Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLgV1pdFW8swK3TXnapq5Bu3t4k.cer
File: TLgV1pdFW8swK3TXnapq5Bu3t4k.cer (raw, json)
Hash identifier: VIJMdOGpVH6x3L4P2hN/KMwl8h0XvzebGRS02b+RPM0=
Subject key identifier: 4C:B8:15:D6:97:45:5B:CB:30:2B:74:D7:9D:AA:6A:E4:1B:B7:B7:89
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B148
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 20 Jul 2023 13:59:22 +0000
Certificate not after: Sat 31 Aug 2024 00:00:00 +0000
Subordinate resources: AS: 137854
IP: 103.115.167.0/24
IP: 103.125.25.0 -- 103.125.27.255
IP: 2001:df5:3100::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 26 Apr 2024 17:32:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110920 (0x1b148)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 20 13:59:22 2023 GMT
Not After : Aug 31 00:00:00 2024 GMT
Subject: CN=A91395A9/serialNumber=4CB815D697455BCB302B74D79DAA6AE41BB7B789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d2:25:1a:da:d3:32:5e:f7:b1:e2:d5:b3:33:
ea:18:c2:57:ec:f4:a3:ee:6d:c4:13:8f:df:b0:25:
6a:6f:36:c0:79:51:80:bc:c9:9d:6f:b9:ee:f1:00:
28:92:8c:72:49:50:cd:ae:c8:4a:70:b0:bc:57:63:
bd:73:9a:ab:ce:d4:00:7f:3e:6e:44:32:6b:59:f4:
2c:95:17:26:e0:58:e6:81:ca:82:84:e5:38:38:03:
33:48:86:60:f9:8a:b8:4b:47:a9:e5:85:f5:3a:ee:
62:22:70:5f:11:e3:78:8d:66:03:52:3c:c1:6a:27:
e8:3b:16:04:db:a9:51:e8:e4:29:90:67:b3:c6:c8:
75:03:b6:1f:18:b6:cf:c8:40:29:c5:75:89:15:f6:
9d:97:10:4d:05:12:ca:e6:d7:a3:2d:59:02:45:f5:
af:40:76:28:0f:b6:53:11:cd:4a:12:35:33:de:1f:
5e:ba:67:a6:1d:84:8d:b9:33:45:1f:c9:77:09:de:
75:d8:d0:62:ac:6a:29:af:1a:cd:d1:a6:8b:09:71:
a2:2b:5a:e9:85:80:7b:ac:46:3f:97:5c:55:0b:00:
6a:d6:9f:ee:a3:78:80:ff:78:49:37:eb:54:cb:e6:
a2:fa:26:59:25:91:43:ef:62:0f:eb:27:a2:72:d6:
07:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B8:15:D6:97:45:5B:CB:30:2B:74:D7:9D:AA:6A:E4:1B:B7:B7:89
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137854
sbgp-ipAddrBlock: critical
IPv4:
103.115.167.0/24
103.125.25.0-103.125.27.255
IPv6:
2001:df5:3100::/48
Signature Algorithm: sha256WithRSAEncryption
8e:6b:71:f1:80:82:7d:2e:65:05:dc:f6:ab:62:57:cc:b3:0c:
b0:77:ae:d1:89:08:e6:f5:98:b3:22:12:fe:13:93:7c:0b:98:
42:3c:c4:77:24:ad:48:b6:1c:e6:f4:85:aa:58:cc:2e:c2:ab:
e1:8e:f0:a1:cd:90:63:4a:3a:4f:6b:17:66:f3:2c:a8:19:dc:
30:9f:83:60:6f:5a:4f:92:38:d6:a5:22:2a:f2:ed:6b:bd:6c:
94:d1:11:eb:b9:1e:13:46:1c:6c:61:cc:e1:3c:df:26:4b:0f:
de:c7:13:7b:2d:10:a1:51:12:cd:5c:b3:b5:54:56:c5:9e:c0:
c3:04:03:6b:7b:70:c9:40:a3:5d:2a:07:18:72:68:82:d4:9b:
47:de:61:eb:c8:19:fb:21:f9:2d:78:8a:ec:ae:b1:d5:0d:c7:
96:23:37:ad:30:62:c6:d6:26:ec:63:2a:37:a3:89:d9:e6:2a:
c2:2a:7c:8e:80:28:ca:ab:cc:db:11:de:86:45:d0:22:0e:a2:
e3:bd:ae:0b:6d:4f:d8:02:86:79:c6:f9:fa:0c:65:ff:95:7b:
83:6c:2a:c9:e4:3f:bf:aa:f4:78:84:1a:b8:09:5b:07:94:79:
2f:c9:af:e1:d3:1e:3f:3a:6f:9a:f4:16:8c:39:9a:90:a0:ef:
c2:f0:02:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 19 19:13:45 2024 by rpki-client on console-fra.rpki-client.org