Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TZCQh73foVBeK7oD8gYRLq7_sRs.cer
File: TZCQh73foVBeK7oD8gYRLq7_sRs.cer (raw, json)
Hash identifier: /VPWz5/9uqCabuhf5qFtFik3lH8czquppPIAxNtQTYQ=
Subject key identifier: 4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01ACC5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 29 Jun 2023 07:32:54 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: AS: 140974
IP: 103.225.118.0/23
IP: 2401:be0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109765 (0x1acc5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 29 07:32:54 2023 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91D200F/serialNumber=4D909087BDDFA1505E2BBA03F206112EAEFFB11B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:30:24:40:0d:c4:0c:53:ac:ea:ca:1a:ba:54:
97:06:89:1e:73:ea:90:a8:0c:c4:50:76:3b:51:ba:
c6:a0:ce:38:16:33:4a:f1:b0:93:5a:dd:82:d3:de:
50:1c:cc:88:3a:d7:c7:83:68:89:4b:be:dc:20:3b:
c8:48:9a:68:33:6b:2d:6f:1d:17:02:77:ba:e1:9d:
cd:fd:f4:ab:8c:41:f1:dd:28:ce:36:a5:b2:92:4a:
a2:db:ff:23:06:55:ed:68:d7:62:a2:cd:61:0f:44:
ff:b1:ce:87:90:c3:b3:af:4c:0e:64:56:8f:7f:3a:
d7:5b:9a:4d:af:b4:98:21:50:d4:16:d4:0c:3b:71:
64:45:b8:07:9b:27:b2:03:b2:32:ef:5d:4e:8d:2a:
d7:29:58:c5:6b:b1:9e:c5:42:3b:8c:f2:56:78:6b:
fd:74:97:d5:c4:15:92:c0:c6:14:4b:fb:df:e2:77:
17:f7:50:45:0c:28:4c:9e:78:ec:e1:25:ca:10:82:
fa:1f:3b:7d:8b:71:1f:00:75:4e:56:32:10:1a:30:
74:2c:22:66:e3:d6:0d:51:a0:26:25:c5:2b:97:ab:
b9:96:41:b0:e9:b7:91:21:f9:29:d6:89:c2:db:45:
e4:c0:5e:0f:15:da:fc:d7:c5:7d:72:32:a6:fd:2b:
63:0f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:90:90:87:BD:DF:A1:50:5E:2B:BA:03:F2:06:11:2E:AE:FF:B1:1B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D200F/25787402164F11EE9E73404EC4F9AE02/TZCQh73foVBeK7oD8gYRLq7_sRs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140974
sbgp-ipAddrBlock: critical
IPv4:
103.225.118.0/23
IPv6:
2401:be0::/32
Signature Algorithm: sha256WithRSAEncryption
d3:3f:20:a7:fb:45:ae:cc:40:7c:ab:31:3f:f4:9a:81:a0:21:
d4:78:58:b6:07:b3:08:a5:84:88:a1:40:5e:e8:8d:c3:07:10:
fd:7b:cf:6a:67:f3:6e:72:ea:bb:2a:61:86:e7:5b:33:54:96:
cd:dd:8e:b1:b4:f4:b8:d7:da:d5:bb:7a:f4:20:fe:9d:b7:8d:
44:21:30:48:9b:02:e0:6c:35:47:4a:be:a2:d7:d0:57:8f:fb:
5e:01:fa:4f:10:2a:9f:fe:90:b7:e9:a0:22:1d:66:da:02:f5:
a0:26:ce:30:5e:14:dc:5a:51:f4:6b:55:97:9a:92:e1:dd:ef:
fc:63:20:98:60:5c:27:3d:86:5b:28:a0:6b:4b:37:32:52:23:
65:1a:97:41:e3:e1:5f:9f:8f:b4:fd:89:7b:77:7b:7e:38:e5:
df:15:7d:0d:7e:ff:fb:03:6f:60:d5:ce:37:3d:40:35:5f:3c:
d8:ad:26:99:8d:1e:7a:29:c3:17:4f:fd:e0:5e:89:e5:79:e5:
d6:f8:cb:af:c4:ae:c2:59:71:c7:e3:75:e9:1c:8e:f0:45:a4:
7b:b8:df:e8:c4:10:6d:00:68:c1:d0:ac:1d:76:df:f7:58:94:
55:3b:5c:53:2c:43:cc:a7:89:d0:e7:84:8b:b7:1d:d6:91:5d:
ef:a8:bb:8b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu May 2 10:18:28 2024 by rpki-client on console-ams.rpki-client.org