Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer
File: ICB51sn-B78YYiHRqZgny_axIq4.cer (raw, json)
Hash identifier: eMj/vs1eUFz4aiIKrQ56uuSOanjNDQuny6jr6FFm2cg=
Subject key identifier: 20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01EFF1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 04 May 2024 16:01:50 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 45.115.24.0/22
IP: 103.55.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Wed 15 May 2024 02:42:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 126961 (0x1eff1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 4 16:01:50 2024 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9178B2B/serialNumber=202079D6C9FE07BF186221D1A99827CBF6B122AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:40:a3:22:3b:27:f6:dc:8c:16:0f:07:8a:
50:3a:2e:10:ab:b8:ba:78:f5:25:3b:28:43:56:29:
da:8b:23:e3:03:16:65:e6:69:50:fa:5d:51:d7:64:
29:88:67:f5:54:84:3d:00:96:77:08:1a:e4:ae:8d:
01:ed:1e:6d:df:28:1d:f0:63:23:18:05:51:95:44:
da:a1:d8:b6:c4:4d:98:03:75:ef:74:af:f0:2a:b4:
ff:dc:bb:9c:e8:5f:40:04:f9:8d:79:b1:20:66:2b:
3c:fb:ee:00:a5:4c:52:0f:03:eb:d4:43:42:c9:99:
ea:3d:4e:9d:28:ac:77:42:83:dd:65:03:6f:23:5d:
e7:b4:46:ac:7c:ac:93:59:e6:1e:5c:d3:2c:2d:cf:
55:0d:a2:b3:ff:d7:cf:36:28:b6:b4:d0:87:84:1a:
ac:0f:1c:8b:5c:6e:5d:94:8f:05:51:4b:3b:4a:89:
e0:86:47:c5:30:18:6d:a1:8e:c4:58:d1:e8:a6:a1:
ab:1d:19:c5:13:dc:10:b2:f9:8e:5d:e6:f4:09:d1:
5f:c8:d8:7b:eb:1c:57:52:7a:bc:40:98:cf:85:42:
26:90:ed:f4:a8:7e:99:09:9f:39:bb:1f:eb:54:ee:
c3:1d:f8:d3:1d:f5:54:40:66:66:aa:aa:3a:a4:51:
1d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.115.24.0/22
103.55.8.0/22
Signature Algorithm: sha256WithRSAEncryption
92:8e:2c:fc:19:11:f8:1e:f0:21:6e:37:10:1c:c0:19:9f:6d:
93:45:eb:ef:00:62:23:c8:c3:0c:e8:b0:19:0c:7d:6f:05:f1:
b3:59:b1:b7:f2:81:3a:7f:2d:d5:b6:75:ef:20:46:62:4f:28:
3b:4c:25:10:62:31:6d:fc:ef:75:1f:e7:a8:a3:49:5e:eb:3a:
30:4f:47:b4:69:48:b0:37:8d:26:9e:49:4e:67:a6:8a:0c:a0:
14:64:13:01:67:c2:9c:2a:02:f9:59:6a:d6:08:51:f3:bf:92:
7f:7c:69:f2:7f:de:59:cc:c3:f0:66:e7:87:12:0d:1b:d4:01:
fc:5a:27:67:2d:84:d1:9c:25:ca:00:a7:56:f8:de:5a:a7:08:
f6:0e:ed:f7:c5:45:c1:9d:fd:f0:4c:98:1a:f1:69:2c:d0:9a:
6c:c5:62:8b:2e:98:57:73:40:19:92:fb:72:bd:bc:d4:0a:64:
cd:5e:e7:33:25:1e:f4:4f:f4:30:70:94:2c:5e:eb:f8:9d:45:
a8:91:9f:de:e7:52:ee:4d:b8:0f:61:34:15:50:55:e3:69:e5:
a1:14:b8:39:0b:50:b1:37:d3:c4:8f:c8:c8:2a:29:08:61:1b:
ec:e8:68:71:61:6b:4c:49:f0:ae:c3:ce:d0:04:a2:99:50:de:
20:1a:f6:db
-----BEGIN CERTIFICATE-----
MIIGBDCCBOygAwIBAgIDAe/xMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDUwNDE2MDE1MFoXDTI1MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzhCMkIxMTAvBgNVBAUTKDIwMjA3OUQ2QzlGRTA3QkYxODYyMjFE
MUE5OTgyN0NCRjZCMTIyQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDNXUCjIjsn9tyMFg8HilA6LhCruLp49SU7KENWKdqLI+MDFmXmaVD6XVHXZCmI
Z/VUhD0AlncIGuSujQHtHm3fKB3wYyMYBVGVRNqh2LbETZgDde90r/AqtP/cu5zo
X0AE+Y15sSBmKzz77gClTFIPA+vUQ0LJmeo9Tp0orHdCg91lA28jXee0Rqx8rJNZ
5h5c0ywtz1UNorP/1882KLa00IeEGqwPHItcbl2UjwVRSztKieCGR8UwGG2hjsRY
0eimoasdGcUT3BCy+Y5d5vQJ0V/I2HvrHFdSerxAmM+FQiaQ7fSofpkJnzm7H+tU
7sMd+NMd9VRAZmaqqjqkUR3LAgMBAAGjggL5MIIC9TAdBgNVHQ4EFgQUICB51sn+
B78YYiHRqZgny/axIq4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc4QjJCL0JGREQyMjJFM0M0NDExRUFBRUU2RjcwQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3OEIyQi9CRkREMjIyRTNDNDQxMUVBQUVFNkY3MEFDNEY5QUUwMi9JQ0I1MXNu
LUI3OFlZaUhScVpnbnlfYXhJcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8EFjAU
MBIEAgABMAwDBAItcxgDBAJnNwgwDQYJKoZIhvcNAQELBQADggEBAJKOLPwZEfge
8CFuNxAcwBmfbZNF6+8AYiPIwwzosBkMfW8F8bNZsbfygTp/LdW2de8gRmJPKDtM
JRBiMW3873Uf56ijSV7rOjBPR7RpSLA3jSaeSU5npooMoBRkEwFnwpwqAvlZatYI
UfO/kn98afJ/3lnMw/Bm54cSDRvUAfxaJ2cthNGcJcoAp1b43lqnCPYO7ffFRcGd
/fBMmBrxaSzQmmzFYosumFdzQBmS+3K9vNQKZM1e5zMlHvRP9DBwlCxe6/idRaiR
n97nUu5NuA9hNBVQVeNp5aEUuDkLULE308SPyMgqKQhhG+zoaHFha0xJ8K7DztAE
oplQ3iAa9ts=
-----END CERTIFICATE-----
Generated at Thu May 9 03:29:52 2024 by rpki-client on console-fra.rpki-client.org