Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TC5icWMgr9SgFwBna-i_kmT0XkI.cer
File: TC5icWMgr9SgFwBna-i_kmT0XkI.cer (raw, json)
Hash identifier: W1lCH0kWlVPZiX8BYILS1SMO7L39Ue99x/gAASGdrGc=
Subject key identifier: 4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D187
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 12 Dec 2023 17:00:16 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 137042
IP: 103.102.222.0/23
IP: 2406:93c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119175 (0x1d187)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 12 17:00:16 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A91A10E4/serialNumber=4C2E62716320AFD4A01700676BE8BF9264F45E42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b6:37:d2:d3:02:3c:1c:e0:56:48:60:e7:54:97:
7e:08:ba:cc:c2:c3:30:f5:fe:bf:e9:8b:e3:a5:89:
19:fe:4a:f7:4a:cd:6a:58:0a:8d:0f:3b:b4:4f:f2:
b6:e8:7d:6d:22:29:d3:c3:af:a2:f4:0e:ec:c3:46:
b2:bc:58:97:44:aa:eb:36:d4:21:00:41:8d:01:63:
1a:d0:b8:3a:c3:37:e8:d0:b8:30:ba:21:ec:2d:29:
c5:93:b2:fb:b1:39:9e:ae:9d:dd:18:2f:a7:8d:38:
30:eb:3f:b0:79:6f:8b:93:78:19:fd:91:18:c8:bf:
61:64:0b:44:84:42:87:53:66:15:9e:ea:da:02:cf:
93:5f:82:9c:34:08:84:8c:c5:c7:a4:06:ec:c0:8b:
a4:73:80:37:3a:70:aa:9f:51:83:b3:5d:02:a6:51:
28:39:fe:35:3a:ce:6f:a4:91:08:28:76:20:44:aa:
94:23:b6:a8:74:19:26:55:b5:a0:60:fd:89:08:bb:
a0:53:bd:51:05:fa:01:fb:53:28:1b:f9:00:e0:21:
d3:e2:6b:37:5e:b8:0e:72:bb:ca:46:02:78:a9:9f:
b0:4b:87:96:c2:80:6f:43:a8:33:b6:cb:e9:e8:e0:
43:68:9e:e1:27:01:10:55:e6:f0:5b:ec:10:9e:1b:
a4:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:2E:62:71:63:20:AF:D4:A0:17:00:67:6B:E8:BF:92:64:F4:5E:42
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A10E4/449868FCB88511E7A482891AC4F9AE02/TC5icWMgr9SgFwBna-i_kmT0XkI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137042
sbgp-ipAddrBlock: critical
IPv4:
103.102.222.0/23
IPv6:
2406:93c0::/32
Signature Algorithm: sha256WithRSAEncryption
58:56:9c:95:72:80:08:86:c0:ee:1c:d1:f5:ba:9f:ea:93:52:
27:d0:d3:17:59:9d:02:04:e2:d7:c1:c2:84:07:2c:cc:86:57:
08:fc:85:c5:a4:ab:cd:74:e1:3f:22:58:fa:35:a1:71:dd:da:
ef:20:f9:cf:79:a8:5d:57:3f:ed:23:17:7d:e9:6c:86:a8:8a:
7f:36:9d:86:9c:ff:be:f0:13:c3:56:7d:6f:66:1d:5f:8c:63:
4e:90:4d:d0:a3:ab:6d:a0:e2:21:6b:6c:f6:54:55:9d:25:a3:
76:7c:e4:5f:94:27:50:26:2a:8d:f9:39:12:97:d5:91:86:11:
9f:8e:19:79:f0:c6:6b:d9:63:c6:11:43:1f:0e:9c:2f:ae:63:
9c:ae:eb:12:ce:9c:38:12:3c:c0:2d:50:5e:13:51:05:14:c1:
bb:dc:02:a6:1c:c6:c6:91:fc:ee:b6:e7:50:1b:85:72:f8:d2:
68:a7:1f:cd:2b:b2:50:95:ec:5b:df:d4:db:3a:b1:aa:8d:a8:
c4:dd:89:df:3c:13:3c:a4:6c:a9:0f:e7:05:ff:20:c3:28:d7:
bb:65:ff:3c:c7:58:7b:80:df:40:82:19:68:9e:ef:8c:ee:08:
10:ea:80:c9:62:02:44:27:18:7d:9e:2c:0a:04:7c:2f:e9:be:
a4:71:60:75
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:57 2024 by rpki-client on console-ams.rpki-client.org