Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TsOX96VQvpBMGG-SCBd0AHHSRTU.cer
File: TsOX96VQvpBMGG-SCBd0AHHSRTU.cer (raw, json)
Hash identifier: QvXPMypbuIx0uNUVwY2PGiwu3iWLR/rmtmvnFWAdi90=
Subject key identifier: 4E:C3:97:F7:A5:50:BE:90:4C:18:6F:92:08:17:74:00:71:D2:45:35
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02022B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E1C0B/B73A179CE55A11EBB9BF8942C4F9AE02/TsOX96VQvpBMGG-SCBd0AHHSRTU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E1C0B/B73A179CE55A11EBB9BF8942C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 24 Jul 2024 23:00:55 +0000
Certificate not after: Tue 30 Sep 2025 00:00:00 +0000
Subordinate resources: AS: 142541
IP: 103.87.88.0/24
IP: 103.114.128.0/23
IP: 103.168.193.0/24
IP: 103.254.166.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 21 Feb 2025 05:15:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 131627 (0x2022b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jul 24 23:00:55 2024 GMT
Not After : Sep 30 00:00:00 2025 GMT
Subject: CN=A91E1C0B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:ea:ce:d9:a9:03:a0:0e:f6:47:61:e6:42:16:
0c:70:df:ce:36:8f:cd:4d:d5:25:14:d4:5d:3b:12:
8d:08:48:d4:e5:70:74:13:15:48:22:bb:f2:c4:6c:
aa:dc:c5:ce:9e:78:c2:30:76:4b:e6:4a:75:e7:33:
4b:9c:a1:01:36:fc:b9:09:87:18:79:a2:3e:6d:92:
96:1c:58:86:8e:77:de:1a:30:83:37:ca:a0:0e:d2:
b1:36:ec:f4:9b:0f:d8:5a:da:70:79:69:b2:32:1c:
44:30:88:87:0d:59:b1:8d:35:4f:30:f8:de:f3:87:
0a:d9:b3:b0:7a:25:f2:c5:dd:c1:bc:79:f1:7b:30:
d6:9b:fb:6d:7c:3b:80:b0:28:47:8b:27:54:22:cd:
a2:72:d4:65:57:1f:23:30:af:ce:2e:bf:cc:16:ad:
4c:c3:62:a2:ce:69:41:cd:70:88:fe:de:9e:2f:4a:
fe:8c:f9:0b:12:fb:d1:d9:18:ae:7a:58:31:7b:2f:
09:da:f6:bb:ce:07:87:ad:dd:22:93:1d:92:6e:ab:
e5:7e:a1:fd:1a:9f:cd:35:fb:54:3c:e8:68:b9:30:
48:09:58:32:23:99:d5:b7:ff:ab:52:5a:be:26:34:
8c:bd:a7:64:19:54:c6:ed:26:c0:e2:cc:73:2b:85:
19:ff
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4E:C3:97:F7:A5:50:BE:90:4C:18:6F:92:08:17:74:00:71:D2:45:35
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E1C0B/B73A179CE55A11EBB9BF8942C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E1C0B/B73A179CE55A11EBB9BF8942C4F9AE02/TsOX96VQvpBMGG-SCBd0AHHSRTU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
142541
sbgp-ipAddrBlock: critical
IPv4:
103.87.88.0/24
103.114.128.0/23
103.168.193.0/24
