Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer
File: EY-SmFkMeYeaodj8bRf2ZUVLy7k.cer (raw, json)
Hash identifier: cw9zlBfmaXsHMHWL2T0gIAun4c+CWrbLtwVU0fQ2eWI=
Subject key identifier: 11:8F:92:98:59:0C:79:87:9A:A1:D8:FC:6D:17:F6:65:45:4B:CB:B9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CC0C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 Nov 2023 14:30:30 +0000
Certificate not after: Fri 31 Jan 2025 00:00:00 +0000
Subordinate resources: AS: 132408
IP: 180.94.2.0/23
IP: 2001:df3:2bc0::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 06:03:43 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117772 (0x1cc0c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 21 14:30:30 2023 GMT
Not After : Jan 31 00:00:00 2025 GMT
Subject: CN=A911A1FC/serialNumber=118F9298590C79879AA1D8FC6D17F665454BCBB9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:b7:8b:a3:09:e3:2f:61:2d:10:ae:8f:cf:8c:
9a:0a:aa:a4:67:c2:a6:cc:c3:da:07:56:3e:1c:de:
44:c1:dc:c5:15:e2:2b:fe:67:99:84:a1:98:8b:9c:
ad:73:90:ab:91:e5:c2:56:8e:0a:c6:18:05:c2:3c:
ba:32:52:1f:fc:a2:4c:f1:12:9d:53:83:16:02:d8:
8b:fb:84:5d:ea:f0:38:15:20:24:2e:82:b7:28:3c:
65:72:c2:70:fb:43:3e:7a:04:05:94:cf:e8:10:3e:
2b:f7:34:05:71:fe:40:bd:05:61:08:98:57:2e:3c:
1b:36:9b:6b:f1:80:e4:73:10:d5:c9:bf:26:c4:82:
9d:fb:36:a2:9d:e3:b4:72:5a:ce:af:1a:47:ff:46:
4f:59:ac:70:a1:60:b0:15:b3:47:88:89:30:fb:09:
5d:16:25:e0:9d:cb:77:ac:e7:bf:e9:2b:40:11:6c:
44:29:36:31:9a:f7:37:4e:ee:ce:31:42:4c:59:fa:
53:b7:0f:9b:28:5b:eb:d8:3c:2c:3e:3f:50:c2:34:
37:ad:a6:b4:6c:e7:e3:a3:59:6d:2e:4c:70:69:28:
bf:bb:14:95:3d:10:f9:56:56:b7:c6:3f:47:75:09:
fe:d9:d1:92:b3:b8:ba:01:66:4a:d0:00:ab:c2:7f:
db:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
11:8F:92:98:59:0C:79:87:9A:A1:D8:FC:6D:17:F6:65:45:4B:CB:B9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911A1FC/8191FB6C887A11EE9DB45B14C4F9AE02/EY-SmFkMeYeaodj8bRf2ZUVLy7k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132408
sbgp-ipAddrBlock: critical
IPv4:
180.94.2.0/23
IPv6:
2001:df3:2bc0::/48
Signature Algorithm: sha256WithRSAEncryption
1e:2e:45:7f:74:56:87:3f:6d:d7:cd:a8:eb:1e:32:b1:f7:e4:
e6:39:71:3e:a1:b6:ee:68:17:cb:97:5a:2f:f2:01:6e:d1:5e:
f1:ef:a9:99:61:4c:3b:c1:a8:5c:0c:aa:2f:41:e7:f5:02:26:
63:c6:24:5f:88:d4:08:6a:99:a9:dd:03:a5:2b:58:e8:bb:1a:
27:70:21:7e:f9:da:e1:42:14:4a:1e:e9:f1:89:7a:16:05:9c:
b9:a8:f8:53:92:b3:b8:f3:1c:84:20:e2:ed:e2:af:ca:f5:dd:
be:36:c6:3b:27:e1:d5:81:51:cd:49:da:fb:27:bd:41:40:19:
d8:20:95:1e:6c:ef:f4:9a:b6:4d:bd:0b:12:eb:0a:04:e7:94:
a9:dd:c6:68:ae:cb:fb:7a:e6:bf:25:d5:8a:f7:30:b6:6c:13:
41:a6:3d:a1:78:88:ee:03:5b:af:c6:5c:b1:cb:bb:50:ac:77:
8a:1f:33:7d:c9:48:51:aa:03:c4:76:ec:3b:c5:0f:ee:f2:01:
71:28:85:97:6a:90:e4:d4:a4:94:78:9f:92:21:3a:ba:e5:d2:
17:92:f1:c2:e9:85:a3:96:9b:95:d5:37:35:90:fe:c5:89:d8:
81:52:8a:86:64:fb:ea:dc:6b:f3:d6:4a:19:5e:4e:3c:cc:9f:
d1:74:51:37
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAcwMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTEyMTE0MzAzMFoXDTI1MDEzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMUExRkMxMTAvBgNVBAUTKDExOEY5Mjk4NTkwQzc5ODc5QUExRDhG
QzZEMTdGNjY1NDU0QkNCQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDIt4ujCeMvYS0Qro/PjJoKqqRnwqbMw9oHVj4c3kTB3MUV4iv+Z5mEoZiLnK1z
kKuR5cJWjgrGGAXCPLoyUh/8okzxEp1TgxYC2Iv7hF3q8DgVICQugrcoPGVywnD7
Qz56BAWUz+gQPiv3NAVx/kC9BWEImFcuPBs2m2vxgORzENXJvybEgp37NqKd47Ry
Ws6vGkf/Rk9ZrHChYLAVs0eIiTD7CV0WJeCdy3es57/pK0ARbEQpNjGa9zdO7s4x
QkxZ+lO3D5soW+vYPCw+P1DCNDetprRs5+OjWW0uTHBpKL+7FJU9EPlWVrfGP0d1
Cf7Z0ZKzuLoBZkrQAKvCf9vVAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUEY+SmFkM
eYeaodj8bRf2ZUVLy7kwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTFBMUZDLzgxOTFGQjZDODg3QTExRUU5REI0NUIxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExQTFGQy84MTkxRkI2Qzg4N0ExMUVFOURCNDVCMTRDNEY5QUUwMi9FWS1TbUZr
TWVZZWFvZGo4YlJmMlpVVkx5N2subWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgU4MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBtF4CMA8EAgAC
MAkDBwAgAQ3zK8AwDQYJKoZIhvcNAQELBQADggEBAB4uRX90Voc/bdfNqOseMrH3
5OY5cT6htu5oF8uXWi/yAW7RXvHvqZlhTDvBqFwMqi9B5/UCJmPGJF+I1Ahqmand
A6UrWOi7GidwIX752uFCFEoe6fGJehYFnLmo+FOSs7jzHIQg4u3ir8r13b42xjsn
4dWBUc1J2vsnvUFAGdgglR5s7/Satk29CxLrCgTnlKndxmiuy/t65r8l1Yr3MLZs
E0GmPaF4iO4DW6/GXLHLu1Csd4ofM33JSFGqA8R27DvFD+7yAXEohZdqkOTUpJR4
n5IhOrrl0heS8cLphaOWm5XVNzWQ/sWJ2IFSioZk++rca/PWShleTjzMn9F0UTc=
-----END CERTIFICATE-----
Generated at Thu May 2 08:03:24 2024 by rpki-client on console-ams.rpki-client.org