Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer
File: PIsr28sVXi0v7NRdBi-zaZ8DQyA.cer (raw, json)
Hash identifier: 4jEe3ZvCveLF//W14etQtdaOfPjW78+fNgOd+OmZMJE=
Subject key identifier: 3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021E4B
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Nov 2024 15:25:46 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 43.225.56.0/22
IP: 103.252.16.0/22
IP: 2404:3880::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138827 (0x21e4b)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 28 15:25:46 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A9175F18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:b7:0e:3c:66:b2:bb:f5:2d:24:a2:bd:be:e9:
3f:6d:98:ca:74:8c:7d:1d:d3:8d:a7:05:2e:fc:7a:
9d:66:05:fa:37:65:b0:44:7b:91:b3:95:7d:08:6a:
b6:00:cc:a9:c0:2a:c2:70:1b:ef:ee:4d:84:f5:55:
30:23:29:4a:43:8d:71:5e:be:17:73:db:56:21:7e:
18:ef:07:5f:35:3f:af:38:41:6e:b8:27:e5:fa:fd:
a5:16:49:51:2d:78:45:92:61:0c:01:8a:80:81:e1:
45:d8:54:7a:92:bf:7e:19:ef:46:aa:df:42:3c:83:
f1:f3:3f:e6:b1:3f:35:70:6d:d4:a7:ce:39:38:64:
61:da:43:60:03:fb:49:a3:1e:c5:16:4a:9e:b4:96:
0a:62:3a:d5:77:25:ce:00:43:d8:f6:8a:a6:af:54:
b7:ee:0c:31:d7:3e:6e:17:a0:d9:03:39:5f:4b:d9:
50:25:8f:50:e9:03:4d:f0:45:26:e0:3f:86:78:e6:
a3:a2:16:7a:cc:6e:d5:cc:22:b5:dd:20:84:16:e9:
bd:ee:0b:28:cb:69:9e:c3:e1:5c:f0:99:97:82:78:
13:3c:24:e7:32:c9:1d:a6:a3:6f:e6:89:f1:83:88:
b0:d7:f4:4d:d8:7e:1f:89:c4:82:0a:4f:e2:6d:04:
65:53
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3C:8B:2B:DB:CB:15:5E:2D:2F:EC:D4:5D:06:2F:B3:69:9F:03:43:20
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9175F18/A384291C0AA011EB87333882C4F9AE02/PIsr28sVXi0v7NRdBi-zaZ8DQyA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
43.225.56.0/22
103.252.16.0/22
IPv6:
2404:3880::/32
Signature Algorithm: sha256WithRSAEncryption
87:5e:1a:b2:ec:f6:a1:98:c9:c7:6a:ae:f9:83:5a:d4:5c:56:
32:9a:21:20:46:5a:c5:61:97:4b:28:63:f9:07:11:0a:88:75:
ee:3c:7b:b9:10:2b:e5:0f:45:13:b8:3c:d5:56:97:27:e3:a3:
4a:21:85:b1:a7:38:52:58:66:4a:b3:bf:80:cd:bb:e0:18:ad:
cc:cc:e4:1d:08:ee:8d:c4:bd:6b:ff:6a:ee:f9:bd:ad:c3:01:
fc:76:56:10:0f:c9:c9:55:eb:d2:04:99:c5:e6:35:e1:77:85:
c6:ef:00:54:da:05:fe:96:45:e3:7e:26:76:b2:7f:8e:98:ab:
1b:56:ff:2c:7a:61:cb:1c:cb:05:70:c1:b4:67:94:f8:a5:33:
39:ac:3b:b2:2e:18:86:93:dd:1b:30:c5:51:98:a3:02:93:61:
4e:e7:58:72:fa:31:3d:c2:1d:7f:37:d2:96:74:f9:d2:e2:e2:
74:6e:d1:be:5d:c6:81:cf:12:85:97:71:7e:98:6a:4e:dc:ea:
07:5d:27:03:d9:a1:92:fc:b4:bf:fc:31:85:8d:b7:26:eb:0b:
3d:e4:e4:d9:26:36:e9:b1:e8:33:db:15:dc:37:b1:da:4e:35:
33:c0:70:62:66:98:e1:b4:d5:fc:12:8b:e4:df:c7:a5:7c:9e:
6c:43:e8:b6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 19:05:54 2025 by rpki-client