Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/SRNmdefiNOfS-IRZmOLGLbSIgso.cer
File: SRNmdefiNOfS-IRZmOLGLbSIgso.cer (raw, json)
Hash identifier: XUx9KAiDjuEO16LrFR+YAsQkIiPPfIWMnvMD9fWwq4Q=
Subject key identifier: 49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 6129
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 20 Jan 2025 05:09:02 +0000
Certificate not after: Tue 31 Mar 2026 00:00:00 +0000
Subordinate resources: IP: 161.248.216.0/23
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 24873 (0x6129)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 20 05:09:02 2025 GMT
Not After : Mar 31 00:00:00 2026 GMT
Subject: CN=A91A31F5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:68:b7:8c:54:a0:37:43:30:89:60:f9:ae:d0:
62:5a:d3:1a:5b:0d:95:e4:9e:3f:3f:1f:a8:71:bd:
61:be:3c:fd:35:7c:69:cc:8e:a4:98:60:bc:7b:86:
60:a9:bb:91:a2:4d:45:a9:64:1f:8a:cc:37:ef:25:
41:3c:cb:7c:6c:b2:4c:46:dd:30:6c:e6:9c:46:69:
36:ba:1a:66:bf:d4:67:5f:22:10:40:d4:e4:a9:d3:
f7:e4:92:2c:fe:f2:7f:8c:6c:26:6b:fb:63:26:dd:
7d:05:72:f0:1e:0b:0f:c0:09:fa:bb:70:d8:45:23:
34:6a:6e:16:d5:79:99:96:e5:34:9a:eb:72:16:9e:
33:37:30:f8:d1:8e:95:ec:80:c0:b6:a2:e2:9c:19:
9a:d1:6b:4b:17:d1:25:2e:f0:cd:31:54:f3:fd:90:
80:8f:43:89:8b:28:2a:0a:77:a8:4a:b6:02:c3:c9:
d1:ea:5f:e9:e7:0d:0c:10:9b:45:7b:6f:0c:47:cb:
2f:07:76:66:dd:0e:7d:64:97:c5:c7:14:fb:b7:38:
59:1b:64:12:c8:62:ac:ea:20:5e:7d:3d:aa:91:98:
a4:cc:7d:98:8e:e3:d7:c8:97:8d:22:b0:d9:fc:d4:
47:71:49:6e:19:49:60:a0:b0:88:a0:a3:53:8a:3f:
1b:17
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
49:13:66:75:E7:E2:34:E7:D2:F8:84:59:98:E2:C6:2D:B4:88:82:CA
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91A31F5/A754D380D6EC11EFA2799C69C4F9AE02/SRNmdefiNOfS-IRZmOLGLbSIgso.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
161.248.216.0/23
Signature Algorithm: sha256WithRSAEncryption
59:b9:b9:52:28:be:fc:c4:48:5e:4f:20:47:6a:9d:bd:59:12:
9a:ae:49:6f:61:e5:af:8b:14:e5:bb:a5:6c:78:e0:02:d6:07:
e5:29:f5:e2:c9:39:9f:a9:60:1b:b3:40:db:5d:47:17:2a:77:
99:51:50:e2:e4:b2:eb:57:40:2f:57:57:26:0e:91:a5:1f:13:
98:2b:cf:5e:03:7a:f7:5c:80:c6:5d:75:46:31:78:7a:d6:d2:
43:ae:3f:8f:45:31:28:40:ee:d1:12:94:22:01:42:9d:f7:90:
df:20:1a:2f:8d:60:9c:1f:18:5e:94:a7:01:57:1e:c8:3e:24:
1e:61:cd:5b:b3:b6:fc:5b:ac:0b:46:ac:b0:cc:86:9f:4e:b1:
82:d1:3e:66:e0:49:97:9a:cd:ae:24:89:e6:48:b5:7e:24:97:
b8:d8:d3:28:57:f5:67:6f:ee:95:58:44:80:71:e2:31:0f:b6:
dc:37:0d:71:c9:3a:9c:89:06:db:61:2c:e0:cb:ed:24:70:61:
ba:82:e1:7f:73:2c:5b:01:4c:82:4f:d5:06:79:c0:36:ee:4a:
dd:98:da:a4:79:34:cc:84:9c:74:1b:13:1f:7d:f0:f2:de:62:
ec:d3:75:0f:bd:a3:06:ea:f7:22:5e:96:50:c1:90:22:fe:65:
8d:ff:55:ea
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 15:19:43 2025 by rpki-client