Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ORjYC8twLsrPhMt6yogPh4oU_kg.cer
File: ORjYC8twLsrPhMt6yogPh4oU_kg.cer (raw, json)
Hash identifier: 2x2X/pTrbLXKoPEFO0Vzzw/wVC40Ci9BQGo+ART7GJY=
Subject key identifier: 39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02254B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 29 Dec 2024 03:47:14 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 55832
IP: 27.123.216.0/22
IP: 45.64.12.0/22
IP: 103.4.208.0/22
IP: 120.88.176.0/20
IP: 2407:2a00::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 140619 (0x2254b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Dec 29 03:47:14 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9146B24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:aa:2a:86:d3:19:d4:d5:aa:8a:24:05:cc:ed:1b:
49:ea:f4:6d:f1:d8:74:b6:db:14:c1:e1:80:a4:c0:
b2:b6:e6:bd:f8:96:29:c3:b2:7f:db:ac:ba:c8:92:
eb:13:01:c2:05:29:d1:35:7b:24:d5:da:09:83:bc:
d7:54:11:1e:5f:56:49:95:b8:ae:00:01:58:6c:24:
69:d6:8c:4e:82:ae:74:50:e7:66:9e:5b:c3:cd:36:
ed:2c:1a:f5:14:5c:8e:d7:fb:d9:14:58:d1:b7:94:
3e:60:a2:b1:0e:74:6c:bd:1f:8e:eb:0a:c7:3c:d0:
ee:09:ae:bb:e7:84:66:ac:1c:2b:44:d1:37:db:e5:
be:4d:a1:11:37:30:ad:40:0f:b7:3e:f1:a2:b8:a0:
33:cb:03:26:14:00:8e:c1:47:42:f3:0c:58:87:aa:
fd:11:89:02:71:b0:75:a8:ca:c9:ba:8b:c9:e0:85:
d7:c1:97:cb:bf:0b:c9:10:44:25:9b:01:c4:b8:07:
ea:91:82:08:50:4f:cf:b1:93:f0:32:1b:27:25:ec:
bc:72:17:f8:be:e2:49:27:2c:08:d3:68:70:40:e9:
f2:11:68:bd:f1:5d:2c:c3:33:6c:cf:b3:86:0d:5e:
3f:24:73:80:da:14:5d:25:55:aa:f3:5c:b9:b2:23:
15:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
39:18:D8:0B:CB:70:2E:CA:CF:84:CB:7A:CA:88:0F:87:8A:14:FE:48
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9146B24/B473C4BE933011EE82308059C4F9AE02/ORjYC8twLsrPhMt6yogPh4oU_kg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55832
sbgp-ipAddrBlock: critical
IPv4:
27.123.216.0/22
45.64.12.0/22
103.4.208.0/22
120.88.176.0/20
IPv6:
2407:2a00::/32
Signature Algorithm: sha256WithRSAEncryption
d1:b3:da:eb:bf:34:a3:e0:64:19:df:46:62:c1:d3:06:85:f6:
8e:c6:7c:19:5e:1b:d5:24:57:f6:90:f5:c0:87:75:be:a3:12:
80:4a:ed:0a:92:fd:4e:de:63:4e:20:26:6f:7c:35:f0:14:6b:
81:41:dc:57:ab:f9:c8:8e:b7:35:a0:7c:7b:db:08:26:e2:77:
10:3e:c1:04:27:40:6a:0e:2e:51:80:ff:44:19:54:eb:44:11:
c1:65:c8:8d:3b:1e:9b:d6:c8:ac:3e:8f:16:a3:69:b1:b8:1b:
53:0c:92:40:b4:cc:e9:a9:71:3d:50:58:f2:1d:c1:a7:28:75:
3a:86:08:82:f0:a4:72:38:44:c7:da:6d:47:f6:37:50:30:78:
5e:cb:04:ef:65:2e:8c:d4:08:6e:b3:8c:ce:19:87:2e:4c:61:
59:ca:bd:1a:26:58:57:5f:b3:51:e6:e9:d2:a0:cd:ad:ac:8e:
87:7f:28:5e:86:e7:b5:5d:e0:cf:5c:fd:b8:b2:ff:33:65:16:
a7:13:96:73:ad:52:ce:e3:24:d6:b7:83:c8:6d:02:b8:1e:13:
a8:ec:72:31:c7:b3:09:16:bc:f9:69:a3:8f:cb:38:f6:3f:52:
64:28:0d:ff:45:35:6c:e8:ff:d3:90:44:d2:59:85:60:ba:1c:
3a:94:b4:7c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 08:23:17 2025 by rpki-client