Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RZ0rg0o7oIwKpnxuV4FGqLH-LC8.cer
File: RZ0rg0o7oIwKpnxuV4FGqLH-LC8.cer (raw, json)
Hash identifier: HN+1vEO2Ic8IbHu5ot55OU+5lcgQU+DjeM2+g94CToU=
Subject key identifier: 45:9D:2B:83:4A:3B:A0:8C:0A:A6:7C:6E:57:81:46:A8:B1:FE:2C:2F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EA82
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F.mft
caRepository: rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/
Notify URL: https://rrdp.rpki.tianhai.link/rrdp/notification.xml
Certificate not before: Mon 08 Apr 2024 21:12:51 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 4842
AS: 24239
AS: 135671
AS: 151464
IP: 103.150.172.0/23
IP: 2401:20::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 06:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 125570 (0x1ea82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 8 21:12:51 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A91F56750000/serialNumber=459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:de:e4:5f:97:35:f8:52:b7:74:b4:a2:8e:89:8c:
8b:b1:4a:2c:c9:15:a4:ef:5b:d4:07:fc:fe:45:32:
32:8b:80:8c:41:8f:67:86:5f:1d:b7:a0:11:33:fc:
d8:5e:f4:4d:6b:a4:6d:96:4c:8c:e6:71:90:56:97:
51:c7:6a:bb:64:f8:6c:74:06:4e:b1:d5:d8:98:28:
5b:97:d9:8e:50:44:e4:39:63:78:e0:79:91:d8:f9:
62:ac:2b:18:cb:a8:73:58:54:d7:ea:88:11:d3:21:
29:4a:a8:55:bb:a9:01:36:39:29:49:b1:ad:c6:f0:
fb:7c:78:ab:04:27:4c:61:75:76:4b:e1:e7:be:dc:
08:27:25:3a:d6:51:ae:43:87:75:f4:77:21:e9:de:
16:6b:55:b3:0a:bf:7c:25:c8:5e:5c:43:c4:d0:a4:
41:40:7b:eb:db:92:32:78:73:a0:37:56:21:31:63:
9d:b3:5c:20:23:b1:aa:81:5f:67:0a:52:34:dc:ea:
6d:47:9d:17:ea:91:de:73:e9:39:f4:55:a7:f1:a0:
5d:8b:01:2b:e5:94:d9:2e:78:56:a7:b4:66:c2:2a:
24:fa:8b:12:5b:02:a2:a8:ce:08:62:6f:03:78:ca:
bf:c1:f9:55:bf:c3:10:dc:99:1f:a6:36:28:54:a7:
0f:01
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:9D:2B:83:4A:3B:A0:8C:0A:A6:7C:6E:57:81:46:A8:B1:FE:2C:2F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/
RPKI Manifest - URI:rsync://rsync.rpki.tianhai.link/repo/TianhaiRpki/3/459D2B834A3BA08C0AA67C6E578146A8B1FE2C2F.mft
RPKI Notify - URI:https://rrdp.rpki.tianhai.link/rrdp/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
4842
24239
135671
151464
sbgp-ipAddrBlock: critical
IPv4:
103.150.172.0/23
IPv6:
2401:20::/32
Signature Algorithm: sha256WithRSAEncryption
86:21:30:ac:0a:c1:03:7d:83:9d:5d:8d:d3:aa:ba:8c:c0:a6:
87:d9:65:08:74:5b:f0:e9:3f:f2:03:85:ac:c9:81:96:25:6b:
44:34:0c:0f:52:d7:25:cd:98:64:2d:18:f9:ce:21:85:5c:01:
af:24:e6:ee:f1:74:3b:be:29:bb:41:97:85:d6:cf:c8:50:ac:
c3:91:ed:8c:24:f7:91:e4:e8:44:52:f1:54:0b:45:94:a3:a9:
7e:80:ab:1a:d0:77:8b:b0:58:ba:1b:dd:85:7d:af:19:01:20:
57:c6:74:4a:0a:37:f5:c0:96:23:cd:09:61:09:59:c7:23:a9:
d5:8a:a0:12:4d:f4:01:82:76:e4:ef:e6:2c:8f:e2:fd:56:fa:
09:6a:38:69:9d:3e:a6:6f:11:94:46:2f:ec:5d:ee:83:f2:68:
89:5f:98:cd:00:c9:92:25:e3:4b:a5:d2:b7:d4:98:c0:8b:ff:
13:79:0f:94:4e:1b:44:88:f9:47:bb:d7:e9:15:16:fe:61:62:
a5:86:fa:5e:9e:29:07:a5:51:eb:35:d3:d7:36:5a:3e:c8:53:
5e:dd:3b:75:f3:99:3c:d1:43:09:53:3d:8e:c6:63:f9:5a:0e:
a3:14:3a:82:6c:40:e5:02:56:d9:14:77:de:98:2c:2b:94:9d:
67:47:55:da
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 08:03:33 2024 by rpki-client on console-ams.rpki-client.org