Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tgPb8Ul9S5NK06WUH-JAt69dpIk.cer
File: tgPb8Ul9S5NK06WUH-JAt69dpIk.cer (raw, json)
Hash identifier: k2XSWu1iAjbhnDxqwCFrQizH1n7ylSDA3hDA+XNyIhY=
Subject key identifier: B6:03:DB:F1:49:7D:4B:93:4A:D3:A5:94:1F:E2:40:B7:AF:5D:A4:89
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0210DE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A7F90/BE3BDCCA68E111EF8AC59523C4F9AE02/tgPb8Ul9S5NK06WUH-JAt69dpIk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A7F90/BE3BDCCA68E111EF8AC59523C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 01 Oct 2024 07:05:44 +0000
Certificate not after: Mon 01 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 135529
IP: 103.253.228.0/24
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 135390 (0x210de)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 1 07:05:44 2024 GMT
Not After : Dec 1 00:00:00 2025 GMT
Subject: CN=A91A7F90/serialNumber=B603DBF1497D4B934AD3A5941FE240B7AF5DA489
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b7:6c:14:60:cb:97:43:d0:bd:d2:24:96:6e:83:
01:e8:01:37:68:aa:ad:aa:ac:87:86:50:31:b7:17:
67:d5:55:52:6b:ae:fe:01:43:4d:0f:cd:48:bf:f5:
10:18:2d:65:bd:65:7f:94:f7:c9:ef:2a:7c:06:83:
2b:0f:c4:8b:cc:13:00:5c:90:2e:40:b3:e8:93:87:
55:df:4e:e8:cd:cb:39:fc:5f:1d:8d:c4:47:24:96:
bc:7a:f7:b3:f9:e8:81:44:e8:b1:9c:fe:0a:fb:61:
28:a9:cc:40:a7:e6:6e:c7:42:0d:2f:49:4a:49:2b:
b4:24:34:df:89:46:0f:16:0a:f7:dd:e4:fa:7c:6e:
da:8b:2e:9d:f4:9c:dd:2a:ad:07:08:b1:44:01:26:
2e:af:b1:23:59:96:b9:7d:7b:2d:fc:04:fb:7e:cc:
d0:5c:89:59:09:aa:a1:79:b2:ab:94:1e:57:7e:ba:
9d:2c:6d:fb:ed:5a:47:1d:bc:da:cd:84:22:14:4f:
31:ef:de:46:6d:a1:d7:b4:f6:87:93:63:9c:8d:c7:
4e:3e:39:40:2e:5c:e8:7c:97:28:bc:d5:db:10:98:
ff:b9:aa:0f:e5:26:36:0f:bf:0c:14:6b:fd:f0:44:
f2:f4:8a:34:89:11:44:e3:e6:14:6e:4a:2b:42:1e:
88:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:03:DB:F1:49:7D:4B:93:4A:D3:A5:94:1F:E2:40:B7:AF:5D:A4:89
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A7F90/BE3BDCCA68E111EF8AC59523C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A7F90/BE3BDCCA68E111EF8AC59523C4F9AE02/tgPb8Ul9S5NK06WUH-JAt69dpIk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135529
sbgp-ipAddrBlock: critical
IPv4:
103.253.228.0/24
Signature Algorithm: sha256WithRSAEncryption
86:a8:95:a5:bd:6c:20:5d:b4:cb:be:c1:e8:4f:fb:f0:0c:7e:
e3:2d:28:57:fb:ee:0f:c8:1a:48:d1:04:4d:3a:6a:60:94:11:
dd:a2:6f:fb:6a:5f:a3:e8:77:7d:8b:1e:25:6e:3a:91:b9:73:
4d:ab:86:c3:bf:8d:b8:85:54:f1:ba:2f:8a:e0:9b:88:15:35:
7c:e9:f3:77:db:69:c8:15:e8:4a:6d:63:ba:66:07:5c:60:4d:
e4:ac:8c:49:bb:5f:6f:6a:27:dd:51:b7:aa:ae:56:c2:47:86:
3d:6a:57:d1:e2:33:7d:5c:b9:16:97:87:6b:a2:d1:9f:44:8c:
a0:a4:ce:50:10:06:0c:2e:56:c6:55:3d:3e:fd:54:90:02:8f:
eb:2b:a1:bb:fc:a8:6a:74:5d:74:c6:40:56:d3:6c:fa:c2:49:
46:ca:d4:b3:be:10:95:be:a6:91:08:8c:f7:73:f0:04:ab:60:
3d:f2:fa:3f:5f:1e:e0:db:04:8f:96:5c:aa:15:73:c8:ba:4a:
52:27:9d:56:8c:56:40:c2:5c:05:f4:a2:3f:28:09:b7:fb:3e:
df:7e:90:4d:c6:3d:2a:f8:b4:ba:8f:5a:0f:1c:91:a1:ec:7f:
1e:95:70:30:8d:3a:95:57:ed:85:16:e2:bf:4a:a3:e1:ef:7f:
7a:15:4b:9f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:53 2024 by rpki-client on console-fra.rpki-client.org