Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ICB51sn-B78YYiHRqZgny_axIq4.cer
File: ICB51sn-B78YYiHRqZgny_axIq4.cer (raw, json)
Hash identifier: eQQUTU83OsoikkMBg8gcFtiZtLmgAQNt5bYGlyOeChc=
Subject key identifier: 20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01A0EF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 02 May 2023 19:20:42 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 45.115.24.0/22
IP: 103.55.8.0/22
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 02 May 2024 21:10:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 106735 (0x1a0ef)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 2 19:20:42 2023 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A9178B2B/serialNumber=202079D6C9FE07BF186221D1A99827CBF6B122AE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:5d:40:a3:22:3b:27:f6:dc:8c:16:0f:07:8a:
50:3a:2e:10:ab:b8:ba:78:f5:25:3b:28:43:56:29:
da:8b:23:e3:03:16:65:e6:69:50:fa:5d:51:d7:64:
29:88:67:f5:54:84:3d:00:96:77:08:1a:e4:ae:8d:
01:ed:1e:6d:df:28:1d:f0:63:23:18:05:51:95:44:
da:a1:d8:b6:c4:4d:98:03:75:ef:74:af:f0:2a:b4:
ff:dc:bb:9c:e8:5f:40:04:f9:8d:79:b1:20:66:2b:
3c:fb:ee:00:a5:4c:52:0f:03:eb:d4:43:42:c9:99:
ea:3d:4e:9d:28:ac:77:42:83:dd:65:03:6f:23:5d:
e7:b4:46:ac:7c:ac:93:59:e6:1e:5c:d3:2c:2d:cf:
55:0d:a2:b3:ff:d7:cf:36:28:b6:b4:d0:87:84:1a:
ac:0f:1c:8b:5c:6e:5d:94:8f:05:51:4b:3b:4a:89:
e0:86:47:c5:30:18:6d:a1:8e:c4:58:d1:e8:a6:a1:
ab:1d:19:c5:13:dc:10:b2:f9:8e:5d:e6:f4:09:d1:
5f:c8:d8:7b:eb:1c:57:52:7a:bc:40:98:cf:85:42:
26:90:ed:f4:a8:7e:99:09:9f:39:bb:1f:eb:54:ee:
c3:1d:f8:d3:1d:f5:54:40:66:66:aa:aa:3a:a4:51:
1d:cb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:20:79:D6:C9:FE:07:BF:18:62:21:D1:A9:98:27:CB:F6:B1:22:AE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9178B2B/BFDD222E3C4411EAAEE6F70AC4F9AE02/ICB51sn-B78YYiHRqZgny_axIq4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.115.24.0/22
103.55.8.0/22
Signature Algorithm: sha256WithRSAEncryption
93:78:f7:a2:57:5a:86:79:c4:f1:5e:21:19:09:bf:53:23:81:
49:cf:7d:8f:b1:ba:b8:c6:fb:33:2e:0e:4d:af:40:23:9c:3e:
37:0b:a5:a2:be:9a:18:42:df:c2:c6:8f:05:80:2a:28:2e:cd:
16:07:79:47:02:ac:dc:99:c4:8a:c5:ac:5a:41:77:31:26:77:
bf:e3:d4:13:8d:d0:7f:58:7d:86:e1:b6:27:5a:5b:eb:e4:73:
2a:84:a2:42:2b:6d:22:87:11:2e:1b:5b:31:19:d5:31:7d:b0:
a0:f0:e2:a8:8f:68:bd:fa:36:02:09:f2:f3:ec:e6:ff:1e:f0:
6c:5f:41:ed:7c:fa:6b:9a:ef:66:e3:6f:69:91:8b:3e:fd:65:
51:7f:02:01:26:42:b1:d4:cc:c9:ef:3e:03:2e:9c:49:79:da:
5a:a2:30:74:c9:01:bf:08:d4:df:02:00:22:14:2b:c7:b6:d2:
3d:7d:1d:97:54:89:8b:11:12:df:da:c2:6f:28:45:ee:45:24:
7c:c6:93:6d:56:28:f3:33:fa:c7:8c:64:1b:c9:c6:55:08:78:
a6:40:75:16:45:b6:7f:34:43:4d:55:aa:a3:00:0f:de:a0:09:
c4:3c:7f:79:4b:9a:54:bb:71:eb:50:9e:a6:e0:05:d4:63:a4:
1a:4f:b3:e9
-----BEGIN CERTIFICATE-----
MIIGBDCCBOygAwIBAgIDAaDvMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDUwMjE5MjA0MloXDTI0MDczMDAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNzhCMkIxMTAvBgNVBAUTKDIwMjA3OUQ2QzlGRTA3QkYxODYyMjFE
MUE5OTgyN0NCRjZCMTIyQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDNXUCjIjsn9tyMFg8HilA6LhCruLp49SU7KENWKdqLI+MDFmXmaVD6XVHXZCmI
Z/VUhD0AlncIGuSujQHtHm3fKB3wYyMYBVGVRNqh2LbETZgDde90r/AqtP/cu5zo
X0AE+Y15sSBmKzz77gClTFIPA+vUQ0LJmeo9Tp0orHdCg91lA28jXee0Rqx8rJNZ
5h5c0ywtz1UNorP/1882KLa00IeEGqwPHItcbl2UjwVRSztKieCGR8UwGG2hjsRY
0eimoasdGcUT3BCy+Y5d5vQJ0V/I2HvrHFdSerxAmM+FQiaQ7fSofpkJnzm7H+tU
7sMd+NMd9VRAZmaqqjqkUR3LAgMBAAGjggL5MIIC9TAdBgNVHQ4EFgQUICB51sn+
B78YYiHRqZgny/axIq4wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTc4QjJCL0JGREQyMjJFM0M0NDExRUFBRUU2RjcwQUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE3OEIyQi9CRkREMjIyRTNDNDQxMUVBQUVFNkY3MEFDNEY5QUUwMi9JQ0I1MXNu
LUI3OFlZaUhScVpnbnlfYXhJcTQubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8EFjAU
MBIEAgABMAwDBAItcxgDBAJnNwgwDQYJKoZIhvcNAQELBQADggEBAJN496JXWoZ5
xPFeIRkJv1MjgUnPfY+xurjG+zMuDk2vQCOcPjcLpaK+mhhC38LGjwWAKiguzRYH
eUcCrNyZxIrFrFpBdzEmd7/j1BON0H9YfYbhtidaW+vkcyqEokIrbSKHES4bWzEZ
1TF9sKDw4qiPaL36NgIJ8vPs5v8e8GxfQe18+mua72bjb2mRiz79ZVF/AgEmQrHU
zMnvPgMunEl52lqiMHTJAb8I1N8CACIUK8e20j19HZdUiYsREt/awm8oRe5FJHzG
k21WKPMz+seMZBvJxlUIeKZAdRZFtn80Q01VqqMAD96gCcQ8f3lLmlS7cetQnqbg
BdRjpBpPs+k=
-----END CERTIFICATE-----
Generated at Thu Apr 25 22:34:18 2024 by rpki-client on console-fra.rpki-client.org