Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TShKyE8O4JX9a-sO2MZfx15p__g.cer
File: TShKyE8O4JX9a-sO2MZfx15p__g.cer (raw, json)
Hash identifier: cJsqNcUhZGTN2/lPvjcdNY/iVBCGv6MO7OaZwdTD4t4=
Subject key identifier: 4D:28:4A:C8:4F:0E:E0:95:FD:6B:EB:0E:D8:C6:5F:C7:5E:69:FF:F8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BCAC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915542D/0D1EC92C1FE111EB99C01C60C4F9AE02/TShKyE8O4JX9a-sO2MZfx15p__g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915542D/0D1EC92C1FE111EB99C01C60C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 11 Sep 2023 14:57:38 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 136939
IP: 103.99.114.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 113836 (0x1bcac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 11 14:57:38 2023 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A915542D/serialNumber=4D284AC84F0EE095FD6BEB0ED8C65FC75E69FFF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:de:8d:79:3f:c0:d3:60:2d:11:93:c3:30:
56:8a:31:e7:cc:dc:aa:42:c8:a3:cc:17:c9:25:f1:
61:22:a8:02:ff:b5:a5:38:4a:07:21:b0:0e:83:32:
11:b2:9e:1c:dc:13:35:9b:27:ea:8a:b4:22:bd:84:
ef:ac:9a:6a:98:6a:b0:83:2a:5e:a9:4a:78:0f:39:
42:bc:5a:7b:e1:7b:78:1c:cd:a3:8a:31:e1:98:a7:
c0:d0:3c:12:87:99:f2:d5:59:d1:51:c9:08:f7:ca:
e4:3f:01:5d:28:46:b7:40:0f:55:e6:2a:92:59:c4:
ac:3b:d3:a2:17:f3:e6:a9:97:b8:3c:ea:77:c3:18:
bb:25:f9:b3:de:30:40:05:88:35:fe:46:81:e7:9f:
ff:87:9e:a8:06:25:15:13:e7:af:7d:cb:cd:bf:14:
1c:f3:77:bf:ce:a2:c6:ba:da:22:74:dd:78:05:9f:
43:28:95:78:62:5c:86:75:d3:75:0f:69:45:46:17:
79:08:dc:8c:16:c9:8e:3a:ba:e9:3e:33:1c:48:0c:
98:b0:24:b9:72:79:54:21:13:79:f9:61:34:f9:d7:
22:9f:00:a6:df:36:ab:92:b8:65:a6:f0:f8:3d:8e:
7e:1c:08:91:95:aa:c1:79:ce:1c:44:21:6d:42:4d:
54:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:28:4A:C8:4F:0E:E0:95:FD:6B:EB:0E:D8:C6:5F:C7:5E:69:FF:F8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915542D/0D1EC92C1FE111EB99C01C60C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915542D/0D1EC92C1FE111EB99C01C60C4F9AE02/TShKyE8O4JX9a-sO2MZfx15p__g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136939
sbgp-ipAddrBlock: critical
IPv4:
103.99.114.0/24
Signature Algorithm: sha256WithRSAEncryption
83:c3:59:b9:a4:c5:2b:5b:16:b3:4b:7b:9b:14:61:02:42:79:
42:da:a9:bc:87:49:fc:14:76:c6:79:d8:f4:65:9b:6e:a7:01:
3d:54:80:e1:32:f6:35:e3:48:51:90:c8:97:0c:20:33:9b:ee:
0c:f2:bb:2b:de:c3:b6:12:f6:d4:5b:9f:dd:d8:1d:a8:bb:b3:
eb:72:18:7a:3a:31:6e:90:32:42:f4:3c:dd:62:58:8d:1e:de:
b3:43:c1:1f:ce:76:9e:a4:34:3d:3f:1a:bb:73:2e:e3:95:25:
e2:8f:84:ac:67:47:39:0c:16:4a:c3:f2:48:65:ac:6c:5f:d1:
bd:38:08:bf:b5:36:f7:d3:96:02:7f:d8:db:b6:d9:7d:1c:3a:
36:a1:00:55:e6:2e:ad:d8:4f:11:c2:47:b7:67:3c:20:70:cf:
db:97:df:10:11:8a:16:06:17:49:90:a8:72:02:9d:6f:98:a4:
8a:e7:db:e6:ce:b6:fb:15:c7:77:18:4a:8b:bf:6e:aa:ab:99:
5f:81:e8:bd:ef:8d:e7:ea:f5:ec:03:0b:ad:5d:6a:d7:21:40:
f1:89:8a:b4:ca:09:8a:5d:03:43:50:e2:da:c8:ad:fa:58:d3:
01:b3:3a:49:57:a6:40:83:43:c8:3d:7b:87:5f:c2:83:18:28:
f8:05:e2:15
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:02:57 2024 by rpki-client on console-ams.rpki-client.org