Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTGic8LE6mi2e5it5VtGI--TdaQ.cer
File: RTGic8LE6mi2e5it5VtGI--TdaQ.cer (raw, json)
Hash identifier: PgZynjqI5GGkOz/i+1BsIWTcAjIyuC8dRvDwUcRf628=
Subject key identifier: 45:31:A2:73:C2:C4:EA:68:B6:7B:98:AD:E5:5B:46:23:EF:93:75:A4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D750
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91954C1/50C6E732E84011EA8A6B9980C4F9AE02/RTGic8LE6mi2e5it5VtGI--TdaQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91954C1/50C6E732E84011EA8A6B9980C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 08 Jan 2024 18:10:57 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 131314
IP: 103.28.144.0/22
IP: 2403:cc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 120656 (0x1d750)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 8 18:10:57 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91954C1/serialNumber=4531A273C2C4EA68B67B98ADE55B4623EF9375A4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a9:3e:5f:8c:b8:84:24:ea:a2:94:f7:93:1d:
6f:e0:32:12:d5:ed:95:30:57:24:be:a8:a2:c5:d8:
23:ce:be:74:41:a9:b6:30:63:c5:97:63:14:8c:b2:
1f:aa:60:c4:23:99:45:01:c3:d3:38:8c:be:49:67:
d5:b8:e8:8a:50:20:d1:9b:db:99:79:13:ce:7e:06:
2d:6b:60:cd:40:e7:08:81:a7:2c:9f:96:14:a5:3b:
07:a2:71:c9:2f:e7:7c:f5:8e:32:b4:21:db:2b:62:
0c:0a:33:55:6b:8d:64:e3:43:86:1a:b9:fe:84:a0:
e7:28:05:da:62:27:98:43:8c:2d:75:20:cf:24:e7:
48:a9:cc:84:aa:05:8e:98:77:1f:5e:11:75:a7:6a:
3d:94:28:f0:78:6f:3d:6d:19:39:59:9d:55:01:c6:
74:af:9b:0f:73:e2:93:c0:f7:bb:cc:df:bd:e7:b0:
c7:89:0b:c4:6a:9b:bd:c0:a0:e5:cb:6b:f7:72:74:
1c:bb:15:49:bf:44:d1:b7:c4:1c:73:60:88:35:66:
e5:9a:4c:5a:9f:b0:3e:36:f3:14:43:a0:17:28:a4:
cb:88:88:a6:d6:bb:47:61:40:0c:95:17:33:23:41:
dc:5b:2c:8f:45:1c:6a:0f:a2:46:5e:20:58:bf:4e:
af:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:31:A2:73:C2:C4:EA:68:B6:7B:98:AD:E5:5B:46:23:EF:93:75:A4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91954C1/50C6E732E84011EA8A6B9980C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91954C1/50C6E732E84011EA8A6B9980C4F9AE02/RTGic8LE6mi2e5it5VtGI--TdaQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
131314
sbgp-ipAddrBlock: critical
IPv4:
103.28.144.0/22
IPv6:
2403:cc0::/32
Signature Algorithm: sha256WithRSAEncryption
7a:09:78:67:ac:3a:f7:f7:bc:0a:54:8f:36:8b:cb:82:6e:81:
cc:39:07:58:da:5f:ad:14:47:df:5c:ee:68:12:74:77:44:2c:
5e:8e:49:80:7b:57:94:5c:b1:32:a3:ee:cf:b2:e6:6a:32:b2:
91:ce:46:36:ae:42:61:52:88:6c:a8:27:c6:19:3b:26:29:76:
bb:a1:a0:1b:68:ae:01:84:a2:e7:66:51:c4:f9:8b:c2:1c:9c:
e7:04:ba:57:d9:c3:8f:fa:a8:3e:ad:b2:22:71:c7:00:5b:57:
af:c6:f4:65:19:3a:89:b4:3c:62:39:b2:de:65:f3:c6:0f:6b:
60:38:ba:dc:b1:38:3c:d8:4a:40:0e:0c:19:e3:2f:10:9b:64:
5f:6f:c4:d0:94:cc:af:d8:8c:e0:f3:0c:f3:c9:1b:2f:dc:dc:
a8:c5:58:1d:57:7a:c1:24:c2:76:e3:71:2a:fb:0b:65:9a:41:
3c:7a:59:1d:2b:cd:08:3b:81:88:73:f3:42:8d:57:eb:94:83:
2a:42:83:d8:6f:54:44:9e:a7:d4:92:d9:a1:d5:9b:9f:00:27:
37:ab:8e:08:e5:c7:26:cd:f9:7e:52:ad:92:35:a4:07:5c:8f:
ce:46:2f:b7:10:61:26:1b:11:92:a0:f1:af:4b:56:f6:22:89:
a1:1c:80:79
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 03:30:00 2024 by rpki-client on console-fra.rpki-client.org