Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/fpQnZdRTDzUZ1n13cKvnEfTp8G8.cer
File: fpQnZdRTDzUZ1n13cKvnEfTp8G8.cer (raw, json)
Hash identifier: PkRjBh6qj9cGsE8BDAd0H/b69ndUm5UEiX94T7ovCJg=
Subject key identifier: 7E:94:27:65:D4:53:0F:35:19:D6:7D:77:70:AB:E7:11:F4:E9:F0:6F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 011CC7
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FA37D/DC9BB5A84BC011E982334B46C4F9AE02/fpQnZdRTDzUZ1n13cKvnEfTp8G8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FA37D/DC9BB5A84BC011E982334B46C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 02 Jul 2021 17:39:41 +0000
Certificate not after: Wed 31 Aug 2022 00:00:00 +0000
Subordinate resources: AS: 23858
IP: 45.117.100.0/22
IP: 103.57.164.0/22
IP: 2403:2e80::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 72903 (0x11cc7)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 2 17:39:41 2021 GMT
Not After : Aug 31 00:00:00 2022 GMT
Subject: CN=A91FA37D/serialNumber=7E942765D4530F3519D67D7770ABE711F4E9F06F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:b8:2c:1d:07:9e:62:9c:1f:19:d4:59:8b:69:
b1:e8:e2:de:86:2f:78:8f:fc:af:ed:c4:c5:33:dd:
45:bc:fb:73:ec:cc:43:b7:d7:5e:29:0e:45:41:ae:
16:f7:91:d1:89:55:fa:b0:17:ae:d1:e4:a2:67:4d:
12:33:83:d0:2c:84:56:52:24:3a:1e:1b:d6:62:f3:
fa:cd:08:55:fc:53:96:de:7e:27:7d:a8:74:53:7a:
9d:20:27:d9:47:45:b8:bf:71:1c:5f:ad:67:6b:ab:
1e:28:24:d9:20:11:3f:37:0a:18:05:e6:54:55:05:
6d:f2:b7:d6:10:4f:6e:d4:8f:13:86:8a:01:e2:8a:
34:07:b3:68:68:03:6a:fb:46:a9:ad:cb:14:e6:30:
d7:b0:29:c3:7d:d3:4e:ad:69:ea:e8:c0:6c:67:65:
78:9f:5a:72:a7:93:42:8a:cf:9d:36:bc:92:e7:02:
d6:9f:04:25:2a:f8:eb:f1:2c:d0:90:8c:76:2d:bb:
f9:80:8e:08:2d:74:97:c3:d4:16:90:68:0c:d8:1d:
e8:c9:67:f7:b4:f3:61:cd:92:1e:ff:d9:fb:e7:2b:
ac:5c:77:ce:5e:94:86:a9:e2:0f:70:bb:16:3e:34:
49:cd:e1:08:a7:d8:5b:a1:f2:79:a5:ff:1e:e9:e6:
20:4f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:94:27:65:D4:53:0F:35:19:D6:7D:77:70:AB:E7:11:F4:E9:F0:6F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FA37D/DC9BB5A84BC011E982334B46C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FA37D/DC9BB5A84BC011E982334B46C4F9AE02/fpQnZdRTDzUZ1n13cKvnEfTp8G8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
23858
sbgp-ipAddrBlock: critical
IPv4:
45.117.100.0/22
103.57.164.0/22
IPv6:
2403:2e80::/32
Signature Algorithm: sha256WithRSAEncryption
43:1b:f0:5d:17:98:7b:10:ca:b1:ae:15:e0:9d:1a:c7:01:50:
f8:69:1a:d1:8c:88:01:05:12:0e:88:5e:b3:4d:03:96:b3:ce:
55:af:a2:da:3d:5e:8a:61:12:d5:45:e6:04:0a:90:17:2c:65:
70:fe:7d:04:3c:a2:d5:f3:ee:ca:dd:fe:92:63:3e:4c:d6:02:
a4:22:5f:a7:f9:6f:60:b4:3e:80:6c:9f:69:ff:29:e3:53:77:
05:36:ac:81:dd:01:b5:9f:30:d4:88:23:d7:93:19:61:0a:a3:
90:f6:d0:eb:b7:c2:a0:68:d7:e6:62:8c:b3:b1:06:bb:ef:3e:
bd:01:f4:4c:58:db:fd:4c:6e:01:bf:95:ac:6c:3f:ea:f3:27:
f9:47:b7:66:55:14:e8:8e:04:b1:65:3e:3d:d5:6e:fe:66:90:
9a:81:4e:ef:37:ed:c3:cb:58:b2:09:62:bc:b7:dd:f8:bd:3a:
d5:a9:41:6d:b0:ed:8e:fd:5e:60:d0:e2:e2:61:1d:cd:40:30:
ef:8c:f4:48:f9:c5:51:b3:49:78:85:7f:b7:3f:86:06:75:cf:
7a:3f:f5:a2:40:80:3c:68:4a:70:41:19:a8:0b:3f:dc:8a:be:
fb:c9:3a:49:8c:93:f2:d3:c7:46:a8:c9:83:6d:17:c9:c8:cf:
f0:ac:82:ad
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:15 2023 by rpki-client on console-ams.rpki-client.org