Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ilgWVckip6USHgD7ekJ-AZrHMHs.cer
File: ilgWVckip6USHgD7ekJ-AZrHMHs.cer (raw, json)
Hash identifier: 5rRmW2KeJawPNZXSCO1GNoxc1/4NX2/aRRYqmi6uDVc=
Subject key identifier: 8A:58:16:55:C9:22:A7:A5:12:1E:00:FB:7A:42:7E:01:9A:C7:30:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AFAC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 12 Jul 2023 08:11:07 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 151608
IP: 103.36.88.0/23
IP: 2001:df2:ae40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 09 May 2024 08:07:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 110508 (0x1afac)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 12 08:11:07 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9154376/serialNumber=8A581655C922A7A5121E00FB7A427E019AC7307B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:38:34:5c:d6:c2:0e:b0:4c:2d:2c:f6:ec:55:
c8:dd:be:02:42:9d:6f:08:53:06:ef:88:25:30:38:
41:39:5a:d9:02:42:d1:ae:71:d0:fe:f2:35:fb:2b:
44:4d:4a:18:69:cb:98:40:47:b9:11:12:bf:3b:08:
49:e1:22:32:54:1f:02:97:2b:2d:2a:22:16:c9:6f:
14:24:7a:a9:ba:88:f4:67:c4:b6:8f:f4:4f:f5:f1:
68:26:b7:f7:9d:6a:09:8e:ef:bd:d0:43:e2:04:ec:
5e:1c:31:4c:2a:e6:94:37:06:62:a6:92:33:ec:f2:
47:7d:a6:99:89:22:02:cb:41:c1:48:1e:60:3c:0e:
65:bc:d4:c2:7a:e3:e1:55:0a:f8:56:d3:48:d7:cc:
4d:7d:6f:dc:b9:e4:f3:24:62:b0:02:3a:ef:56:33:
17:72:aa:9d:88:a6:b7:6b:9e:e2:e8:1f:40:49:fc:
b2:78:b7:e7:7a:5b:ff:69:40:82:00:31:21:87:7c:
cf:c9:3a:0e:b3:56:3a:ea:bd:56:05:20:53:d2:92:
de:db:8f:66:75:bf:35:87:a9:05:07:d6:9a:73:7f:
cc:13:dd:da:a5:00:fe:f3:d8:62:00:c3:eb:7d:38:
78:79:9c:42:01:17:3e:f0:b2:48:97:5c:16:3c:52:
18:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:58:16:55:C9:22:A7:A5:12:1E:00:FB:7A:42:7E:01:9A:C7:30:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151608
sbgp-ipAddrBlock: critical
IPv4:
103.36.88.0/23
IPv6:
2001:df2:ae40::/48
Signature Algorithm: sha256WithRSAEncryption
5e:2f:e5:ad:c2:f0:91:4a:02:cc:29:fe:65:ad:1d:f1:85:42:
76:de:9c:a9:92:dc:bf:40:12:34:a8:3f:e7:28:62:8b:59:5b:
5a:f8:da:39:b8:c4:7c:52:42:bc:2d:65:7a:72:fd:e6:bc:53:
cf:e0:38:b9:45:84:89:64:21:39:92:c9:35:e6:1e:f9:8b:34:
9f:84:f5:56:1a:b1:3d:3e:7a:f4:8a:dd:c1:21:95:04:81:10:
dd:ff:52:8f:dd:76:c2:97:ea:04:4e:41:c8:3b:e4:63:cb:8a:
6b:53:bd:6b:36:56:b7:73:b0:c1:a2:0c:3a:7a:06:5e:bb:4d:
b8:da:d7:cf:b8:80:0e:3f:f6:e5:cd:97:a2:5b:c1:4d:ef:6e:
9c:db:ac:1a:05:95:68:cf:63:fb:4c:01:0b:02:00:f8:3d:2b:
df:cc:81:47:2d:10:5c:8d:f6:d4:2a:e8:81:e9:3e:7d:2d:67:
d0:db:28:c9:5f:43:d3:50:7e:d0:2d:fc:8c:7f:ba:0f:d2:75:
82:a9:d0:6f:9a:39:72:99:81:fd:3c:b7:b0:ef:b1:64:47:cc:
63:30:d7:f6:d2:e6:cf:00:8d:94:cf:e8:ae:6a:03:7f:fa:ef:
7e:a7:8d:45:9e:be:73:89:1b:e0:41:98:b8:fa:77:c8:f1:be:
9d:46:4e:4a
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAa+sMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDcxMjA4MTEwN1oXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTQzNzYxMTAvBgNVBAUTKDhBNTgxNjU1QzkyMkE3QTUxMjFFMDBG
QjdBNDI3RTAxOUFDNzMwN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC8ODRc1sIOsEwtLPbsVcjdvgJCnW8IUwbviCUwOEE5WtkCQtGucdD+8jX7K0RN
Shhpy5hAR7kREr87CEnhIjJUHwKXKy0qIhbJbxQkeqm6iPRnxLaP9E/18Wgmt/ed
agmO773QQ+IE7F4cMUwq5pQ3BmKmkjPs8kd9ppmJIgLLQcFIHmA8DmW81MJ64+FV
CvhW00jXzE19b9y55PMkYrACOu9WMxdyqp2IprdrnuLoH0BJ/LJ4t+d6W/9pQIIA
MSGHfM/JOg6zVjrqvVYFIFPSkt7bj2Z1vzWHqQUH1ppzf8wT3dqlAP7z2GIAw+t9
OHh5nEIBFz7wskiXXBY8UhiNAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUilgWVcki
p6USHgD7ekJ+AZrHMHswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU0Mzc2L0EzNTdENzk2MjA4QjExRUVBOEI1ODkzNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1NDM3Ni9BMzU3RDc5NjIwOEIxMUVFQThCNTg5MzRDNEY5QUUwMi9pbGdXVmNr
aXA2VVNIZ0Q3ZWtKLUFackhNSHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlA4MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZyRYMA8EAgAC
MAkDBwAgAQ3yrkAwDQYJKoZIhvcNAQELBQADggEBAF4v5a3C8JFKAswp/mWtHfGF
QnbenKmS3L9AEjSoP+coYotZW1r42jm4xHxSQrwtZXpy/ea8U8/gOLlFhIlkITmS
yTXmHvmLNJ+E9VYasT0+evSK3cEhlQSBEN3/Uo/ddsKX6gROQcg75GPLimtTvWs2
VrdzsMGiDDp6Bl67Tbja18+4gA4/9uXNl6JbwU3vbpzbrBoFlWjPY/tMAQsCAPg9
K9/MgUctEFyN9tQq6IHpPn0tZ9DbKMlfQ9NQftAt/Ix/ug/SdYKp0G+aOXKZgf08
t7DvsWRHzGMw1/bS5s8AjZTP6K5qA3/6736njUWevnOJG+BBmLj6d8jxvp1GTko=
-----END CERTIFICATE-----
Generated at Thu May 2 08:52:52 2024 by rpki-client on console-fra.rpki-client.org