Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer
File: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer (raw, json)
Hash identifier: PL7sKbG4oRKiz4SGyVZXatgwq6a+7WmKll3GjWRglA8=
Subject key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02251E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 27 Dec 2024 16:21:15 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 136004
IP: 103.79.117.0/24
IP: 103.99.176.0/23
IP: 103.120.110.0/24
IP: 2403:46c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 05 Apr 2025 05:08:51 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140574 (0x2251e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 27 16:21:15 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A9173C8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2b:90:5f:a4:41:1d:34:b4:63:ef:ba:78:43:
e2:a7:31:34:03:83:ec:70:fb:52:e5:90:36:13:b3:
fa:e5:7f:c2:b7:0d:59:04:cb:99:d7:45:2c:6a:5a:
d0:ae:14:8c:b5:fa:4e:77:2f:1d:b6:69:a5:1f:5a:
ae:46:74:da:60:51:51:e7:0d:27:57:f5:9a:c4:07:
ee:d9:0f:6d:8d:c5:01:0f:62:62:06:e1:97:e9:d2:
2a:57:c0:bb:5b:4f:6f:03:a9:03:7c:d7:25:13:0d:
a6:91:6c:65:d9:78:25:25:4d:93:da:f6:22:59:f9:
c1:3d:07:cf:d2:6f:cc:2d:34:e2:8c:41:d4:ef:96:
c5:32:69:31:e4:d0:51:c6:1a:c0:e9:74:24:22:82:
ae:1d:a9:d6:e0:20:7b:04:f7:88:3f:17:7b:aa:3b:
63:ea:fa:df:5b:dc:b1:25:fa:08:0b:28:c1:c4:9f:
39:a4:07:70:34:fb:e7:64:73:de:74:aa:4e:f3:9c:
14:4f:46:f6:57:66:b4:5d:9b:de:4e:d5:bd:3f:d4:
d8:32:14:91:5d:ac:fc:bb:36:bf:68:88:e9:5b:ac:
53:b8:c5:a1:73:d1:64:4e:3d:78:78:41:8f:3d:52:
ee:ec:42:1d:0b:a9:c2:ab:12:9d:bf:f8:d2:77:cc:
16:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136004
sbgp-ipAddrBlock: critical
IPv4:
103.79.117.0/24
103.99.176.0/23
103.120.110.0/24
IPv6:
2403:46c0::/32
Signature Algorithm: sha256WithRSAEncryption
5a:18:4a:11:b4:e1:f3:c6:5e:71:33:5e:88:be:7d:19:28:7c:
cf:5a:8d:62:01:76:81:29:82:90:90:17:86:ca:14:e0:f4:03:
6a:c8:ca:04:6e:cb:4a:eb:c4:d2:ce:13:1b:5c:15:58:39:a3:
f0:b1:51:8a:3a:f9:ab:e5:15:23:48:68:b0:df:29:62:49:8f:
a9:e4:2f:4b:46:b9:66:9b:cf:50:48:a4:eb:f7:e8:b9:30:ab:
a3:b8:75:b8:13:57:ea:e9:ba:b9:b0:fa:f2:64:8b:ad:5f:67:
06:38:cb:4f:48:24:c8:63:0b:ff:94:96:66:3c:cd:e6:84:d0:
16:2a:74:c7:cb:8a:72:fd:58:5b:6a:cf:2e:c4:ab:b5:58:06:
b9:ba:54:77:1c:c6:15:5d:e3:d9:74:a2:4e:1d:ad:5f:d7:8b:
c5:94:68:e8:28:a6:98:86:b1:2c:e3:a2:72:8e:6f:ac:52:97:
8e:f4:b2:8f:50:27:e9:e8:62:76:21:3e:58:6a:e6:33:29:1a:
78:9f:4a:b3:12:76:5a:17:f5:1a:ef:ea:d9:14:cb:8e:3a:32:
0d:4e:88:04:db:fa:79:e0:46:e1:58:c9:b1:ea:16:03:d0:61:
a5:1c:9b:fb:94:b3:4e:08:84:bc:7f:ed:d6:56:a8:f3:b7:b7:
94:7d:b8:a9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 4 02:16:46 2025 by rpki-client