Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/dfDxcTIKeOUHAm-fL1T0smcMYhE.cer
File: dfDxcTIKeOUHAm-fL1T0smcMYhE.cer (raw, json)
Hash identifier: VtVq1CD++X+Qv3FyX7GamSyz4wcRUcLi+fL0yGAD/Ys=
Subject key identifier: 75:F0:F1:71:32:0A:78:E5:07:02:6F:9F:2F:54:F4:B2:67:0C:62:11
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021EE3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9161/70CC24863F8B11E7A9E67244C4F9AE02/dfDxcTIKeOUHAm-fL1T0smcMYhE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9161/70CC24863F8B11E7A9E67244C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 30 Nov 2024 16:22:54 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: AS: 55862
IP: 43.252.100.0/22
IP: 49.128.160.0/20
IP: 103.29.96.0/22
IP: 2401:8900::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138979 (0x21ee3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 30 16:22:54 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91C9161
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b9:09:b7:44:96:57:2e:1f:98:7d:48:bd:0c:1c:
df:09:e7:50:c7:27:54:bd:67:9c:d0:1b:c6:6d:83:
d5:2d:64:b0:6e:d8:11:f6:9e:aa:f1:06:27:fb:5a:
67:9e:59:6c:6c:9a:44:40:dd:b5:6f:62:ef:ac:d4:
cd:21:86:ba:48:24:3e:bd:45:09:e1:73:f6:49:0f:
0f:03:83:64:22:45:56:6b:f4:98:dd:7c:ac:bb:97:
a2:03:3a:2c:81:07:2a:aa:b0:cb:64:ba:32:43:18:
16:68:cc:1c:d3:a8:d3:d9:42:be:39:07:47:00:4c:
72:a4:1f:c7:62:21:1b:89:0d:31:cc:90:2c:73:92:
62:f1:e3:dd:b4:8a:da:53:35:08:8b:93:aa:e6:62:
94:a3:e2:97:6e:36:b8:76:04:7e:c1:a0:4a:d0:9f:
7b:13:c6:a6:3e:f3:94:34:6d:9b:b2:a6:56:0b:80:
b4:15:5e:98:df:2b:fd:85:56:46:7d:4c:a5:a1:36:
97:b6:85:d4:f3:91:2d:72:72:66:c8:36:4c:96:cc:
33:81:b2:6a:68:4a:f0:33:69:bb:f9:b7:2e:bb:5b:
d6:93:31:8b:d5:43:5a:36:ea:56:ac:d5:17:41:77:
ca:c7:b4:dd:e2:2c:12:22:f6:a8:6a:30:c9:9f:d6:
53:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
75:F0:F1:71:32:0A:78:E5:07:02:6F:9F:2F:54:F4:B2:67:0C:62:11
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9161/70CC24863F8B11E7A9E67244C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9161/70CC24863F8B11E7A9E67244C4F9AE02/dfDxcTIKeOUHAm-fL1T0smcMYhE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55862
sbgp-ipAddrBlock: critical
IPv4:
43.252.100.0/22
49.128.160.0/20
103.29.96.0/22
IPv6:
2401:8900::/32
Signature Algorithm: sha256WithRSAEncryption
30:3c:be:ef:bd:bd:4c:d4:16:15:00:4b:7e:00:a5:8c:0d:45:
c7:0d:fc:b0:81:e4:78:b9:09:28:d8:43:f5:e3:b7:f0:04:15:
a1:38:62:12:c8:e3:01:af:33:69:c4:b4:80:7d:69:90:04:1d:
ff:6b:cf:d2:6a:45:e4:9b:c9:4a:6b:29:f7:7f:74:a0:48:ca:
5b:19:4e:16:b0:52:39:79:f5:51:cf:da:a0:65:64:1c:e4:d2:
45:40:22:e9:c3:c8:c8:14:3c:55:f9:45:34:24:56:51:75:10:
53:b4:95:73:22:98:43:cc:7a:c0:9d:da:21:69:81:ef:3b:9b:
57:49:54:38:48:96:ca:3a:e9:ef:3b:0d:01:db:37:75:5b:bb:
63:36:51:dd:6c:3d:18:01:85:b1:69:8f:b8:2f:9f:6b:ed:87:
5c:dd:ab:27:06:a6:99:10:45:a4:9d:8f:23:75:fb:8a:4d:e5:
5b:ec:dc:89:33:4f:0d:d3:96:d0:e4:51:d1:89:ec:59:fb:ef:
88:a5:8f:96:08:89:de:9f:ca:d3:23:74:39:6b:df:7d:f5:7e:
35:8d:b5:47:ee:a7:c6:40:04:4a:eb:09:33:9d:b4:aa:42:f4:
cf:c3:8f:06:81:cd:a3:76:d5:37:50:e1:a5:11:08:7c:3b:66:
f7:41:29:5f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 7 06:43:34 2025 by rpki-client