Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tky0uRUee64RK-xTWcMclVgO4DE.cer
File: Tky0uRUee64RK-xTWcMclVgO4DE.cer (raw, json)
Hash identifier: Cvd2FL7Cz4RJKuvKLsA/f9lXPgRHX8HIi/lGCMUR62Y=
Subject key identifier: 4E:4C:B4:B9:15:1E:7B:AE:11:2B:EC:53:59:C3:1C:95:58:0E:E0:31
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0215E6
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 24 Oct 2024 15:48:36 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 147040
IP: 103.173.114.0/23
IP: 2407:e6c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 04 Dec 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136678 (0x215e6)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 24 15:48:36 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91609E6/serialNumber=4E4CB4B9151E7BAE112BEC5359C31C95580EE031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:8a:22:ca:ee:8b:bc:c0:1d:f3:ce:81:f0:19:
0d:88:64:dd:1d:3b:fe:3c:49:19:97:88:f9:3d:44:
cd:c0:6d:21:37:df:7e:fd:81:76:48:a0:cf:75:19:
77:b7:b4:9a:e6:1d:0e:a9:b3:fa:79:9a:ba:bd:82:
fa:69:27:a8:e1:11:cb:58:dd:40:a2:22:71:e7:52:
34:38:95:a4:29:fb:ee:ca:e6:0b:e0:fc:26:81:0e:
f3:fa:65:30:92:02:63:41:33:d7:e2:66:a7:a4:c6:
49:ee:0a:1b:05:51:32:dc:9b:55:fa:2d:f3:de:8f:
19:6a:26:02:87:31:f5:10:24:62:a9:84:25:09:62:
35:cc:ca:48:09:7c:45:35:fa:fd:54:9f:43:41:6f:
85:9c:fb:a4:8f:72:f9:86:3f:1d:2f:cd:7e:1c:9c:
dd:f5:6c:53:3d:64:b4:0f:cb:73:27:4f:ef:db:2a:
b0:54:54:08:bd:f3:cc:49:dc:c9:f6:f5:82:c6:b1:
3e:bd:b7:55:bf:dc:4d:4c:c9:06:7d:0b:c6:4e:e2:
11:80:ce:0b:4c:e7:08:62:8c:51:e9:17:31:00:31:
0c:74:0e:a6:a6:b6:12:15:ce:f4:d6:28:18:43:4d:
c7:d9:9a:84:65:d4:80:4f:69:49:f7:80:49:d2:c1:
83:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4C:B4:B9:15:1E:7B:AE:11:2B:EC:53:59:C3:1C:95:58:0E:E0:31
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147040
sbgp-ipAddrBlock: critical
IPv4:
103.173.114.0/23
IPv6:
2407:e6c0::/32
Signature Algorithm: sha256WithRSAEncryption
1f:be:f7:71:6a:ae:f9:0d:41:ed:59:1a:19:32:e8:b9:72:a2:
7d:ff:b7:1a:cf:fd:ab:71:c3:1e:31:5c:96:6b:11:e6:6c:f0:
60:4d:b1:1f:90:c5:6e:5c:78:b5:81:90:f5:1a:0a:0d:d1:4e:
82:08:04:28:c0:49:3e:ca:33:5e:da:7a:46:5f:fe:d8:56:14:
7c:cb:e0:74:c2:78:8b:75:75:34:84:58:00:c2:71:5b:cc:cb:
f8:73:12:b2:9b:f4:2b:52:be:8c:bd:04:1e:12:84:c1:ba:b1:
62:31:ab:af:4b:a5:8b:a3:bd:eb:3d:d9:7b:0b:fc:9e:42:e6:
4c:ce:f7:39:be:a5:09:d2:99:1e:5b:c3:b9:bf:1c:6a:8f:a3:
c8:68:59:93:f7:1d:15:25:e0:99:a8:3e:e7:15:c7:98:d5:5c:
cb:6a:7d:e0:38:29:dd:6d:70:a2:55:9d:4f:37:87:14:cb:cf:
a4:73:5e:62:b9:20:d9:77:f9:86:0f:ca:25:d6:db:aa:e1:e1:
c7:a0:dc:01:f4:39:48:51:63:c3:65:05:24:8c:2f:81:17:e3:
ca:c0:3d:d2:51:f0:1a:9a:27:59:25:fa:fc:e0:9c:cf:f9:f9:
0d:a8:e6:17:61:03:ba:58:ce:cd:d0:a5:13:06:c7:78:0a:5c:
6a:3f:2a:21
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Nov 27 04:03:36 2024 by rpki-client on console-fra.rpki-client.org