Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer
File: 2zU_lsDQLN1MHwjaG8Fp_uWNcyE.cer (raw, json)
Hash identifier: Wf7IGvbvCMrTcMrOVSp8gpZlb7aN5ABCd1HqU6q4hXY=
Subject key identifier: DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021E16
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Nov 2024 21:39:16 +0000
Certificate not after: Tue 30 Dec 2025 00:00:00 +0000
Subordinate resources: AS: 150304
IP: 103.217.250.0/23
IP: 2400:a760::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138774 (0x21e16)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 27 21:39:16 2024 GMT
Not After : Dec 30 00:00:00 2025 GMT
Subject: CN=A91CF848
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:d7:3c:69:ea:9a:8a:aa:20:60:ff:c5:5d:2a:
a7:cd:20:58:78:18:87:bc:4d:64:18:e9:62:f9:50:
82:c5:25:52:f6:eb:57:9e:bf:c7:a4:3b:c6:7b:eb:
25:08:9e:31:4c:16:87:c5:c1:6d:1b:46:68:36:c9:
36:97:ac:0f:af:16:c2:63:fe:67:0d:57:aa:6c:35:
55:44:28:c8:b4:78:54:a6:44:40:cb:e8:06:14:b7:
72:92:82:0b:e1:4a:60:83:2c:48:a9:5b:66:b4:02:
de:f0:b9:62:d2:52:9e:60:1c:6f:31:74:bd:d7:05:
c3:fc:d7:2b:ab:b3:2c:1a:33:04:05:9a:26:79:dc:
90:ab:82:b3:cc:d1:3c:42:3c:8f:7b:3f:63:65:7c:
54:9b:95:7a:3c:32:24:5c:9b:0c:10:16:86:7b:3a:
9a:82:f5:72:e6:12:38:e5:32:4f:0f:41:5b:99:34:
46:bd:ea:73:d1:9d:aa:41:67:4a:7e:ba:b7:f4:43:
9a:cb:87:75:d7:a2:ca:83:86:28:23:d6:94:c5:f8:
94:76:4c:7e:10:a5:8c:d4:2e:47:ba:27:58:e8:52:
8b:f8:94:40:32:73:44:b0:35:a3:6f:af:96:76:3b:
bc:0e:33:e1:9b:b4:0c:89:7a:c3:55:46:bf:53:f5:
81:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:35:3F:96:C0:D0:2C:DD:4C:1F:08:DA:1B:C1:69:FE:E5:8D:73:21
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CF848/CADAB7B22E6E11EDAEAB3E36C4F9AE02/2zU_lsDQLN1MHwjaG8Fp_uWNcyE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150304
sbgp-ipAddrBlock: critical
IPv4:
103.217.250.0/23
IPv6:
2400:a760::/32
Signature Algorithm: sha256WithRSAEncryption
ce:de:c2:ed:69:a1:e7:05:c9:4b:c6:a8:a5:0e:cc:fe:af:9c:
17:ca:01:c5:3d:10:4a:8b:95:1d:20:7d:ea:0b:fb:a7:cb:05:
2b:19:46:25:9a:32:01:37:f6:07:b9:6b:ea:f7:9a:18:72:4a:
85:fc:0a:5b:e6:c9:dc:49:13:14:b5:9f:3e:86:20:c0:8b:e4:
22:bc:4f:a5:f3:50:46:01:c7:34:af:66:de:9e:b5:2b:84:90:
ba:84:26:be:55:e8:3c:78:b3:2c:e6:ff:bd:b0:51:e6:5c:10:
99:76:e5:4e:19:d5:10:ca:3b:cf:c0:10:cf:ff:45:26:9f:70:
c6:e0:62:1f:7f:8e:69:01:d4:ef:dd:82:05:86:ab:ee:96:c9:
42:e6:70:0e:3f:88:d1:91:87:58:5a:c8:7b:64:04:c4:8c:54:
98:d0:7f:a1:93:5d:92:d1:3a:33:97:92:11:13:db:b3:cc:69:
01:92:27:1c:a8:37:41:4c:a9:31:1a:a0:97:dc:67:8b:0c:97:
02:2c:10:5f:94:19:58:ff:78:2f:ee:b8:a0:8a:2c:6d:12:41:
3c:28:9e:89:d9:13:ca:72:b6:c6:72:b5:3b:3a:92:bf:0c:9d:
c8:d6:4e:b0:fb:a5:c3:0b:ab:c5:07:bf:23:72:50:83:bd:52:
8c:d6:c0:b3
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 09:47:14 2025 by rpki-client