Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TShKyE8O4JX9a-sO2MZfx15p__g.cer
File: TShKyE8O4JX9a-sO2MZfx15p__g.cer (raw, json)
Hash identifier: sxZXgNmYXOQoHCF25VEUr281hKk6amoWLQmtfO+4sds=
Subject key identifier: 4D:28:4A:C8:4F:0E:E0:95:FD:6B:EB:0E:D8:C6:5F:C7:5E:69:FF:F8
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020EF9
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915542D/0D1EC92C1FE111EB99C01C60C4F9AE02/TShKyE8O4JX9a-sO2MZfx15p__g.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915542D/0D1EC92C1FE111EB99C01C60C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 23 Sep 2024 14:46:57 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 136939
IP: 103.99.114.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 134905 (0x20ef9)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 23 14:46:57 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A915542D/serialNumber=4D284AC84F0EE095FD6BEB0ED8C65FC75E69FFF8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:81:de:8d:79:3f:c0:d3:60:2d:11:93:c3:30:
56:8a:31:e7:cc:dc:aa:42:c8:a3:cc:17:c9:25:f1:
61:22:a8:02:ff:b5:a5:38:4a:07:21:b0:0e:83:32:
11:b2:9e:1c:dc:13:35:9b:27:ea:8a:b4:22:bd:84:
ef:ac:9a:6a:98:6a:b0:83:2a:5e:a9:4a:78:0f:39:
42:bc:5a:7b:e1:7b:78:1c:cd:a3:8a:31:e1:98:a7:
c0:d0:3c:12:87:99:f2:d5:59:d1:51:c9:08:f7:ca:
e4:3f:01:5d:28:46:b7:40:0f:55:e6:2a:92:59:c4:
ac:3b:d3:a2:17:f3:e6:a9:97:b8:3c:ea:77:c3:18:
bb:25:f9:b3:de:30:40:05:88:35:fe:46:81:e7:9f:
ff:87:9e:a8:06:25:15:13:e7:af:7d:cb:cd:bf:14:
1c:f3:77:bf:ce:a2:c6:ba:da:22:74:dd:78:05:9f:
43:28:95:78:62:5c:86:75:d3:75:0f:69:45:46:17:
79:08:dc:8c:16:c9:8e:3a:ba:e9:3e:33:1c:48:0c:
98:b0:24:b9:72:79:54:21:13:79:f9:61:34:f9:d7:
22:9f:00:a6:df:36:ab:92:b8:65:a6:f0:f8:3d:8e:
7e:1c:08:91:95:aa:c1:79:ce:1c:44:21:6d:42:4d:
54:07
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:28:4A:C8:4F:0E:E0:95:FD:6B:EB:0E:D8:C6:5F:C7:5E:69:FF:F8
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915542D/0D1EC92C1FE111EB99C01C60C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915542D/0D1EC92C1FE111EB99C01C60C4F9AE02/TShKyE8O4JX9a-sO2MZfx15p__g.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136939
sbgp-ipAddrBlock: critical
IPv4:
103.99.114.0/24
Signature Algorithm: sha256WithRSAEncryption
c7:b3:76:ef:83:f3:67:11:24:89:84:09:ac:39:ed:4f:c2:bd:
99:a9:68:f0:24:14:0d:df:26:c9:b4:03:f8:78:6e:86:ee:10:
b5:b0:7e:76:07:58:41:b6:cd:90:a0:64:95:9a:a4:b7:f7:55:
e5:b3:c6:a8:cb:ce:f3:bd:6a:0e:b4:5d:42:50:2f:f9:50:4e:
19:11:0f:eb:e0:2f:7b:8f:4a:f2:95:60:f9:ed:88:94:33:c3:
03:7f:75:ea:06:a1:02:d1:7d:16:d9:dd:76:eb:49:21:9e:ee:
ef:aa:92:b1:07:a5:ff:a1:62:fc:39:0a:8c:cc:38:4d:06:ae:
ee:c0:6c:01:75:e6:04:90:fd:5e:fe:f2:2b:00:55:7d:9e:fa:
49:e6:8b:48:ae:1d:23:1a:b2:54:d1:c0:6d:a6:c0:94:36:3e:
e7:8d:38:0a:3b:0c:20:69:bb:83:d0:01:94:20:db:7d:22:40:
6e:03:e0:f2:94:f4:ee:87:fb:02:7a:fd:a1:6a:88:61:d8:45:
bb:98:0f:85:a4:82:8d:f5:a7:27:67:65:9a:f2:03:41:ff:ad:
b7:88:0d:a1:03:5c:ff:00:79:07:8b:d0:72:3f:1e:b8:78:07:
e8:d0:ff:5f:a1:7b:87:98:47:e3:a0:d6:e1:24:7f:13:ca:e8:
8e:24:fc:9f
-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgIDAg75MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDkyMzE0NDY1N1oXDTI1MTIwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTU0MkQxMTAvBgNVBAUTKDREMjg0QUM4NEYwRUUwOTVGRDZCRUIw
RUQ4QzY1RkM3NUU2OUZGRjgwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC9gd6NeT/A02AtEZPDMFaKMefM3KpCyKPMF8kl8WEiqAL/taU4SgchsA6DMhGy
nhzcEzWbJ+qKtCK9hO+smmqYarCDKl6pSngPOUK8Wnvhe3gczaOKMeGYp8DQPBKH
mfLVWdFRyQj3yuQ/AV0oRrdAD1XmKpJZxKw706IX8+apl7g86nfDGLsl+bPeMEAF
iDX+RoHnn/+HnqgGJRUT5699y82/FBzzd7/Oosa62iJ03XgFn0MolXhiXIZ103UP
aUVGF3kI3IwWyY46uuk+MxxIDJiwJLlyeVQhE3n5YTT51yKfAKbfNquSuGWm8Pg9
jn4cCJGVqsF5zhxEIW1CTVQHAgMBAAGjggMPMIIDCzAdBgNVHQ4EFgQUTShKyE8O
4JX9a+sO2MZfx15p//gwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU1NDJELzBEMUVDOTJDMUZFMTExRUI5OUMwMUM2MEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1NTQyRC8wRDFFQzkyQzFGRTExMUVCOTlDMDFDNjBDNEY5QUUwMi9UU2hLeUU4
TzRKWDlhLXNPMk1aZngxNXBfX2cubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhbrMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ2NyMA0GCSqG
SIb3DQEBCwUAA4IBAQDHs3bvg/NnESSJhAmsOe1Pwr2ZqWjwJBQN3ybJtAP4eG6G
7hC1sH52B1hBts2QoGSVmqS391Xls8aoy87zvWoOtF1CUC/5UE4ZEQ/r4C97j0ry
lWD57YiUM8MDf3XqBqEC0X0W2d1260khnu7vqpKxB6X/oWL8OQqMzDhNBq7uwGwB
deYEkP1e/vIrAFV9nvpJ5otIrh0jGrJU0cBtpsCUNj7njTgKOwwgabuD0AGUINt9
IkBuA+DylPTuh/sCev2haohh2EW7mA+FpIKN9acnZ2Wa8gNB/623iA2hA1z/AHkH
i9ByPx64eAfo0P9foXuHmEfjoNbhJH8TyuiOJPyf
-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:36 2024 by rpki-client on console-fra.rpki-client.org