Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/SrcHmpaZ0qudaN5K5DJ8QLssUNs.cer
File: SrcHmpaZ0qudaN5K5DJ8QLssUNs.cer (raw, json)
Hash identifier: f4QATekAZBxjsj2D8e9kO+6W5P0JoZcsLxVSNYswt1k=
Subject key identifier: 4A:B7:07:9A:96:99:D2:AB:9D:68:DE:4A:E4:32:7C:40:BB:2C:50:DB
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02086C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/SrcHmpaZ0qudaN5K5DJ8QLssUNs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Aug 2024 17:03:33 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 142301
IP: 103.167.208.0/23
IP: 2407:71c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133228 (0x2086c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 22 17:03:33 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91896D4/serialNumber=4AB7079A9699D2AB9D68DE4AE4327C40BB2C50DB
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:61:6b:be:e2:7d:18:ee:f7:c1:a5:09:96:4d:
22:fa:55:75:a7:e2:60:00:84:b1:91:a1:f6:0c:47:
0a:5d:0a:cb:8f:49:81:12:f6:3b:1b:a9:be:38:91:
ec:f5:cd:72:d6:e5:d3:a7:ce:2f:c8:22:20:58:9c:
e6:62:7c:50:35:c4:86:31:4d:a3:7c:a8:cd:f2:34:
f2:63:88:13:ee:78:a2:8b:b1:5d:1a:2b:19:5e:8e:
f2:c1:17:ef:80:c2:bc:05:f9:45:6a:2a:00:27:3a:
53:d4:81:60:52:0f:6c:e2:d8:99:48:37:8c:eb:3c:
52:48:ee:43:7c:f7:07:38:0a:05:24:f8:44:7f:e6:
eb:04:ca:f2:d2:66:ca:6b:48:27:a2:ca:92:88:eb:
d1:82:81:b5:b5:a8:75:7e:e7:f6:ff:c3:8e:53:f5:
dd:78:1d:aa:05:85:7e:34:7c:56:5a:72:42:46:f5:
12:ab:27:f4:e7:39:34:5d:09:42:79:b6:14:d6:4d:
5a:ba:52:0d:b1:16:60:6a:da:f2:6f:90:9a:13:bc:
b3:37:a7:0c:e8:77:60:0d:58:a7:8a:8f:38:65:ed:
90:de:e1:ea:ec:57:f1:38:f1:99:10:01:3f:df:d5:
a0:74:aa:d6:be:89:a8:fa:2a:0e:b1:43:8e:5e:81:
63:03
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4A:B7:07:9A:96:99:D2:AB:9D:68:DE:4A:E4:32:7C:40:BB:2C:50:DB
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91896D4/5E9E64347B9611ED8BDFE311C4F9AE02/SrcHmpaZ0qudaN5K5DJ8QLssUNs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142301
sbgp-ipAddrBlock: critical
IPv4:
103.167.208.0/23
IPv6:
2407:71c0::/32
Signature Algorithm: sha256WithRSAEncryption
d1:53:62:c2:e4:b9:f6:ae:13:ff:7f:5a:94:19:3b:8f:c4:f0:
04:0a:b4:28:7c:d6:ec:f4:5e:7a:f1:d2:b5:3d:26:6b:01:ce:
ec:f2:55:c6:3e:ab:25:97:43:84:49:f2:c9:63:be:56:b0:ff:
f0:32:a4:52:f7:3d:f0:f3:fd:31:c0:08:a2:75:44:2b:92:78:
a9:27:4a:8a:d0:15:5f:89:b0:1c:93:b7:90:25:1e:32:1a:f0:
98:c1:af:0e:99:da:14:14:e4:89:72:7d:7d:00:d4:b5:63:de:
f5:43:53:1a:08:24:1f:ab:e5:75:a3:56:f5:51:7a:34:11:f7:
47:53:15:07:20:52:a7:ab:04:fd:f5:54:10:c2:4d:17:92:78:
34:8a:8f:92:12:d1:90:75:60:ec:7e:c3:71:5d:57:b2:a3:23:
f6:12:33:96:e9:0f:72:68:fc:14:33:ba:fb:8c:d9:34:ce:e9:
ce:eb:61:04:83:a5:55:c5:97:4d:5e:33:e0:0d:3e:e1:46:d2:
a7:20:14:c1:41:06:29:2c:3f:f9:e4:fc:00:9c:d5:3d:89:20:
ac:8b:64:99:fa:cc:2f:44:08:87:c4:f3:88:c4:1b:89:bc:b8:
b3:71:8e:ac:ec:8c:a9:ec:bd:ad:a0:c5:aa:86:7d:e5:d9:19:
00:4a:67:a6
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAghsMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgyMjE3MDMzM1oXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxODk2RDQxMTAvBgNVBAUTKDRBQjcwNzlBOTY5OUQyQUI5RDY4REU0
QUU0MzI3QzQwQkIyQzUwREIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDkYWu+4n0Y7vfBpQmWTSL6VXWn4mAAhLGRofYMRwpdCsuPSYES9jsbqb44kez1
zXLW5dOnzi/IIiBYnOZifFA1xIYxTaN8qM3yNPJjiBPueKKLsV0aKxlejvLBF++A
wrwF+UVqKgAnOlPUgWBSD2zi2JlIN4zrPFJI7kN89wc4CgUk+ER/5usEyvLSZspr
SCeiypKI69GCgbW1qHV+5/b/w45T9d14HaoFhX40fFZackJG9RKrJ/TnOTRdCUJ5
thTWTVq6Ug2xFmBq2vJvkJoTvLM3pwzod2ANWKeKjzhl7ZDe4ersV/E48ZkQAT/f
1aB0qta+iaj6Kg6xQ45egWMDAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUSrcHmpaZ
0qudaN5K5DJ8QLssUNswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTg5NkQ0LzVFOUU2NDM0N0I5NjExRUQ4QkRGRTMxMUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE4OTZENC81RTlFNjQzNDdCOTYxMUVEOEJERkUzMTFDNEY5QUUwMi9TcmNIbXBh
WjBxdWRhTjVLNURKOFFMc3NVTnMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAivdMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZ6fQMA0EAgAC
MAcDBQAkB3HAMA0GCSqGSIb3DQEBCwUAA4IBAQDRU2LC5Ln2rhP/f1qUGTuPxPAE
CrQofNbs9F568dK1PSZrAc7s8lXGPqsll0OESfLJY75WsP/wMqRS9z3w8/0xwAii
dUQrknipJ0qK0BVfibAck7eQJR4yGvCYwa8OmdoUFOSJcn19ANS1Y971Q1MaCCQf
q+V1o1b1UXo0EfdHUxUHIFKnqwT99VQQwk0Xkng0io+SEtGQdWDsfsNxXVeyoyP2
EjOW6Q9yaPwUM7r7jNk0zunO62EEg6VVxZdNXjPgDT7hRtKnIBTBQQYpLD/55PwA
nNU9iSCsi2SZ+swvRAiHxPOIxBuJvLizcY6s7Iyp7L2toMWqhn3l2RkASmem
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:51 2024 by rpki-client on console.sobornost.net