Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer
File: tLGKJT-2KTQ3EWY13d0ZlCi2jVs.cer (raw, json)
Hash identifier: m5Ro/TqmNmycPTgmvogUlsc4fsKRjnd+qc+id9fMFns=
Subject key identifier: B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DC34
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 01 Feb 2024 00:09:51 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 133148
IP: 103.66.228.0/23
IP: 2400:d2a0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Fri 03 May 2024 07:49:47 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121908 (0x1dc34)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 1 00:09:51 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91FD64D/serialNumber=B4B18A253FB6293437116635DDDD199428B68D5B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:0a:bc:75:9f:3a:9e:9a:ef:0a:ed:f9:10:fc:
ca:c2:90:ec:b0:ea:d7:e6:9a:c9:d7:4d:80:e7:f1:
54:46:1a:aa:7e:ce:b1:28:8a:5a:11:65:64:0f:c5:
71:55:9e:66:d8:19:da:2e:9f:e6:b0:53:3c:8e:aa:
e4:cf:89:41:71:dc:5c:6d:bb:1b:04:da:80:19:48:
16:77:fc:3e:62:d6:5d:99:a9:a1:fe:17:dd:7a:64:
93:de:0e:d2:18:a1:ad:ce:31:72:bd:df:41:db:61:
86:18:f0:89:00:7b:8f:08:2a:70:18:05:d4:9d:13:
48:3d:62:52:83:6d:79:fa:a0:04:15:e6:3a:60:d1:
90:26:c5:87:bc:1d:03:01:d2:62:05:a8:b0:67:51:
49:ae:3e:11:a8:a8:8f:2e:c8:41:57:26:cf:eb:28:
15:61:79:12:ab:1f:a9:9a:b4:c6:a5:f7:e6:49:f4:
1a:9c:1d:61:84:ec:b0:21:c8:04:20:a8:ea:dd:6e:
2a:e8:4c:f8:94:e1:26:85:6f:7c:97:d3:46:02:ed:
f9:94:87:d7:1e:72:0a:b0:04:22:83:08:3f:9a:a3:
1f:f1:b1:e7:57:5e:ed:1c:b2:43:1f:8a:39:b9:8c:
28:73:06:cf:19:ce:9b:ca:f2:ab:83:8d:5a:11:a6:
42:c5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B4:B1:8A:25:3F:B6:29:34:37:11:66:35:DD:DD:19:94:28:B6:8D:5B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FD64D/370786C8999411ED8567311FC4F9AE02/tLGKJT-2KTQ3EWY13d0ZlCi2jVs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133148
sbgp-ipAddrBlock: critical
IPv4:
103.66.228.0/23
IPv6:
2400:d2a0::/32
Signature Algorithm: sha256WithRSAEncryption
1a:09:06:c0:47:a2:55:42:ff:a5:b1:97:41:ab:ab:70:b0:26:
c1:9d:76:5c:32:91:46:cb:af:8a:21:f3:4d:10:8a:16:c4:88:
fa:1d:ab:05:73:8e:a7:d5:9e:d3:04:f8:c2:e7:e1:ee:41:e7:
ca:a0:c9:c0:70:9b:bf:c3:43:a3:d8:3a:7a:4a:88:9a:ac:77:
c5:37:1b:52:b2:7e:8c:6c:86:38:38:dc:16:67:c8:3f:01:27:
69:7a:77:b3:3b:3c:55:24:0c:44:43:52:bd:a8:f6:fe:f8:9a:
fc:3c:d2:27:72:72:3c:af:3e:01:3f:86:94:25:31:40:86:be:
ec:ed:69:c0:83:3b:d9:a1:60:ee:17:af:ef:f6:11:48:0b:74:
c1:01:2b:d9:a3:33:af:83:17:3c:9b:75:9c:c4:bc:6d:63:58:
4f:e8:83:5f:99:fb:55:a6:83:45:db:f8:e1:eb:ad:7e:50:b7:
fa:57:b8:b8:85:45:bb:dd:3d:98:72:f3:82:5e:45:43:ec:4f:
3b:57:40:73:dc:bd:6f:b1:58:8e:e2:2d:c3:b4:88:ee:1d:3e:
4c:f3:b4:eb:c0:27:67:f3:87:de:05:5d:6d:93:18:13:35:b9:
17:5c:34:94:0b:a5:39:b9:fc:77:5a:d2:cc:ff:ce:a6:ad:cb:
66:9b:07:4e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 26 11:03:14 2024 by rpki-client on console-ams.rpki-client.org