Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Tky0uRUee64RK-xTWcMclVgO4DE.cer
File: Tky0uRUee64RK-xTWcMclVgO4DE.cer (raw, json)
Hash identifier: B/UEQyFslBn/QOKddBPB61ld7qxSUNTTSq8niGXni1k=
Subject key identifier: 4E:4C:B4:B9:15:1E:7B:AE:11:2B:EC:53:59:C3:1C:95:58:0E:E0:31
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C86B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Nov 2023 16:33:53 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 147040
IP: 103.173.114.0/23
IP: 2407:e6c0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 01 May 2024 18:35:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116843 (0x1c86b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 16:33:53 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91609E6/serialNumber=4E4CB4B9151E7BAE112BEC5359C31C95580EE031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ed:8a:22:ca:ee:8b:bc:c0:1d:f3:ce:81:f0:19:
0d:88:64:dd:1d:3b:fe:3c:49:19:97:88:f9:3d:44:
cd:c0:6d:21:37:df:7e:fd:81:76:48:a0:cf:75:19:
77:b7:b4:9a:e6:1d:0e:a9:b3:fa:79:9a:ba:bd:82:
fa:69:27:a8:e1:11:cb:58:dd:40:a2:22:71:e7:52:
34:38:95:a4:29:fb:ee:ca:e6:0b:e0:fc:26:81:0e:
f3:fa:65:30:92:02:63:41:33:d7:e2:66:a7:a4:c6:
49:ee:0a:1b:05:51:32:dc:9b:55:fa:2d:f3:de:8f:
19:6a:26:02:87:31:f5:10:24:62:a9:84:25:09:62:
35:cc:ca:48:09:7c:45:35:fa:fd:54:9f:43:41:6f:
85:9c:fb:a4:8f:72:f9:86:3f:1d:2f:cd:7e:1c:9c:
dd:f5:6c:53:3d:64:b4:0f:cb:73:27:4f:ef:db:2a:
b0:54:54:08:bd:f3:cc:49:dc:c9:f6:f5:82:c6:b1:
3e:bd:b7:55:bf:dc:4d:4c:c9:06:7d:0b:c6:4e:e2:
11:80:ce:0b:4c:e7:08:62:8c:51:e9:17:31:00:31:
0c:74:0e:a6:a6:b6:12:15:ce:f4:d6:28:18:43:4d:
c7:d9:9a:84:65:d4:80:4f:69:49:f7:80:49:d2:c1:
83:6f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:4C:B4:B9:15:1E:7B:AE:11:2B:EC:53:59:C3:1C:95:58:0E:E0:31
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91609E6/B616C86A4F7711EC9F09456EC4F9AE02/Tky0uRUee64RK-xTWcMclVgO4DE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
147040
sbgp-ipAddrBlock: critical
IPv4:
103.173.114.0/23
IPv6:
2407:e6c0::/32
Signature Algorithm: sha256WithRSAEncryption
93:c6:74:a5:29:3c:51:5f:52:47:16:52:83:10:b6:e9:75:13:
44:e7:01:e9:53:29:6b:2b:2f:ed:60:e0:ac:f0:01:7b:51:4a:
1e:ab:d6:db:f6:20:b7:4f:8e:d6:95:eb:01:f2:84:80:f9:d7:
43:52:be:62:00:ab:f9:ee:aa:bf:41:5c:d9:76:7d:24:ed:11:
dc:61:0f:4d:f5:5d:cc:5e:20:0f:ee:96:98:df:be:b4:7e:58:
a0:03:2d:2d:14:f3:7a:27:c9:f6:5a:81:a8:e8:1b:a1:48:c7:
dc:9f:0b:e9:8f:2a:ae:f8:71:3d:af:ca:51:bf:f3:7e:7e:4f:
83:00:f9:5e:5f:02:56:c5:b7:40:ed:d7:2d:df:1c:68:35:ad:
61:47:11:b8:0c:ec:5f:38:eb:c8:b8:6a:b9:76:3d:81:e8:7b:
ed:2c:29:31:1b:5a:7d:42:b6:17:fb:1e:a3:da:d9:5c:e2:10:
73:b0:e9:9c:d7:bc:0a:69:6a:aa:f9:9c:94:ad:72:b7:c0:9d:
4d:4f:93:a2:6a:05:e0:8c:6e:95:ee:1a:b7:0a:99:72:fa:c8:
c5:6c:93:a6:f5:f5:ea:06:dd:ee:aa:a9:66:a5:5a:6e:30:77:
23:3c:f4:02:82:fa:07:36:9c:ad:ce:76:85:81:41:a3:24:e8:
f0:92:98:00
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 24 21:18:45 2024 by rpki-client on console-ams.rpki-client.org