Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer
File: Hms5RLZ4jpDpl9io6AZ8WWm4iYw.cer (raw, json)
Hash identifier: 6+PjorQCW2S83k/kZHnYS7Oxg+zPhF2f1DlPN8AWCJU=
Subject key identifier: 1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0224E7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 26 Dec 2024 17:25:28 +0000
Certificate not after: Mon 02 Mar 2026 00:00:00 +0000
Subordinate resources: AS: 137206
IP: 103.104.228.0/24
IP: 103.138.52.0/24
IP: 2001:df3:5900::/48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140519 (0x224e7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 26 17:25:28 2024 GMT
Not After : Mar 2 00:00:00 2026 GMT
Subject: CN=A91F7BE4
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a5:b3:c7:10:f4:0c:c2:d2:b6:f8:2d:5e:d4:8f:
a2:6b:fd:90:66:79:71:c9:11:97:cc:31:03:ec:ee:
a3:4a:1f:46:b5:b5:5a:23:56:c4:14:63:2f:91:03:
c4:79:f1:36:d1:e9:9c:f3:85:b0:e6:a4:98:24:bb:
89:89:51:90:c4:dc:27:94:20:03:2b:a7:57:e0:ec:
fd:9f:14:61:1a:68:be:71:5f:04:48:9e:4d:b6:4f:
f8:77:e1:a4:79:c8:f2:9b:40:41:77:df:60:9a:c7:
23:0b:95:85:cc:8c:9d:48:2a:a2:74:48:24:85:9b:
a0:b9:53:eb:e2:7e:a0:0a:7e:67:11:94:2a:51:8f:
f1:bc:77:4e:2a:16:fd:f6:5c:b5:97:f6:cb:56:24:
64:97:55:40:ff:1b:9d:16:83:7c:22:fc:2a:88:0f:
9d:47:ff:6a:db:06:44:80:0b:13:f8:58:d6:33:0c:
b1:f8:78:56:c6:db:69:09:3b:3d:ed:75:b1:28:11:
8d:3d:bd:d3:45:5b:f6:ff:5a:38:f0:d9:60:88:77:
15:48:44:78:92:b1:4d:cb:cf:92:b9:1b:0f:d6:4a:
68:a9:37:c2:71:80:ac:de:73:ec:98:11:3f:5e:e3:
30:5b:7d:66:10:e9:45:ca:54:ca:b1:62:f0:2f:13:
06:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:6B:39:44:B6:78:8E:90:E9:97:D8:A8:E8:06:7C:59:69:B8:89:8C
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91F7BE4/A06305C2511111E98C4BF10FC4F9AE02/Hms5RLZ4jpDpl9io6AZ8WWm4iYw.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137206
sbgp-ipAddrBlock: critical
IPv4:
103.104.228.0/24
103.138.52.0/24
IPv6:
2001:df3:5900::/48
Signature Algorithm: sha256WithRSAEncryption
ca:57:70:90:2f:20:82:ae:5b:3d:eb:1c:59:46:18:34:f7:94:
9a:4d:6d:09:79:b7:92:95:2e:60:22:38:c6:0b:88:a4:fd:0b:
f5:51:23:8e:c8:f7:e6:4c:5b:a2:11:a7:65:df:b7:32:a8:b9:
b2:de:ad:8a:b2:5a:f3:0f:4e:81:58:5b:96:8b:1f:4e:f8:e1:
6d:3b:f7:75:73:89:49:13:c3:5d:dd:ef:54:87:c8:c9:1e:49:
69:99:56:21:dd:cd:05:64:c5:03:c3:06:6c:cc:71:3c:7a:87:
6e:1b:59:80:7a:44:d8:64:55:75:a8:87:89:f0:47:fe:cb:b2:
55:f7:d9:1f:24:3a:77:5d:89:10:e6:b7:95:4b:36:c0:7c:43:
00:8b:5c:73:74:2d:ad:07:2b:fd:31:56:63:c2:89:f7:7a:69:
7c:42:bc:1c:8b:fa:36:c5:1b:bf:c3:39:9f:6b:de:ee:32:ad:
43:36:f7:00:59:96:bd:bf:17:d5:8d:0c:7a:28:c4:2e:42:be:
28:08:ee:60:18:2d:76:d0:0c:fa:dd:8d:72:08:ee:16:58:b7:
37:05:e6:fb:ce:04:12:c0:91:4a:fc:60:a9:91:5e:45:66:27:
b3:35:45:0c:08:73:c2:de:c8:95:78:bc:41:06:3b:69:74:bb:
ac:6c:ca:ce
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 09:04:20 2025 by rpki-client