Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/hlMymlHbxnnxvxfXkdg-x2ib564.cer
File: hlMymlHbxnnxvxfXkdg-x2ib564.cer (raw, json)
Hash identifier: bJthj1h9xe7pkZ5uEdvDb5jyFU4llTBFpC02fV0fisM=
Subject key identifier: 86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02093E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 27 Aug 2024 12:33:03 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 140969
IP: 103.153.240.0/23
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133438 (0x2093e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 27 12:33:03 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A91177D4/serialNumber=8653329A51DBC679F1BF17D791D83EC7689BE7AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:41:3b:98:f8:b7:33:3f:db:7a:1b:ef:70:4e:
ad:f0:31:a1:73:ad:08:f8:16:1e:c6:a6:98:45:76:
04:7e:d4:57:e4:57:a3:fa:84:48:bc:74:7f:83:20:
b5:7f:0d:50:c5:66:4d:3a:02:ef:95:14:cc:04:83:
0d:91:9e:4f:2a:88:d0:2d:3b:80:24:aa:71:6a:8c:
d6:42:5b:db:ba:17:ea:98:43:97:c6:56:a6:50:d3:
a6:9c:14:6b:3e:82:bc:93:3f:a0:9c:16:40:98:13:
6b:f6:47:d6:9e:7f:d8:84:78:bc:54:2e:8c:1a:a1:
fd:94:a7:84:21:af:39:9f:61:92:d9:ea:e8:5f:d2:
98:44:94:cf:4e:3b:4f:e1:54:16:2e:5c:9a:c0:5a:
6f:55:b4:a0:23:ca:1d:b4:40:ab:b4:3b:30:43:ea:
79:f3:8e:72:f0:39:9d:64:e2:dc:44:ee:67:89:8b:
5f:03:31:4f:f7:c8:fc:42:0f:b6:85:95:2f:12:e4:
49:d0:78:bc:f0:7b:a9:30:ff:90:ad:14:bb:cc:21:
b7:d2:09:8e:73:0c:05:74:e4:55:f2:49:df:bc:d0:
ce:4a:1a:02:8f:87:c0:f7:84:7b:e1:72:b8:c8:fe:
8f:0e:fb:14:b7:91:2e:df:75:f5:7c:38:5d:5f:94:
85:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
86:53:32:9A:51:DB:C6:79:F1:BF:17:D7:91:D8:3E:C7:68:9B:E7:AE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91177D4/2CEEFE34D1A811EA8C58373BC4F9AE02/hlMymlHbxnnxvxfXkdg-x2ib564.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140969
sbgp-ipAddrBlock: critical
IPv4:
103.153.240.0/23
Signature Algorithm: sha256WithRSAEncryption
49:17:dc:a4:70:c3:24:ab:0d:9f:68:33:7b:34:f5:1c:e4:73:
ea:4f:44:97:b4:27:bb:0e:7f:a5:f3:d6:1c:88:c0:1c:42:cf:
19:e6:64:c8:a4:90:9e:7f:8e:6c:60:cf:e8:bf:5d:d8:59:18:
8c:60:a7:9d:f6:1e:38:f9:96:37:ed:d7:cf:b2:67:ab:97:9b:
91:f4:b0:dc:a4:e2:37:19:60:63:15:53:66:b3:6e:31:90:94:
e2:3b:98:20:e8:b5:1f:58:88:53:36:7a:c4:f9:ed:89:4d:ab:
2a:9d:69:9a:59:d7:ac:16:96:67:d3:f3:8d:a5:3f:c1:45:18:
fa:ef:e4:dd:37:53:c4:41:6d:dc:be:3b:72:b9:0f:77:ab:84:
9c:bc:bd:39:28:14:a7:fc:1e:67:37:e6:ed:d8:19:ea:b2:a3:
4f:bd:f7:26:6e:a4:9c:95:07:1b:cd:07:f8:fe:55:6c:c6:c3:
93:9f:25:08:bf:fd:80:78:b6:d1:3f:eb:2b:b5:91:b7:37:59:
f2:bc:90:82:9e:a1:df:88:0b:a7:76:9c:1f:34:d9:c9:77:25:
98:d5:fd:51:5f:c6:df:aa:95:4a:ed:19:93:ad:67:6c:8c:13:
e0:0f:2a:97:40:fe:32:c7:e4:18:46:9d:d3:80:d3:8a:77:57:
ef:14:89:2d
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAgk+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDgyNzEyMzMwM1oXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTc3RDQxMTAvBgNVBAUTKDg2NTMzMjlBNTFEQkM2NzlGMUJGMTdE
NzkxRDgzRUM3Njg5QkU3QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDNQTuY+LczP9t6G+9wTq3wMaFzrQj4Fh7GpphFdgR+1FfkV6P6hEi8dH+DILV/
DVDFZk06Au+VFMwEgw2Rnk8qiNAtO4AkqnFqjNZCW9u6F+qYQ5fGVqZQ06acFGs+
gryTP6CcFkCYE2v2R9aef9iEeLxULowaof2Up4QhrzmfYZLZ6uhf0phElM9OO0/h
VBYuXJrAWm9VtKAjyh20QKu0OzBD6nnzjnLwOZ1k4txE7meJi18DMU/3yPxCD7aF
lS8S5EnQeLzwe6kw/5CtFLvMIbfSCY5zDAV05FXySd+80M5KGgKPh8D3hHvhcrjI
/o8O+xS3kS7fdfV8OF1flIVlAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUhlMymlHb
xnnxvxfXkdg+x2ib564wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTE3N0Q0LzJDRUVGRTM0RDFBODExRUE4QzU4MzczQkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExNzdENC8yQ0VFRkUzNEQxQTgxMUVBOEM1ODM3M0JDNEY5QUUwMi9obE15bWxI
Ynhubnh2eGZYa2RnLXgyaWI1NjQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAiapMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBZ5nwMA0GCSqG
SIb3DQEBCwUAA4IBAQBJF9ykcMMkqw2faDN7NPUc5HPqT0SXtCe7Dn+l89YciMAc
Qs8Z5mTIpJCef45sYM/ov13YWRiMYKed9h44+ZY37dfPsmerl5uR9LDcpOI3GWBj
FVNms24xkJTiO5gg6LUfWIhTNnrE+e2JTasqnWmaWdesFpZn0/ONpT/BRRj67+Td
N1PEQW3cvjtyuQ93q4ScvL05KBSn/B5nN+bt2BnqsqNPvfcmbqSclQcbzQf4/lVs
xsOTnyUIv/2AeLbRP+srtZG3N1nyvJCCnqHfiAundpwfNNnJdyWY1f1RX8bfqpVK
7RmTrWdsjBPgDyqXQP4yx+QYRp3TgNOKd1fvFIkt
-----END CERTIFICATE-----
Generated at Mon Oct 21 04:29:03 2024 by rpki-client on console.sobornost.net