Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer
File: Tisg2VNzK3Xu0S8SmSGgsbXrFY4.cer (raw, json)
Hash identifier: KAkc6jl4OQiZTzZXv+EvOOawSjcHRBnZ6EgGiMe3Lyw=
Subject key identifier: 4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D37F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 21 Dec 2023 16:14:20 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 136004
IP: 103.79.117.0/24
IP: 103.99.176.0/23
IP: 103.120.110.0/24
IP: 2403:46c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 119679 (0x1d37f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 21 16:14:20 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A9173C8A/serialNumber=4E2B20D953732B75EED12F129921A0B1B5EB158E
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:2b:90:5f:a4:41:1d:34:b4:63:ef:ba:78:43:
e2:a7:31:34:03:83:ec:70:fb:52:e5:90:36:13:b3:
fa:e5:7f:c2:b7:0d:59:04:cb:99:d7:45:2c:6a:5a:
d0:ae:14:8c:b5:fa:4e:77:2f:1d:b6:69:a5:1f:5a:
ae:46:74:da:60:51:51:e7:0d:27:57:f5:9a:c4:07:
ee:d9:0f:6d:8d:c5:01:0f:62:62:06:e1:97:e9:d2:
2a:57:c0:bb:5b:4f:6f:03:a9:03:7c:d7:25:13:0d:
a6:91:6c:65:d9:78:25:25:4d:93:da:f6:22:59:f9:
c1:3d:07:cf:d2:6f:cc:2d:34:e2:8c:41:d4:ef:96:
c5:32:69:31:e4:d0:51:c6:1a:c0:e9:74:24:22:82:
ae:1d:a9:d6:e0:20:7b:04:f7:88:3f:17:7b:aa:3b:
63:ea:fa:df:5b:dc:b1:25:fa:08:0b:28:c1:c4:9f:
39:a4:07:70:34:fb:e7:64:73:de:74:aa:4e:f3:9c:
14:4f:46:f6:57:66:b4:5d:9b:de:4e:d5:bd:3f:d4:
d8:32:14:91:5d:ac:fc:bb:36:bf:68:88:e9:5b:ac:
53:b8:c5:a1:73:d1:64:4e:3d:78:78:41:8f:3d:52:
ee:ec:42:1d:0b:a9:c2:ab:12:9d:bf:f8:d2:77:cc:
16:1d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:2B:20:D9:53:73:2B:75:EE:D1:2F:12:99:21:A0:B1:B5:EB:15:8E
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9173C8A/E7FFC5F486F711E78634EC7EC4F9AE02/Tisg2VNzK3Xu0S8SmSGgsbXrFY4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136004
sbgp-ipAddrBlock: critical
IPv4:
103.79.117.0/24
103.99.176.0/23
103.120.110.0/24
IPv6:
2403:46c0::/32
Signature Algorithm: sha256WithRSAEncryption
35:2a:8e:42:3e:d4:9c:fe:bb:60:d3:36:25:4c:47:a6:cb:54:
99:d6:46:4c:25:df:c1:84:f7:14:67:6f:e6:a5:f4:33:75:bb:
a1:9e:ba:d5:fe:ef:49:1b:20:4b:0a:5b:6e:88:f2:1c:93:1a:
c7:52:af:85:06:44:c1:42:a0:72:4d:3e:02:1b:65:db:b7:5b:
57:d2:ed:46:53:50:e4:08:cf:b3:a4:26:c8:28:63:85:ce:89:
04:02:30:4b:b2:dc:32:17:7d:fe:ee:69:6f:4d:6e:de:46:23:
ca:69:26:2d:8b:c8:36:25:6e:eb:61:cf:e4:9c:e3:18:ca:76:
d4:9c:ed:bf:de:74:ed:69:5f:a9:37:25:bd:df:95:a4:85:f6:
3c:65:82:3c:a9:41:6c:4a:c6:0d:7c:86:b4:ff:30:7e:b5:45:
81:bb:fb:d4:e8:7d:cd:f7:1f:7d:ba:43:ea:df:50:c1:c8:05:
c7:2a:95:fc:8a:89:3f:53:15:bb:4f:2d:56:16:9d:2c:cf:9d:
dc:91:96:06:85:d3:1a:ba:78:61:d1:19:05:f9:15:f4:33:b7:
9e:dc:5b:b8:1c:25:f1:77:03:08:8e:60:ac:27:ac:1b:88:0d:
1f:6c:2e:e8:34:3f:db:af:ae:69:45:26:c5:01:46:8d:0a:fc:
0f:cf:c7:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 03:59:42 2024 by rpki-client on console-ams.rpki-client.org