Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tbro2kD5Pa7Vun3MvW_VjbYYTMk.cer
File: Tbro2kD5Pa7Vun3MvW_VjbYYTMk.cer (raw, json)
Hash identifier: iXuYiwilvSKldst1a1GIc+BODV14CqXfVtGCDpQniDk=
Subject key identifier: 4D:BA:E8:DA:40:F9:3D:AE:D5:BA:7D:CC:BD:6F:D5:8D:B6:18:4C:C9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B957
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/Tbro2kD5Pa7Vun3MvW_VjbYYTMk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 28 Aug 2023 21:45:41 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 138001
IP: 103.153.230.0/23
IP: 2406:64c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112983 (0x1b957)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 28 21:45:41 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A911155C/serialNumber=4DBAE8DA40F93DAED5BA7DCCBD6FD58DB6184CC9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d1:71:9f:c9:63:42:8f:df:32:00:3a:5b:9d:4c:
bf:0a:4a:20:9b:d3:3a:b1:35:1f:23:21:e8:d9:e6:
a3:e0:67:f5:d1:35:92:92:7b:dc:d2:5d:16:c3:6d:
cc:b5:cf:c1:13:e5:f1:bc:54:52:1f:6c:e3:42:ec:
ec:06:bf:5b:dc:bf:d8:05:36:e6:88:9b:1e:06:56:
31:bd:37:ab:85:6b:d1:96:fb:2e:14:2d:9d:2f:11:
53:74:b6:5f:3e:d4:e8:ac:12:3d:04:ad:76:d6:e8:
b7:fc:31:54:ff:31:a7:a9:30:71:68:05:b9:8d:d5:
34:e7:98:ad:4a:29:a7:10:a5:f6:6b:ca:e2:f9:8a:
7a:65:88:e3:f6:70:e5:96:8d:69:75:55:1e:d2:13:
c6:d3:e1:9e:af:1f:c7:3c:b2:c4:df:bf:0a:a6:72:
3b:8c:6d:8c:15:ea:8b:c0:e3:56:cc:82:5a:3b:5a:
8d:5a:10:93:f4:13:5e:24:0e:f1:19:7c:95:92:7a:
d6:bb:0d:69:f7:99:27:84:8a:8f:27:45:4d:88:06:
f1:4e:16:62:7f:cb:41:3d:a7:4f:dc:cb:42:e7:66:
7a:73:2c:49:e6:4e:10:a4:95:69:a7:d4:e5:21:81:
f3:71:a0:d5:74:51:e1:a6:8c:3a:5f:fa:04:8a:d9:
2a:85
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4D:BA:E8:DA:40:F9:3D:AE:D5:BA:7D:CC:BD:6F:D5:8D:B6:18:4C:C9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911155C/A958E30EE62F11EA8E4A324BC4F9AE02/Tbro2kD5Pa7Vun3MvW_VjbYYTMk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138001
sbgp-ipAddrBlock: critical
IPv4:
103.153.230.0/23
IPv6:
2406:64c0::/32
Signature Algorithm: sha256WithRSAEncryption
16:c5:b3:cb:ed:56:ac:84:ad:0f:da:96:6e:e7:be:12:f5:21:
ee:f3:29:d5:0d:4f:12:c2:de:c2:e6:7d:f5:09:c7:22:78:65:
24:37:9f:8a:bd:a2:02:95:78:72:24:2c:f7:b3:aa:5d:ea:32:
81:76:35:a0:6a:96:f7:cb:f3:fc:f7:75:13:b4:c0:95:9b:7a:
db:0d:61:fc:d8:d7:f9:fa:12:ef:2e:d7:bd:03:b1:1d:3d:8c:
7a:c9:6e:4a:9e:65:73:4c:d6:de:0f:c4:15:0b:ea:54:c4:0b:
4f:8f:3b:1d:52:99:88:c7:5a:0b:fe:dd:3d:62:26:e5:48:76:
25:96:29:af:99:04:3d:5d:c8:80:81:e1:1e:01:a6:32:72:8b:
bf:24:c5:86:90:4c:10:62:d0:9e:d3:7d:08:37:10:ca:ee:d3:
8e:32:32:e1:08:fc:e8:de:0d:43:8a:9d:a7:23:22:a0:27:b5:
e2:6f:6b:f9:e6:60:e4:57:e2:22:bc:bb:c0:62:60:a0:18:81:
28:c8:2f:c7:f0:74:53:8b:4e:07:09:9f:08:9d:90:b4:80:15:
3e:e3:d4:1c:3f:eb:66:c5:0e:58:45:1b:5b:9e:6f:d3:57:9c:
12:a4:22:4d:94:9b:f7:96:09:1a:2c:41:0b:63:0d:73:80:11:
80:ce:4a:4c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 8 20:36:41 2024 by rpki-client on console-ams.rpki-client.org