Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TIHwGTocVyRFf1LgThHyUnPm_uA.cer
File: TIHwGTocVyRFf1LgThHyUnPm_uA.cer (raw, json)
Hash identifier: tTbbrEbtzeYP8bEUoFd70PFWxUfPnKlEKaWE6UyZHcQ=
Subject key identifier: 4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D3D6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 22 Dec 2023 19:00:23 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 139837
IP: 103.145.234.0/23
IP: 2001:df2:3180::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 21:46:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119766 (0x1d3d6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 22 19:00:23 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91A5533/serialNumber=4C81F0193A1C5724457F52E04E11F25273E6FEE0
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c9:68:05:2c:84:b5:87:6b:e3:90:a8:8d:b9:56:
cd:bc:22:88:7b:24:20:bc:c5:7a:bf:52:c9:c1:c8:
41:62:ba:6d:09:3b:bc:de:d6:62:40:0b:ef:88:31:
d4:33:20:63:43:a3:99:e4:ec:c7:30:9d:62:29:2b:
a4:2f:93:bd:34:fe:e3:9f:10:74:18:fd:78:78:70:
d3:0a:93:9c:e4:f6:11:b2:ad:15:43:15:25:49:d9:
1e:63:95:c8:3e:df:68:4a:3d:e4:c9:97:55:22:80:
7a:fd:d3:10:b0:da:32:91:0e:34:5f:bf:75:ee:d4:
87:34:61:7d:ed:bf:ef:2e:23:54:0e:dc:ea:e8:b4:
20:84:39:be:f7:f7:02:6e:a4:78:2e:82:43:17:5a:
e2:34:8e:e8:f8:50:e8:e5:64:d3:65:29:37:f6:2b:
34:6c:78:b6:f3:09:b0:95:5b:4e:bb:db:68:54:08:
94:42:63:84:16:95:fe:f9:ca:5b:28:39:5e:ef:7e:
69:19:f7:3a:28:44:fc:92:3b:b1:ce:c2:5b:c8:de:
30:d3:ac:2e:c0:65:76:65:f6:b4:2c:5f:05:b7:0a:
68:b3:11:2e:a2:89:16:1a:73:7b:88:27:71:cd:14:
b2:c0:a3:59:55:1b:bb:b4:8e:9d:b1:52:f0:bc:c4:
4d:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:81:F0:19:3A:1C:57:24:45:7F:52:E0:4E:11:F2:52:73:E6:FE:E0
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A5533/061151F21A4E11EA9E09CC82C4F9AE02/TIHwGTocVyRFf1LgThHyUnPm_uA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
139837
sbgp-ipAddrBlock: critical
IPv4:
103.145.234.0/23
IPv6:
2001:df2:3180::/48
Signature Algorithm: sha256WithRSAEncryption
86:09:10:ee:cc:9d:8a:b9:1b:15:fa:4d:d7:d5:60:c0:31:a1:
12:1d:d4:7f:87:b5:06:59:cf:4d:e3:02:3e:78:4a:1a:80:e4:
80:78:57:c7:d3:85:66:3b:e4:f4:6a:61:0a:7e:c0:ec:56:41:
5d:2b:86:a5:f3:ca:a9:61:6d:c9:2c:0c:9e:76:25:2b:9e:11:
f9:4b:8c:b9:ae:2f:83:81:44:72:12:aa:30:22:68:ad:ed:35:
50:31:d2:5d:08:ed:9e:6a:1a:96:11:4d:a0:4d:45:85:7f:49:
8e:98:3f:38:7f:5c:7e:3c:90:3c:b2:c8:d9:30:c0:a4:b6:71:
09:44:c6:4a:6e:9f:c4:d2:49:eb:0a:e0:82:18:7c:3a:fe:3f:
cb:85:ec:8a:b1:dc:6b:f9:39:b6:30:e1:47:93:08:f0:cb:d3:
24:be:b6:92:3a:09:d1:47:89:d3:d4:56:62:48:6a:1b:56:f8:
c0:ee:c4:6a:43:31:10:c4:d2:aa:77:0f:5d:c4:3a:ac:2a:22:
96:ae:4b:a4:a3:7a:ba:4e:d2:b0:04:cc:4d:b9:47:28:16:29:
d2:7e:0d:01:e8:a4:a5:e7:0f:72:84:be:1e:f6:8c:00:a9:fe:
20:01:74:fc:1d:e4:0e:ae:d2:c4:e2:d6:98:00:83:bb:4e:73:
84:96:af:f8
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Apr 24 22:30:24 2024 by rpki-client on console-fra.rpki-client.org