Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tkKboemiWuSuEg8IEuf8LjYjLS8.cer
File: tkKboemiWuSuEg8IEuf8LjYjLS8.cer (raw, json)
Hash identifier: 0K3WH+3tA7hO1axr4TVmt7iWjDmrq3KXYbm6uxL/RcA=
Subject key identifier: B6:42:9B:A1:E9:A2:5A:E4:AE:12:0F:08:12:E7:FC:2E:36:23:2D:2F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C4D9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9194156/36479384736011EAB6349544C4F9AE02/tkKboemiWuSuEg8IEuf8LjYjLS8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9194156/36479384736011EAB6349544C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 18 Oct 2023 16:11:02 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 138149
IP: 103.121.76.0/22
IP: 2403:6ac0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115929 (0x1c4d9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 18 16:11:02 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A9194156/serialNumber=B6429BA1E9A25AE4AE120F0812E7FC2E36232D2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:1d:66:50:a0:a7:1e:fb:31:47:6c:ef:71:85:
83:f0:f3:43:42:ee:6f:89:c6:ae:fe:f0:55:89:63:
19:fd:8f:39:65:78:87:40:50:e2:20:8e:3f:59:3a:
59:a2:df:e8:60:a9:27:68:04:26:12:27:38:c5:9b:
30:e3:de:5a:5c:dc:d4:40:21:7f:93:ca:da:8b:97:
25:7f:ee:ce:d6:24:d8:8e:da:34:01:07:b1:ee:0f:
8c:7a:b7:a5:e9:07:6f:fd:d8:80:39:b2:66:7e:4c:
20:74:a6:cf:ab:6b:2a:19:ed:ff:fa:be:a6:02:f7:
c4:a5:88:23:b3:17:a9:13:f2:91:51:e0:a2:ff:0f:
a0:8b:f5:01:a9:ef:7a:5b:db:91:51:80:cd:36:e9:
f7:14:36:f9:f3:70:e2:f7:16:0f:73:fc:e4:45:d7:
c1:b1:59:62:4d:5f:5b:f4:da:01:5c:aa:40:b2:59:
a8:12:76:f5:67:45:6c:68:19:4c:f6:83:1d:9e:1c:
10:f6:33:fd:91:f5:a8:94:2e:bc:31:39:71:63:c0:
95:51:fd:55:62:a6:74:ac:d4:7c:a6:7f:45:c2:98:
3b:f4:16:6b:5a:4f:8b:12:0f:58:9b:5c:fe:18:c9:
7a:2f:b2:d9:aa:74:15:c3:2b:08:40:6f:a8:0a:a7:
87:af
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:42:9B:A1:E9:A2:5A:E4:AE:12:0F:08:12:E7:FC:2E:36:23:2D:2F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9194156/36479384736011EAB6349544C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9194156/36479384736011EAB6349544C4F9AE02/tkKboemiWuSuEg8IEuf8LjYjLS8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138149
sbgp-ipAddrBlock: critical
IPv4:
103.121.76.0/22
IPv6:
2403:6ac0::/32
Signature Algorithm: sha256WithRSAEncryption
22:6a:fc:d6:bd:91:5b:45:d4:cb:b4:f7:3a:75:93:0e:b5:1c:
cf:65:ee:f1:6f:51:c9:91:63:95:11:36:dd:bd:7b:08:3d:17:
25:ea:df:3c:4e:9c:f4:0b:71:bb:b5:36:5d:14:94:da:03:06:
a8:59:57:c4:a3:19:e8:5e:f4:ad:15:48:f4:1c:dc:92:74:f7:
3c:b6:b7:8e:7d:86:cd:f9:c7:ed:5c:8d:ee:35:a3:80:f3:54:
a1:07:19:f9:a4:1c:f9:00:6b:e3:98:0c:00:c4:22:d1:30:a6:
8f:dc:d5:66:e5:b6:d5:fd:7a:60:ef:0f:19:9e:29:e4:a8:1e:
0f:af:74:eb:b5:08:80:47:d6:80:24:81:f5:62:da:de:ff:52:
10:d7:78:c3:cc:3d:5c:40:3b:72:5b:21:5e:4b:74:5d:4e:54:
8a:05:2a:82:1e:21:43:28:03:48:0c:46:b6:81:da:78:71:5b:
59:0b:66:68:bd:14:44:c6:cc:b0:07:d8:14:67:ee:af:1b:81:
bb:b3:de:d9:46:24:1c:5f:07:ce:0c:2c:47:45:d9:74:11:7f:
77:d1:5f:86:8a:82:f4:9e:64:80:f4:b3:34:67:80:c1:6f:0f:
02:71:7a:a2:90:46:37:31:c9:cf:ac:49:4c:1e:b2:76:cf:ea:
90:5d:9c:db
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 9 10:24:42 2024 by rpki-client on console-fra.rpki-client.org