Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer
File: ZM9TLI4gsZbSW8fMflkyT5OBMnU.cer (raw, json)
Hash identifier: 6HpJhWgdekuD4KUq1bxDYh5BtpKqmI8C5bowSqJC33g=
Subject key identifier: 64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02276C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 06 Jan 2025 06:20:44 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: IP: 103.56.128.0/22
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 141164 (0x2276c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Jan 6 06:20:44 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9175F43
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:24:3b:74:27:ef:ae:2c:6e:89:a6:85:c8:d2:
48:b7:0a:38:df:c7:bf:94:de:a8:01:90:38:6a:fa:
bd:c3:58:07:39:90:07:95:c2:03:63:bd:79:97:6b:
ed:c4:9a:e3:db:ba:cb:a6:b7:1c:d6:ac:bd:26:35:
e8:1d:43:94:97:0f:fc:80:4c:5f:49:0a:a6:22:3c:
f6:7e:07:54:ef:70:53:f8:fa:4d:0f:ca:1b:a9:d5:
b0:bd:15:31:c8:af:cb:71:cc:4b:d2:80:10:bd:5d:
02:92:c5:41:ff:92:ae:3b:70:12:54:49:7a:08:56:
00:01:38:68:9a:d7:36:89:07:56:e6:0b:e3:d7:4a:
10:30:f7:46:35:e5:3e:4b:d5:69:90:61:49:6d:0c:
07:32:72:eb:75:4b:18:98:3f:3e:66:f4:95:5f:e7:
1b:89:de:bc:f6:d4:c3:5f:80:2a:4f:12:e7:83:a2:
2f:84:ab:79:21:39:b8:3d:25:0b:31:1a:44:6d:8b:
59:41:57:47:57:ec:9f:b8:dd:98:68:87:0a:eb:7a:
21:93:31:b2:91:09:66:9b:77:d5:bb:06:f6:db:ec:
ff:fe:d9:47:94:f6:c5:50:c8:3d:dd:74:f3:4c:e6:
d6:26:84:e6:84:80:c3:ca:a3:13:ff:a1:c7:53:72:
0a:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
64:CF:53:2C:8E:20:B1:96:D2:5B:C7:CC:7E:59:32:4F:93:81:32:75
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9175F43/599FEB44CBF611EF9F57E92DC4F9AE02/ZM9TLI4gsZbSW8fMflkyT5OBMnU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.56.128.0/22
Signature Algorithm: sha256WithRSAEncryption
57:9a:a1:bf:b3:5c:50:f2:a9:84:92:5f:a7:5c:91:c9:c3:d7:
c6:68:cd:a6:ed:97:97:bf:57:c6:75:dd:c4:64:7f:96:23:9f:
66:03:db:3d:95:43:3d:77:73:02:69:51:ac:bd:9d:f6:48:d0:
a3:83:ef:45:20:c3:fe:e9:69:3f:1b:49:79:83:67:14:1e:b6:
c4:58:7d:c6:69:47:ec:2b:b0:aa:72:c6:78:49:c5:6f:a0:ba:
88:0d:c2:65:b4:7a:94:39:72:b8:18:80:91:8f:04:f9:51:ca:
e6:2c:56:c8:49:00:7d:f7:96:e6:0d:d8:a8:c7:d1:fc:76:e6:
3a:39:30:ea:f7:69:75:0e:dd:45:a0:fb:7c:dc:c2:3b:f4:61:
28:70:ca:0e:3d:61:b4:89:66:7d:74:c0:81:4f:32:02:b6:26:
15:eb:2d:21:83:64:f0:c3:aa:63:02:85:38:2a:ec:cb:f8:ea:
48:9a:c9:9b:39:76:fd:cc:77:c2:bc:f3:6b:cd:9f:f6:9b:b8:
79:88:d5:6e:9f:e4:9b:45:0b:c5:8f:94:d8:d2:bf:1d:94:db:
7f:2a:47:5c:91:6a:d2:42:71:75:fd:ac:a6:16:9a:f1:ae:ae:
13:f9:8d:8e:3d:8f:39:23:cb:2a:1a:8d:93:49:34:b4:4a:d0:
a4:d0:17:c6
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 18:14:06 2025 by rpki-client