Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ilgWVckip6USHgD7ekJ-AZrHMHs.cer
File: ilgWVckip6USHgD7ekJ-AZrHMHs.cer (raw, json)
Hash identifier: Hysp66HF4BLKn5N47NIAOvgkKps4m9bSbCvXeSHtr6I=
Subject key identifier: 8A:58:16:55:C9:22:A7:A5:12:1E:00:FB:7A:42:7E:01:9A:C7:30:7B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FEB7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 07 Jul 2024 14:30:48 +0000
Certificate not after: Fri 31 Oct 2025 00:00:00 +0000
Subordinate resources: AS: 151608
IP: 103.36.88.0/23
IP: 2001:df2:ae40::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130743 (0x1feb7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 7 14:30:48 2024 GMT
Not After : Oct 31 00:00:00 2025 GMT
Subject: CN=A9154376/serialNumber=8A581655C922A7A5121E00FB7A427E019AC7307B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:38:34:5c:d6:c2:0e:b0:4c:2d:2c:f6:ec:55:
c8:dd:be:02:42:9d:6f:08:53:06:ef:88:25:30:38:
41:39:5a:d9:02:42:d1:ae:71:d0:fe:f2:35:fb:2b:
44:4d:4a:18:69:cb:98:40:47:b9:11:12:bf:3b:08:
49:e1:22:32:54:1f:02:97:2b:2d:2a:22:16:c9:6f:
14:24:7a:a9:ba:88:f4:67:c4:b6:8f:f4:4f:f5:f1:
68:26:b7:f7:9d:6a:09:8e:ef:bd:d0:43:e2:04:ec:
5e:1c:31:4c:2a:e6:94:37:06:62:a6:92:33:ec:f2:
47:7d:a6:99:89:22:02:cb:41:c1:48:1e:60:3c:0e:
65:bc:d4:c2:7a:e3:e1:55:0a:f8:56:d3:48:d7:cc:
4d:7d:6f:dc:b9:e4:f3:24:62:b0:02:3a:ef:56:33:
17:72:aa:9d:88:a6:b7:6b:9e:e2:e8:1f:40:49:fc:
b2:78:b7:e7:7a:5b:ff:69:40:82:00:31:21:87:7c:
cf:c9:3a:0e:b3:56:3a:ea:bd:56:05:20:53:d2:92:
de:db:8f:66:75:bf:35:87:a9:05:07:d6:9a:73:7f:
cc:13:dd:da:a5:00:fe:f3:d8:62:00:c3:eb:7d:38:
78:79:9c:42:01:17:3e:f0:b2:48:97:5c:16:3c:52:
18:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8A:58:16:55:C9:22:A7:A5:12:1E:00:FB:7A:42:7E:01:9A:C7:30:7B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9154376/A357D796208B11EEA8B58934C4F9AE02/ilgWVckip6USHgD7ekJ-AZrHMHs.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
151608
sbgp-ipAddrBlock: critical
IPv4:
103.36.88.0/23
IPv6:
2001:df2:ae40::/48
Signature Algorithm: sha256WithRSAEncryption
b0:e9:e2:42:b7:1a:db:62:fe:b5:bf:8f:f9:4b:ec:cc:31:fd:
57:f9:6b:76:5d:1f:81:46:3d:a2:a9:70:25:c2:a9:77:18:a2:
69:32:c0:62:6d:fd:7e:a1:83:9d:3f:a7:38:a9:a4:2a:6d:f2:
44:43:19:47:05:e2:b1:08:85:35:7b:e9:16:79:32:bb:90:1c:
af:50:09:13:9f:cc:cd:b8:75:71:62:31:6f:d8:0f:28:86:9a:
72:0e:23:6f:2e:41:6d:07:21:d4:0a:38:18:34:68:6f:01:d3:
4e:22:d0:0a:75:86:54:02:c4:72:43:ce:55:3c:24:59:51:71:
fd:41:02:fc:ad:d0:c6:72:8c:c1:33:d9:e5:88:ff:11:99:85:
80:e5:c8:6e:3f:b7:60:24:40:e7:b9:a3:62:f9:5f:92:9b:90:
b4:ad:fa:00:1c:5c:9a:d7:9a:96:5c:e6:6c:7c:ce:a3:bc:f2:
da:05:ed:cb:b6:be:9f:bb:85:2e:a0:81:f1:85:6f:c5:cd:72:
8b:ab:31:6d:b2:c9:dc:b6:57:26:22:01:99:df:11:78:1b:23:
56:d1:49:55:65:22:28:0c:86:7a:f9:ba:15:cb:f6:d1:0a:06:
df:fc:08:9b:54:3d:7f:de:16:c8:b7:5a:3e:21:a4:e2:71:68:
64:9c:79:83
-----BEGIN CERTIFICATE-----
MIIGKzCCBROgAwIBAgIDAf63MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcwNzE0MzA0OFoXDTI1MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTQzNzYxMTAvBgNVBAUTKDhBNTgxNjU1QzkyMkE3QTUxMjFFMDBG
QjdBNDI3RTAxOUFDNzMwN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQC8ODRc1sIOsEwtLPbsVcjdvgJCnW8IUwbviCUwOEE5WtkCQtGucdD+8jX7K0RN
Shhpy5hAR7kREr87CEnhIjJUHwKXKy0qIhbJbxQkeqm6iPRnxLaP9E/18Wgmt/ed
agmO773QQ+IE7F4cMUwq5pQ3BmKmkjPs8kd9ppmJIgLLQcFIHmA8DmW81MJ64+FV
CvhW00jXzE19b9y55PMkYrACOu9WMxdyqp2IprdrnuLoH0BJ/LJ4t+d6W/9pQIIA
MSGHfM/JOg6zVjrqvVYFIFPSkt7bj2Z1vzWHqQUH1ppzf8wT3dqlAP7z2GIAw+t9
OHh5nEIBFz7wskiXXBY8UhiNAgMBAAGjggMgMIIDHDAdBgNVHQ4EFgQUilgWVcki
p6USHgD7ekJ+AZrHMHswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU0Mzc2L0EzNTdENzk2MjA4QjExRUVBOEI1ODkzNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1NDM3Ni9BMzU3RDc5NjIwOEIxMUVFQThCNTg5MzRDNEY5QUUwMi9pbGdXVmNr
aXA2VVNIZ0Q3ZWtKLUFackhNSHMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAlA4MDAGCCsGAQUFBwEHAQH/BCEwHzAMBAIAATAGAwQBZyRYMA8EAgAC
MAkDBwAgAQ3yrkAwDQYJKoZIhvcNAQELBQADggEBALDp4kK3Gtti/rW/j/lL7Mwx
/Vf5a3ZdH4FGPaKpcCXCqXcYomkywGJt/X6hg50/pzippCpt8kRDGUcF4rEIhTV7
6RZ5MruQHK9QCROfzM24dXFiMW/YDyiGmnIOI28uQW0HIdQKOBg0aG8B004i0Ap1
hlQCxHJDzlU8JFlRcf1BAvyt0MZyjMEz2eWI/xGZhYDlyG4/t2AkQOe5o2L5X5Kb
kLSt+gAcXJrXmpZc5mx8zqO88toF7cu2vp+7hS6ggfGFb8XNcourMW2yydy2VyYi
AZnfEXgbI1bRSVVlIigMhnr5uhXL9tEKBt/8CJtUPX/eFsi3Wj4hpOJxaGSceYM=
-----END CERTIFICATE-----
Generated at Sat Nov 23 05:03:44 2024 by rpki-client on console-fra.rpki-client.org