Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pAislKDTNvRzJJBakYrySQLw3os.cer
File: pAislKDTNvRzJJBakYrySQLw3os.cer (raw, json)
Hash identifier: XMneqtnil+TMlJKeSax0RP5qvwtd7t5JVHuNgPkgHKI=
Subject key identifier: A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FCAE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 01 Jul 2024 07:01:05 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 55532
IP: 43.245.40.0/22
IP: 103.1.192.0/22
IP: 202.9.94.0/23
IP: 203.25.173.0/24
IP: 2001:df0:a1::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Sat 30 Nov 2024 02:50:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130222 (0x1fcae)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 1 07:01:05 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A9158620/serialNumber=A408AC94A0D336F47324905A918AF24902F0DE8B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:15:e4:73:f3:64:f9:4e:66:f5:53:87:01:68:
43:26:7e:98:df:78:4f:79:9b:8f:e4:3d:2a:65:23:
91:15:7f:ec:69:5c:e5:97:1f:9a:dd:d2:01:63:58:
2f:80:54:a7:9e:66:72:58:6b:d1:7a:ca:95:d9:25:
86:b3:5c:3c:12:4f:04:dc:e4:2d:44:5d:40:29:eb:
e1:df:6a:b9:0f:5c:fd:83:7c:a1:8c:d5:c0:f9:fd:
ab:99:b9:fc:38:fa:0d:09:f5:ca:01:b2:9e:63:ac:
65:88:63:af:46:61:0e:ac:57:f9:7d:c3:34:5d:8a:
65:ca:5c:b5:cc:fe:e9:47:db:8e:9f:df:7a:d2:be:
43:63:ca:af:ee:45:99:9e:30:1b:6e:75:d9:f4:18:
3c:08:34:1b:97:d1:e6:1b:c5:e9:68:44:9f:6a:46:
eb:4f:ab:14:40:6e:22:6a:ca:aa:71:9c:4f:22:a5:
6d:49:54:ef:83:af:9d:f1:84:7c:40:8f:e6:96:46:
dd:8c:4d:14:bf:ad:37:39:ea:8b:ed:0b:c7:72:0e:
1c:71:ed:7e:79:e7:01:9c:4b:80:f4:f6:5c:f8:7d:
60:9e:1d:7f:1c:6b:ce:14:f0:21:3e:cc:f9:28:1e:
15:55:f8:a4:72:b0:91:8e:7e:8f:ae:f2:97:14:17:
45:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:08:AC:94:A0:D3:36:F4:73:24:90:5A:91:8A:F2:49:02:F0:DE:8B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9158620/0E919934884211EEA7D8C814C4F9AE02/pAislKDTNvRzJJBakYrySQLw3os.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55532
sbgp-ipAddrBlock: critical
IPv4:
43.245.40.0/22
103.1.192.0/22
202.9.94.0/23
203.25.173.0/24
IPv6:
2001:df0:a1::/48
Signature Algorithm: sha256WithRSAEncryption
27:cb:90:00:24:10:5f:3f:ff:6c:8f:49:b6:49:15:d8:d9:78:
41:ad:7b:38:31:f7:34:e1:69:28:f5:d2:86:3d:4c:2d:25:37:
93:2a:2e:f3:bb:a1:a9:12:d0:d2:94:f4:3e:fc:a0:67:8e:a6:
99:36:84:c9:7c:ba:22:91:c9:82:ca:1a:95:7b:da:2f:f2:cb:
33:b1:7c:30:f1:14:14:02:be:27:b8:25:5b:e5:4c:38:d2:4c:
48:9f:8c:45:d5:5a:46:12:e2:19:b8:6e:6f:6c:5e:59:8b:e9:
bb:fb:fe:e5:7c:f5:c8:56:64:44:ba:69:c6:81:a3:61:0b:2f:
db:a8:cd:7d:eb:c7:63:a8:2e:7c:2e:b7:36:3f:94:82:bd:e0:
8a:6f:13:5f:43:d7:04:20:7a:11:21:b3:81:b7:61:2a:19:ff:
24:12:8c:3e:1c:76:45:48:8f:a4:f5:2a:4d:de:93:4d:81:51:
6b:9b:50:2e:05:18:79:e3:b3:f6:da:35:6c:0a:08:e7:2b:f6:
0f:59:f3:ca:58:b3:e6:41:8e:20:0a:5a:ff:19:d0:c9:59:35:
3c:26:2c:49:e9:c5:84:d1:5c:cf:6d:1f:d3:7f:1a:e5:6d:72:
2a:fe:9a:1d:5a:f5:fe:bf:db:41:18:6f:30:b9:57:ed:9b:1f:
96:87:e8:0e
-----BEGIN CERTIFICATE-----
MIIGPTCCBSWgAwIBAgIDAfyuMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcwMTA3MDEwNVoXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNTg2MjAxMTAvBgNVBAUTKEE0MDhBQzk0QTBEMzM2RjQ3MzI0OTA1
QTkxOEFGMjQ5MDJGMERFOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDAFeRz82T5Tmb1U4cBaEMmfpjfeE95m4/kPSplI5EVf+xpXOWXH5rd0gFjWC+A
VKeeZnJYa9F6ypXZJYazXDwSTwTc5C1EXUAp6+HfarkPXP2DfKGM1cD5/auZufw4
+g0J9coBsp5jrGWIY69GYQ6sV/l9wzRdimXKXLXM/ulH246f33rSvkNjyq/uRZme
MBtuddn0GDwINBuX0eYbxeloRJ9qRutPqxRAbiJqyqpxnE8ipW1JVO+Dr53xhHxA
j+aWRt2MTRS/rTc56ovtC8dyDhxx7X555wGcS4D09lz4fWCeHX8ca84U8CE+zPko
HhVV+KRysJGOfo+u8pcUF0W9AgMBAAGjggMyMIIDLjAdBgNVHQ4EFgQUpAislKDT
NvRzJJBakYrySQLw3oswHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTU4NjIwLzBFOTE5OTM0ODg0MjExRUVBN0Q4QzgxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE1ODYyMC8wRTkxOTkzNDg4NDIxMUVFQTdEOEM4MTRDNEY5QUUwMi9wQWlzbEtE
VE52UnpKSkJha1lyeVNRTHczb3MubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDANjsMEIGCCsGAQUFBwEHAQH/BDMwMTAeBAIAATAYAwQCK/UoAwQCZwHA
AwQBygleAwQAyxmtMA8EAgACMAkDBwAgAQ3wAKEwDQYJKoZIhvcNAQELBQADggEB
ACfLkAAkEF8//2yPSbZJFdjZeEGtezgx9zThaSj10oY9TC0lN5MqLvO7oakS0NKU
9D78oGeOppk2hMl8uiKRyYLKGpV72i/yyzOxfDDxFBQCvie4JVvlTDjSTEifjEXV
WkYS4hm4bm9sXlmL6bv7/uV89chWZES6acaBo2ELL9uozX3rx2OoLnwutzY/lIK9
4IpvE19D1wQgehEhs4G3YSoZ/yQSjD4cdkVIj6T1Kk3ek02BUWubUC4FGHnjs/ba
NWwKCOcr9g9Z88pYs+ZBjiAKWv8Z0MlZNTwmLEnpxYTRXM9tH9N/GuVtcir+mh1a
9f6/20EYbzC5V+2bH5aH6A4=
-----END CERTIFICATE-----
Generated at Sat Nov 23 04:00:04 2024 by rpki-client on console-ams.rpki-client.org