Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mHTm1hpg2IRMMB2B8zd8vzTw2L8.cer
File: mHTm1hpg2IRMMB2B8zd8vzTw2L8.cer (raw, json)
Hash identifier: m8fu8dCWNaS2gUMFF0+yrh2f0wAQuJ3PZSgz9MlMBEk=
Subject key identifier: 98:74:E6:D6:1A:60:D8:84:4C:30:1D:81:F3:37:7C:BF:34:F0:D8:BF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A56A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 26 May 2023 18:50:30 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 134155
IP: 103.55.217.0/24
IP: 103.100.44.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 09:10:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 107882 (0x1a56a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 26 18:50:30 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9190B12/serialNumber=9874E6D61A60D8844C301D81F3377CBF34F0D8BF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:d8:ac:27:02:82:e4:0d:4f:45:0f:ce:a7:3f:
59:5f:56:6f:8b:d9:76:cc:04:27:df:0b:2b:23:a0:
e3:1f:f6:52:ab:77:69:d8:87:86:7d:d3:36:bf:b6:
c0:2f:b0:81:40:2d:b0:b9:f4:09:6d:b0:8e:e6:3e:
d8:1e:4c:7e:16:9d:85:d3:20:94:5e:3b:c8:9e:3b:
e3:c1:84:7c:44:77:ea:a9:04:06:e3:78:2c:69:18:
87:e7:b7:70:51:86:53:e7:28:3b:5e:a6:e1:d1:f3:
e4:60:f4:78:8a:a0:04:66:4d:c6:39:53:16:d8:62:
92:3c:27:84:28:42:0e:87:2e:10:18:cd:86:e4:cb:
82:78:7e:e4:a3:d4:ee:e7:86:cf:76:3e:e3:63:e5:
23:50:8d:a6:8b:58:1c:39:77:1e:a3:93:da:a4:11:
4c:a6:77:65:d1:de:e0:db:9a:d9:75:9b:0e:43:f0:
41:de:20:9f:d3:55:c8:22:88:3e:37:5a:07:af:28:
62:62:84:4e:b2:ff:5f:c1:4b:5d:bb:8f:30:b7:9b:
fc:9b:d8:eb:90:cf:18:e8:78:92:14:31:44:78:9e:
9c:98:99:4c:ce:e8:bf:9d:2b:01:9c:37:7b:89:1d:
2d:b9:35:93:45:af:37:9c:e5:ad:37:1d:a9:12:23:
5e:71
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
98:74:E6:D6:1A:60:D8:84:4C:30:1D:81:F3:37:7C:BF:34:F0:D8:BF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9190B12/26D36278171D11EB833F4D80C4F9AE02/mHTm1hpg2IRMMB2B8zd8vzTw2L8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134155
sbgp-ipAddrBlock: critical
IPv4:
103.55.217.0/24
103.100.44.0/23
Signature Algorithm: sha256WithRSAEncryption
bd:92:af:57:2e:2f:ca:59:30:6f:0c:35:bb:1d:4d:d6:0a:08:
42:d2:1f:5e:98:46:55:70:6f:8a:31:51:37:09:38:50:54:13:
53:74:35:f7:9c:aa:ff:00:44:52:a5:e9:82:86:88:a6:4f:71:
0a:e3:aa:1c:f4:2a:11:cd:85:af:d8:11:12:f7:a2:2e:a1:50:
0b:35:9b:e4:b5:2a:3c:0d:a2:1f:63:b2:70:fa:75:80:7d:3c:
fe:1b:31:9c:73:6e:87:75:35:9b:29:99:37:e9:5d:e4:34:07:
cc:86:33:73:75:06:f9:61:18:38:d2:b8:ef:99:63:a1:13:2d:
23:6c:81:1a:8a:3a:a2:46:d5:23:90:69:6b:34:98:bc:91:59:
67:46:40:6a:5d:ec:1e:9b:71:c7:86:b3:1c:40:b0:09:59:f1:
8d:9a:8f:6a:53:89:8f:5f:a5:dd:de:ad:4a:8b:46:64:0a:7b:
bf:05:5d:2a:f9:a3:8c:ce:3d:9d:01:60:44:07:ca:01:bb:51:
68:61:af:fa:c0:90:ca:bd:54:04:18:88:46:85:85:38:5d:2a:
6e:7f:78:3c:cd:65:9b:d4:3d:79:3c:49:7a:4d:43:af:4a:5b:
8b:b6:41:8e:0e:f5:f5:64:7c:56:c6:bb:f1:dd:56:20:2a:59:
f6:a6:50:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 10:31:59 2024 by rpki-client on console-fra.rpki-client.org