Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RTGic8LE6mi2e5it5VtGI--TdaQ.cer
File: RTGic8LE6mi2e5it5VtGI--TdaQ.cer (raw, json)
Hash identifier: yolwa6w22x5s43Cw8OkcQviffBOosPPLA0kraLNFYvM=
Subject key identifier: 45:31:A2:73:C2:C4:EA:68:B6:7B:98:AD:E5:5B:46:23:EF:93:75:A4
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F7C4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91954C1/50C6E732E84011EA8A6B9980C4F9AE02/RTGic8LE6mi2e5it5VtGI--TdaQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91954C1/50C6E732E84011EA8A6B9980C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 06 Jun 2024 20:52:44 +0000
Certificate not after: Mon 31 Mar 2025 00:00:00 +0000
Subordinate resources: IP: 2403:cc0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128964 (0x1f7c4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jun 6 20:52:44 2024 GMT
Not After : Mar 31 00:00:00 2025 GMT
Subject: CN=A91954C1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b3:a9:3e:5f:8c:b8:84:24:ea:a2:94:f7:93:1d:
6f:e0:32:12:d5:ed:95:30:57:24:be:a8:a2:c5:d8:
23:ce:be:74:41:a9:b6:30:63:c5:97:63:14:8c:b2:
1f:aa:60:c4:23:99:45:01:c3:d3:38:8c:be:49:67:
d5:b8:e8:8a:50:20:d1:9b:db:99:79:13:ce:7e:06:
2d:6b:60:cd:40:e7:08:81:a7:2c:9f:96:14:a5:3b:
07:a2:71:c9:2f:e7:7c:f5:8e:32:b4:21:db:2b:62:
0c:0a:33:55:6b:8d:64:e3:43:86:1a:b9:fe:84:a0:
e7:28:05:da:62:27:98:43:8c:2d:75:20:cf:24:e7:
48:a9:cc:84:aa:05:8e:98:77:1f:5e:11:75:a7:6a:
3d:94:28:f0:78:6f:3d:6d:19:39:59:9d:55:01:c6:
74:af:9b:0f:73:e2:93:c0:f7:bb:cc:df:bd:e7:b0:
c7:89:0b:c4:6a:9b:bd:c0:a0:e5:cb:6b:f7:72:74:
1c:bb:15:49:bf:44:d1:b7:c4:1c:73:60:88:35:66:
e5:9a:4c:5a:9f:b0:3e:36:f3:14:43:a0:17:28:a4:
cb:88:88:a6:d6:bb:47:61:40:0c:95:17:33:23:41:
dc:5b:2c:8f:45:1c:6a:0f:a2:46:5e:20:58:bf:4e:
af:5b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
45:31:A2:73:C2:C4:EA:68:B6:7B:98:AD:E5:5B:46:23:EF:93:75:A4
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91954C1/50C6E732E84011EA8A6B9980C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91954C1/50C6E732E84011EA8A6B9980C4F9AE02/RTGic8LE6mi2e5it5VtGI--TdaQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:cc0::/32
Signature Algorithm: sha256WithRSAEncryption
62:00:4b:ce:ee:12:13:b2:02:ba:05:34:7c:4c:d9:6f:99:ee:
8a:f5:67:d8:c8:66:47:75:8e:40:44:ad:bb:6d:b5:5a:5b:38:
98:48:55:f9:ad:e6:d2:02:f0:29:c3:24:04:98:d9:44:3d:f3:
fc:d7:2c:b2:8b:6e:0e:d1:75:ce:d7:a8:85:4d:ad:18:f6:a7:
75:d3:c4:ba:50:d9:54:86:1b:c7:03:fe:60:f4:98:1a:46:ba:
c5:45:0d:18:db:ef:65:ed:61:33:3f:b4:70:79:e6:31:f8:2e:
ca:8b:7e:d8:a2:3e:f9:18:d6:d9:e0:7b:a0:42:31:52:64:c7:
02:d4:9f:92:d2:39:18:c6:70:56:67:9b:ab:a9:0f:84:5c:f0:
21:5b:3a:1f:b4:b0:26:f4:76:a8:1a:d1:59:f4:5f:f5:42:e7:
46:2f:8f:84:42:1a:05:76:78:a5:df:3a:2c:84:00:e6:4d:c4:
f5:a6:a5:c9:8b:d5:ce:52:43:21:e4:74:a9:65:f2:5d:71:5c:
68:af:c2:42:5a:06:f0:a4:53:69:12:62:79:20:7b:44:b9:25:
7e:bb:39:4a:00:b5:9e:68:41:48:80:7c:4d:9f:aa:d3:15:c6:
e4:b2:d4:c2:e3:f5:7e:42:24:ae:c8:c7:74:07:54:87:74:40:
c3:fa:e7:ae
-----BEGIN CERTIFICATE-----
MIIF/zCCBOegAwIBAgIDAffEMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDYwNjIwNTI0NFoXDTI1MDMzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTU0QzExMTAvBgNVBAUTKDQ1MzFBMjczQzJDNEVBNjhCNjdCOThB
REU1NUI0NjIzRUY5Mzc1QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCzqT5fjLiEJOqilPeTHW/gMhLV7ZUwVyS+qKLF2CPOvnRBqbYwY8WXYxSMsh+q
YMQjmUUBw9M4jL5JZ9W46IpQINGb25l5E85+Bi1rYM1A5wiBpyyflhSlOweicckv
53z1jjK0IdsrYgwKM1VrjWTjQ4Yauf6EoOcoBdpiJ5hDjC11IM8k50ipzISqBY6Y
dx9eEXWnaj2UKPB4bz1tGTlZnVUBxnSvmw9z4pPA97vM373nsMeJC8Rqm73AoOXL
a/dydBy7FUm/RNG3xBxzYIg1ZuWaTFqfsD428xRDoBcopMuIiKbWu0dhQAyVFzMj
QdxbLI9FHGoPokZeIFi/Tq9bAgMBAAGjggL0MIIC8DAdBgNVHQ4EFgQURTGic8LE
6mi2e5it5VtGI++TdaQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTk1NEMxLzUwQzZFNzMyRTg0MDExRUE4QTZCOTk4MEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5NTRDMS81MEM2RTczMkU4NDAxMUVBOEE2Qjk5ODBDNEY5QUUwMi9SVEdpYzhM
RTZtaTJlNWl0NVZ0R0ktLVRkYVEubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAP
MA0EAgACMAcDBQAkAwzAMA0GCSqGSIb3DQEBCwUAA4IBAQBiAEvO7hITsgK6BTR8
TNlvme6K9WfYyGZHdY5ARK27bbVaWziYSFX5rebSAvApwyQEmNlEPfP81yyyi24O
0XXO16iFTa0Y9qd108S6UNlUhhvHA/5g9JgaRrrFRQ0Y2+9l7WEzP7RweeYx+C7K
i37Yoj75GNbZ4HugQjFSZMcC1J+S0jkYxnBWZ5urqQ+EXPAhWzoftLAm9HaoGtFZ
9F/1QudGL4+EQhoFdnil3zoshADmTcT1pqXJi9XOUkMh5HSpZfJdcVxor8JCWgbw
pFNpEmJ5IHtEuSV+uzlKALWeaEFIgHxNn6rTFcbkstTC4/V+QiSuyMd0B1SHdEDD
+ueu
-----END CERTIFICATE-----
Generated at Sat Apr 5 21:42:26 2025 by rpki-client