Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer
File: ho_IsYe9_TCnC1AvbRSeZ4aSU7k.cer (raw, json)
Hash identifier: V+0uRo9lU8yxWNcoaQcBJKaBTcXcP/xRrYfGGq2qdqM=
Subject key identifier: 86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CE2D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 30 Nov 2023 17:27:40 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 133738
IP: 103.103.100.0/22
IP: 2401:f140::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 25 Apr 2024 08:35:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118317 (0x1ce2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 30 17:27:40 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A916E64F/serialNumber=868FC8B187BDFD30A70B502F6D149E67869253B9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:80:1c:3f:4c:ca:27:c3:a7:77:df:1e:e2:fe:
fc:8c:f8:8f:56:31:13:fe:14:60:e1:e5:f7:82:cf:
75:f3:cd:8f:fb:a5:74:cb:b2:87:d2:ac:b7:d6:aa:
7d:74:c4:f8:4c:80:d9:82:aa:d7:b8:17:b8:62:35:
5c:95:61:5e:19:8f:19:60:71:f1:be:66:88:cb:a5:
e2:1c:7c:a4:7b:e5:f1:8e:38:87:a0:21:a8:53:12:
7e:3c:59:7a:2b:fb:0d:b3:b2:4f:de:cc:43:7d:92:
18:7e:ac:15:2a:11:46:6f:67:5c:dc:c1:16:0e:f7:
1f:63:de:98:72:e6:87:dd:ac:a0:61:9b:e9:bb:aa:
3b:66:9c:5f:d7:46:8d:25:4e:68:55:77:b2:26:3b:
ea:8f:0b:84:f5:fc:04:bc:05:ff:d2:2c:43:42:e6:
33:d1:20:cf:9b:cc:7b:7d:ed:a1:9d:be:77:9e:c3:
92:86:66:cc:3d:2f:9f:f4:e8:7d:ef:56:cb:8f:2a:
e7:31:13:22:1b:25:45:5f:a8:d0:9e:3d:d6:94:96:
a4:97:26:84:01:20:3b:c7:f9:84:0c:79:05:23:75:
04:5e:af:2a:58:50:55:b9:ae:ff:cb:44:d0:46:3c:
52:6e:a2:76:d5:77:97:4a:98:07:67:d1:6f:56:9e:
03:d9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:8F:C8:B1:87:BD:FD:30:A7:0B:50:2F:6D:14:9E:67:86:92:53:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916E64F/DD5C1582E87A11E78F517083C4F9AE02/ho_IsYe9_TCnC1AvbRSeZ4aSU7k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133738
sbgp-ipAddrBlock: critical
IPv4:
103.103.100.0/22
IPv6:
2401:f140::/32
Signature Algorithm: sha256WithRSAEncryption
43:a0:ec:53:51:7c:a5:b7:04:8a:ba:9b:80:52:1e:d1:04:54:
10:cb:23:f9:35:55:52:4c:13:d9:35:f7:5c:79:4a:9a:9c:e3:
d8:7a:c1:7d:bf:79:db:a5:00:29:72:0c:a1:bc:36:28:4e:2e:
77:1c:d9:46:bc:79:a0:5f:90:b8:fb:f8:8c:e7:c4:58:1c:97:
28:27:2b:0e:86:c5:22:33:77:f4:f1:51:15:22:0a:52:05:10:
68:bc:d8:6f:60:50:46:51:50:16:5b:95:0e:6b:77:be:51:13:
82:1a:bc:ba:46:40:62:f3:4b:9b:4e:cf:5c:7d:10:51:80:d5:
3b:0b:0e:f2:4d:f4:5f:ab:ea:98:85:ff:ab:c9:bc:f9:9f:ee:
02:23:bd:a3:1f:f0:57:7f:43:23:db:a4:f0:e2:3d:c8:4f:43:
e7:ec:b3:27:6c:7b:69:60:4c:06:cf:fe:a0:a3:33:be:03:2d:
90:6c:75:26:5d:75:87:e6:6b:47:b7:61:01:af:25:db:ee:df:
3a:8e:4d:31:4c:0a:e0:c1:cc:e3:f3:df:09:0d:53:45:eb:87:
34:ca:b2:90:f8:82:c7:22:c9:ed:a1:7b:14:4c:ab:21:3f:2c:
fa:a3:5d:06:f5:b5:21:8d:37:84:61:4c:8d:26:e0:5f:44:37:
9c:7b:55:c9
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAc4tMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTEzMDE3Mjc0MFoXDTI0MTIzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNkU2NEYxMTAvBgNVBAUTKDg2OEZDOEIxODdCREZEMzBBNzBCNTAy
RjZEMTQ5RTY3ODY5MjUzQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDkgBw/TMonw6d33x7i/vyM+I9WMRP+FGDh5feCz3XzzY/7pXTLsofSrLfWqn10
xPhMgNmCqte4F7hiNVyVYV4ZjxlgcfG+ZojLpeIcfKR75fGOOIegIahTEn48WXor
+w2zsk/ezEN9khh+rBUqEUZvZ1zcwRYO9x9j3phy5ofdrKBhm+m7qjtmnF/XRo0l
TmhVd7ImO+qPC4T1/AS8Bf/SLENC5jPRIM+bzHt97aGdvneew5KGZsw9L5/06H3v
VsuPKucxEyIbJUVfqNCePdaUlqSXJoQBIDvH+YQMeQUjdQRerypYUFW5rv/LRNBG
PFJuonbVd5dKmAdn0W9WngPZAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUho/IsYe9
/TCnC1AvbRSeZ4aSU7kwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTZFNjRGL0RENUMxNTgyRTg3QTExRTc4RjUxNzA4M0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2RTY0Ri9ERDVDMTU4MkU4N0ExMUU3OEY1MTcwODNDNEY5QUUwMi9ob19Jc1ll
OV9UQ25DMUF2YlJTZVo0YVNVN2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgpqMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ2dkMA0EAgAC
MAcDBQAkAfFAMA0GCSqGSIb3DQEBCwUAA4IBAQBDoOxTUXyltwSKupuAUh7RBFQQ
yyP5NVVSTBPZNfdceUqanOPYesF9v3nbpQApcgyhvDYoTi53HNlGvHmgX5C4+/iM
58RYHJcoJysOhsUiM3f08VEVIgpSBRBovNhvYFBGUVAWW5UOa3e+UROCGry6RkBi
80ubTs9cfRBRgNU7Cw7yTfRfq+qYhf+rybz5n+4CI72jH/BXf0Mj26Tw4j3IT0Pn
7LMnbHtpYEwGz/6gozO+Ay2QbHUmXXWH5mtHt2EBryXb7t86jk0xTArgwczj898J
DVNF64c0yrKQ+ILHIsntoXsUTKshPyz6o10G9bUhjTeEYUyNJuBfRDece1XJ
-----END CERTIFICATE-----
Generated at Thu Apr 18 11:22:25 2024 by rpki-client on console-ams.rpki-client.org