103.254.166.0/24
Signature Algorithm: sha256WithRSAEncryption
17:00:71:59:51:f6:3a:0a:52:b2:e2:be:01:7d:08:b9:86:fb:
c7:f9:45:04:98:0c:1f:7a:e3:c1:9a:17:ca:b2:11:75:44:d9:
5e:aa:70:9a:5a:d2:5b:60:27:66:e4:2f:16:c9:65:ba:e5:2e:
ff:60:49:08:03:ce:e6:49:c4:67:26:3e:2d:de:d9:10:45:8d:
2d:13:19:33:38:24:c1:ae:a4:f6:94:89:a5:4e:ba:6a:b6:01:
80:d3:2e:41:22:fa:81:1a:39:9b:2f:e5:e6:da:6a:24:81:94:
81:77:68:b0:8f:37:35:50:b4:17:16:01:60:f2:d8:e7:ae:36:
87:b4:e8:1b:80:11:b7:cf:54:05:40:12:d3:b5:35:4c:be:18:
4d:c8:1e:e5:3c:0d:0e:93:5f:21:e7:d9:38:78:39:37:2e:7a:
e2:eb:02:fd:37:65:94:95:75:3e:00:72:60:27:6e:7b:e1:e6:
7b:31:06:41:f0:b7:05:50:30:fc:67:25:32:8f:24:58:00:28:
e1:b6:9a:5b:d6:2d:ed:7b:8a:75:91:f5:11:4a:f2:9a:37:70:
98:cc:4d:63:62:9b:d5:5e:e9:9f:90:94:a2:2e:2e:7c:1e:b0:
b8:23:0a:21:56:8d:b2:32:1f:ea:62:18:12:40:c3:5a:f5:3d:
fd:21:d3:ca
-----BEGIN CERTIFICATE-----
MIIGLDCCBRSgAwIBAgIDAgIrMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcyNDIzMDA1NVoXDTI1MDkzMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTFDMEIxMTAvBgNVBAUTKDRFQzM5N0Y3QTU1MEJFOTA0QzE4NkY5
MjA4MTc3NDAwNzFEMjQ1MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDG6s7ZqQOgDvZHYeZCFgxw3842j81N1SUU1F07Eo0ISNTlcHQTFUgiu/LEbKrc
xc6eeMIwdkvmSnXnM0ucoQE2/LkJhxh5oj5tkpYcWIaOd94aMIM3yqAO0rE27PSb
D9ha2nB5abIyHEQwiIcNWbGNNU8w+N7zhwrZs7B6JfLF3cG8efF7MNab+218O4Cw
KEeLJ1QizaJy1GVXHyMwr84uv8wWrUzDYqLOaUHNcIj+3p4vSv6M+QsS+9HZGK56
WDF7Lwna9rvOB4et3SKTHZJuq+V+of0an801+1Q86Gi5MEgJWDIjmdW3/6tSWr4m
NIy9p2QZVMbtJsDizHMrhRn/AgMBAAGjggMhMIIDHTAdBgNVHQ4EFgQUTsOX96VQ
vpBMGG+SCBd0AHHSRTUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUxQzBCL0I3M0ExNzlDRTU1QTExRUJCOUJGODk0MkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFMUMwQi9CNzNBMTc5Q0U1NUExMUVCQjlCRjg5NDJDNEY5QUUwMi9Uc09YOTZW
UXZwQk1HRy1TQ0JkMEFISFNSVFUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAizNMDEGCCsGAQUFBwEHAQH/BCIwIDAeBAIAATAYAwQAZ1dYAwQBZ3KA
AwQAZ6jBAwQAZ/6mMA0GCSqGSIb3DQEBCwUAA4IBAQAXAHFZUfY6ClKy4r4BfQi5
hvvH+UUEmAwfeuPBmhfKshF1RNleqnCaWtJbYCdm5C8WyWW65S7/YEkIA87mScRn
Jj4t3tkQRY0tExkzOCTBrqT2lImlTrpqtgGA0y5BIvqBGjmbL+Xm2mokgZSBd2iw
jzc1ULQXFgFg8tjnrjaHtOgbgBG3z1QFQBLTtTVMvhhNyB7lPA0Ok18h59k4eDk3
Lnri6wL9N2WUlXU+AHJgJ2574eZ7MQZB8LcFUDD8ZyUyjyRYACjhtppb1i3te4p1
kfURSvKaN3CYzE1jYpvVXumfkJSiLi58HrC4IwohVo2yMh/qYhgSQMNa9T39IdPK
-----END CERTIFICATE-----
Generated at Mon Feb 17 07:48:34 2025 by rpki-client