Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TKJ3Inthxc3fC1v_yTB2DQYmQ_w.cer
File: TKJ3Inthxc3fC1v_yTB2DQYmQ_w.cer (raw, json)
Hash identifier: PK6GyYqW1R5EL4HM95EIFpbjVx4JZm40YJrfYqsSgI0=
Subject key identifier: 4C:A2:77:22:7B:61:C5:CD:DF:0B:5B:FF:C9:30:76:0D:06:26:43:FC
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A79C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CE813/15018DA6310C11EAB8C8FE28C4F9AE02/TKJ3Inthxc3fC1v_yTB2DQYmQ_w.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CE813/15018DA6310C11EAB8C8FE28C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Jun 2023 04:13:15 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 139206
IP: 103.139.206.0/24
IP: 2001:df0:9180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 108444 (0x1a79c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 2 04:13:15 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91CE813/serialNumber=4CA277227B61C5CDDF0B5BFFC930760D062643FC
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b0:ca:01:78:fe:e9:ca:db:dc:4e:df:ab:58:2e:
f3:99:62:90:36:1e:46:44:cc:2f:fe:28:10:ad:cd:
28:1f:b5:2f:56:f6:96:61:19:c3:5d:dc:a2:7b:62:
8e:d9:c9:56:64:c1:6c:50:48:04:fd:01:e9:6c:38:
62:e6:93:10:f8:63:f7:97:63:70:e3:50:e0:71:f4:
41:c8:76:c3:0a:9a:61:a9:ba:cb:96:50:2e:c8:00:
61:47:19:9b:c2:b8:5c:51:7b:49:1c:c7:dd:ef:19:
5d:53:34:2a:60:ce:ce:e8:ea:69:39:4d:24:9e:6a:
ed:be:a4:c2:4f:b9:72:e7:8e:7b:00:28:11:59:63:
36:54:a3:bf:3d:33:43:f7:b9:1e:19:15:fe:c6:f8:
69:5f:d0:3d:98:27:c5:b5:55:56:b4:d1:ea:96:0f:
e3:72:f6:39:db:e5:29:7b:af:50:4f:9d:07:4b:31:
4a:0f:c0:f6:05:95:f3:89:fb:97:e8:cb:fb:52:e8:
74:ab:72:11:71:f8:56:42:76:2e:6e:6b:72:9a:35:
c9:9c:6e:a4:e4:e4:85:2f:78:6a:ba:7e:58:7f:f1:
7a:48:68:46:fa:a6:a3:aa:70:40:e7:92:de:d2:ed:
9e:f2:4d:e6:d1:bc:f0:21:c1:f5:ac:35:a6:c4:7a:
c1:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:A2:77:22:7B:61:C5:CD:DF:0B:5B:FF:C9:30:76:0D:06:26:43:FC
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CE813/15018DA6310C11EAB8C8FE28C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CE813/15018DA6310C11EAB8C8FE28C4F9AE02/TKJ3Inthxc3fC1v_yTB2DQYmQ_w.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139206
sbgp-ipAddrBlock: critical
IPv4:
103.139.206.0/24
IPv6:
2001:df0:9180::/48
Signature Algorithm: sha256WithRSAEncryption
c5:13:09:cb:c5:60:be:1d:88:4f:e3:8f:87:a6:94:2b:b8:7f:
7a:d0:28:07:80:6a:37:ba:0f:3f:55:97:ea:49:38:3e:7f:39:
7e:39:d1:37:7c:68:79:67:98:76:05:b3:c3:c5:49:f5:b1:0b:
70:de:37:7f:7a:fa:ff:99:47:21:9f:be:0d:18:00:ae:49:e5:
bf:ac:2c:91:f8:ea:66:f2:74:5a:07:a4:90:c4:c5:7a:2c:d6:
3d:7b:77:5b:6a:7c:eb:3d:29:6c:de:f8:bc:50:a3:dd:97:c3:
ef:a4:b6:c7:78:69:74:21:14:06:84:fd:67:b7:e7:09:68:30:
4a:99:2a:cd:04:11:0c:fc:32:88:80:15:4b:f0:ad:5d:4a:21:
25:18:be:8a:f3:0e:c2:40:47:3e:50:2b:48:8e:28:12:a1:4f:
f9:ff:b7:50:65:fb:18:ef:cb:58:81:eb:e6:d3:23:1f:06:24:
72:7e:be:8c:d5:e3:d6:45:c3:52:84:d1:61:af:fa:3e:1d:f6:
fb:5b:4f:21:1f:d1:f5:14:13:31:97:7e:09:4b:42:10:c1:c2:
21:4f:c1:78:8c:72:8b:32:92:fa:e6:64:ce:0c:9b:7c:43:94:
36:4a:bd:fb:b6:4a:74:73:d3:72:bd:bd:89:1d:1d:59:63:9d:
53:f8:c0:11
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu May 9 10:10:43 2024 by rpki-client on console-ams.rpki-client.org