:13:fe:14:60:e1:e5:f7:82:cf:
75:f3:cd:8f:fb:a5:74:cb:b2:87:d2:ac:b7:d6:aa:
7d:74:c4:f8:4c:80:d9:82:aa:d7:b8:17:b8:62:35:
5c:95:61:5e:19:8f:19:60:71:f1:be:66:88:cb:a5:
e2:1c:7c:a4:7b:e5:f1:8e:38:87:a0:21:a8:53:12:
7e:3c:59:7a:2b:fb:0d:b3:b2:4f:de:cc:43:7d:92:
18:7e:ac:15:2a:11:46:6f:67:5c:dc:c1:16:0e:f7:
1f:63:de:98:72:e6:87:dd:ac:a0:61:9b:e9:bb:aa:
3b:66:9c:5f:d7:46:8d:25:4e:68:55:77:b2:26:3b:
ea:8f:0b:84:f5:fc:04:bc:05:ff:d2:2c:43:42:e6:
33:d1:20:cf:9b:cc:7b:7d:ed:a1:9d:be:77:9e:c3:
92:86:66:cc:3d:2f:9f:f4:e8:7d:ef:56:cb:8f:2a:
e7:31:13:22:1b:25:45:5f:a8:d0:9e:3d:d6:94:96:
a4:97:26:84:01:20:3b:c7:f9:84:0c:79:05:23:75:
04:5e:af:2a:58:50:55:b9:ae:ff:cb:44:d0:46:3c:
52:6e:a2:76:d5:77:97:4a:98:07:67:d1:6f:56:9e:
03:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133738
sbgp-ipAddrBlock: critical
IPv4:
103.103.100.0/22
IPv6:
2401:f140::/32
Signature Algorithm: sha256WithRSAEncryption
65:82:b3:f5:8c:1c:70:43:d0:95:8c:48:92:be:10:f8:5e:2d:
65:8c:ba:ee:0b:76:05:eb:10:00:70:72:cd:12:66:d6:4a:31:
03:0c:fc:bc:cc:50:8a:03:88:fc:46:62:ca:63:bc:8e:06:da:
0c:d5:0a:8f:e8:9d:1f:36:f6:39:16:03:54:f0:45:0b:69:10:
67:65:7c:e1:48:92:74:3e:46:cc:9e:50:13:b1:b0:ec:56:cf:
3c:31:07:db:8d:8e:94:b0:2d:f4:be:85:6e:71:f7:1a:d8:95:
20:f5:0a:dd:70:bd:bf:af:7c:d8:53:5e:9e:0e:e6:46:90:f2:
78:b5:22:1d:0c:b4:b9:d6:5c:28:4c:62:1a:2c:70:6c:68:46:
3d:cf:3c:dd:4b:a7:a3:33:f4:23:d5:02:8a:fb:1a:44:94:7f:
ab:a0:37:2f:cf:5c:86:b7:24:d0:20:ce:af:e7:1f:08:eb:89:
93:e8:af:38:dc:66:77:35:e9:cf:23:d4:9d:27:15:e1:50:d5:
d8:35:6f:c3:74:37:1b:aa:98:c2:18:94:e6:e4:f8:2d:e7:c0:
d5:95:76:5e:e1:06:06:bd:c3:05:e2:27:d3:3e:03:ac:87:1f:
74:97:26:6a:88:c5:c9:4b:2e:48:5b:b1:8d:c8:9b:28:c5:13:
63:a3:43:34
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAh0XMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTEyMjE1NTY0N1oXDTI1MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAy
RjZEMTQ5RTY3ODY5MjUzQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDkgBw/TMonw6d33x7i/vyM+I9WMRP+FGDh5feCz3XzzY/7pXTLsofSrLfWqn10
xPhMgNmCqte4F7hiNVyVYV4ZjxlgcfG+ZojLpeIcfKR75fGOOIegIahTEn48WXor
+w2zsk/ezEN9khh+rBUqEUZvZ1zcwRYO9x9j3phy5ofdrKBhm+m7qjtmnF/XRo0l
TmhVd7ImO+qPC4T1/AS8Bf/SLENC5jPRIM+bzHt97aGdvneew5KGZsw9L5/06H3v
VsuPKucxEyIbJUVfqNCePdaUlqSXJoQBIDvH+YQMeQUjdQRerypYUFW5rv/LRNBG
PFJuonbVd5dKmAdn0W9WngPZAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUho/IsYe9
/TCnC1AvbRSeZ4aSU7kwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTZFNjRGL0RENUMxNTgyRTg3QTExRTc4RjUxNzA4M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1ll
OV9UQ25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgpqMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ2dkMA0EAgAC
MAcDBQAkAfFAMA0GCSqGSIb3DQEBCwUAA4IBAQBlgrP1jBxwQ9CVjEiSvhD4Xi1l
jLruC3YF6xAAcHLNEmbWSjEDDPy8zFCKA4j8RmLKY7yOBtoM1QqP6J0fNvY5FgNU
8EULaRBnZXzhSJJ0PkbMnlATsbDsVs88MQfbjY6UsC30voVucfca2JUg9QrdcL2/
r3zYU16eDuZGkPJ4tSIdDLS51lwoTGIaLHBsaEY9zzzdS6ejM/Qj1QKK+xpElH+r
oDcvz1yGtyTQIM6v5x8I64mT6K843GZ3NenPI9SdJxXhUNXYNW/DdDcbqpjCGJTm
5Pgt58DVlXZe4QYGvcMF4ifTPgOshx90lyZqiMXJSy5IW7GNyJsoxRNjo0M0
-----END CERTIFICATE-----
Generated at Mon Feb 17 08:13:26 2025 by rpki-client