Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tg1afDY_D02TL-MXuQzmz4DSg8k.cer
File: tg1afDY_D02TL-MXuQzmz4DSg8k.cer (raw, json)
Hash identifier: s3x89Qfohlna88pWZEEJJjeGdYcs8faA3m9g9Bt5RKE=
Subject key identifier: B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E24A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 02 Mar 2024 12:34:28 +0000
Certificate not after: Thu 01 May 2025 00:00:00 +0000
Subordinate resources: AS: 140042
IP: 103.147.200.0/23
IP: 2405:bfc0::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 23 Apr 2024 06:13:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123466 (0x1e24a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 2 12:34:28 2024 GMT
Not After : May 1 00:00:00 2025 GMT
Subject: CN=A9118309/serialNumber=B60D5A7C363F0F4D932FE317B90CE6CF80D283C9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c6:73:3d:76:28:c8:4c:4c:66:5a:66:89:78:ab:
0f:cb:78:dd:0c:e3:f3:85:5d:d4:8f:04:3d:44:24:
7c:99:44:31:ee:ad:78:ed:49:b7:c3:7c:2e:2f:88:
fc:2f:5a:0f:c6:92:59:79:14:37:d2:e9:53:93:13:
a2:7d:55:cb:04:c2:a5:a5:16:84:03:55:c7:62:48:
b3:81:93:f9:07:b3:58:f7:0e:0e:2e:59:78:5b:d2:
20:37:c7:43:85:0d:14:50:34:53:25:9b:c9:c3:9f:
e5:b5:b9:7c:49:c8:48:54:43:ec:7f:64:2e:38:05:
d7:90:ed:b1:a0:4e:74:b6:3e:b2:5f:74:7e:49:69:
c1:ee:47:b4:dd:63:fd:3c:f4:41:b6:fd:e8:82:ec:
ff:36:50:02:c4:0a:28:0e:ec:15:ac:d3:cd:19:f3:
a3:cb:f3:79:50:d6:d2:29:17:c8:c0:22:93:80:d9:
93:bb:63:53:7a:54:43:fd:eb:00:5b:b5:80:d2:52:
c8:23:2c:4e:22:85:ce:9c:6e:4c:85:60:fc:f1:ac:
05:cb:b8:82:44:87:9b:37:16:07:73:16:9d:db:2b:
c1:3c:39:ca:2b:c6:88:1b:64:79:6d:69:6b:10:53:
cb:da:67:14:bd:d4:79:f7:dd:81:c0:25:34:0c:40:
21:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:0D:5A:7C:36:3F:0F:4D:93:2F:E3:17:B9:0C:E6:CF:80:D2:83:C9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9118309/1A48DC866FFC11EA88F3D22BC4F9AE02/tg1afDY_D02TL-MXuQzmz4DSg8k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
140042
sbgp-ipAddrBlock: critical
IPv4:
103.147.200.0/23
IPv6:
2405:bfc0::/32
Signature Algorithm: sha256WithRSAEncryption
23:1c:68:28:71:94:9e:a4:f2:ac:a7:4a:ac:40:cf:f8:e2:54:
0b:37:84:1b:3b:6b:a1:03:03:b5:73:95:81:3f:9f:eb:f6:4b:
1b:65:ad:d9:d8:4d:e7:6a:99:5f:1f:fc:43:17:40:08:4e:0d:
c7:97:d1:ed:9a:3c:8b:2e:a5:13:c6:e7:b4:1d:d3:d0:26:07:
b3:e9:23:be:84:b3:d2:e7:b7:61:41:3d:2e:17:75:a1:e6:27:
06:dc:e1:4c:25:10:12:5f:51:a9:98:b6:6b:e9:96:81:bc:d9:
03:86:a0:20:76:52:fa:5f:00:b7:d9:38:c6:c9:45:ea:c0:53:
2d:0d:a9:00:04:3b:2d:dd:28:21:18:c0:c4:eb:a5:90:0d:89:
a1:bb:ef:ab:77:58:bf:88:fd:94:ae:f8:a1:41:52:0b:b8:66:
d4:53:8f:6e:b1:6f:9a:00:10:2b:6b:6a:43:9e:8e:12:98:45:
8c:74:4e:25:6c:50:94:0b:ff:80:e8:7b:c1:6f:91:d1:62:f4:
07:67:8c:f3:71:2a:dc:03:d7:ae:2f:17:f3:b1:ad:01:43:90:
26:92:e3:00:b3:ce:14:3e:c8:97:57:aa:6a:28:a9:b4:b0:63:
f9:3d:2b:1f:ae:9b:c0:7c:bc:37:2a:be:04:94:e2:e9:0f:a5:
60:f8:32:46
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 16 06:50:15 2024 by rpki-client on console-fra.rpki-client.org