Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/sumTicSsA0jYrsh1t0aJ0E5wyDo.cer
File: sumTicSsA0jYrsh1t0aJ0E5wyDo.cer (raw, json)
Hash identifier: zKytdz+edz9rdV9hw2hlHiEl/f3SaUk0AAx+behKuHg=
Subject key identifier: B2:E9:93:89:C4:AC:03:48:D8:AE:C8:75:B7:46:89:D0:4E:70:C8:3A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 023A94
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/sumTicSsA0jYrsh1t0aJ0E5wyDo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 28 Mar 2025 21:51:20 +0000
Certificate not after: Fri 01 May 2026 00:00:00 +0000
Subordinate resources: AS: 136986
IP: 103.149.39.0/24
IP: 103.162.126.0/24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146068 (0x23a94)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Mar 28 21:51:20 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=A91E77A1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bd:43:f5:41:51:96:94:45:00:93:ee:71:46:e0:
d8:a8:b0:23:8a:ab:58:c8:5c:2f:e5:37:5a:d8:97:
c2:41:65:79:99:05:83:b7:59:dc:2c:f5:f6:25:f9:
65:54:0a:dd:64:e2:a6:8a:fc:75:1a:25:3c:06:00:
77:49:03:b7:86:de:0c:1a:cf:0f:2d:2d:53:2d:ec:
c3:27:fb:a8:b7:53:06:61:c4:6b:1d:e8:30:e1:fe:
10:9d:e1:8a:61:6a:83:45:54:52:2c:49:d5:d3:b3:
0f:5b:8e:eb:3a:7b:33:ca:ad:20:93:62:fa:76:ea:
3a:ed:82:9b:13:70:be:3d:10:5f:3d:a7:d5:2d:21:
35:95:8c:f5:8d:6b:15:5a:72:e5:cc:d2:cd:27:89:
94:02:fc:5f:13:99:34:89:d8:eb:30:98:b7:74:a3:
da:d2:98:36:06:58:32:99:14:66:9e:98:9f:d9:07:
ef:a3:3b:b3:02:2b:b7:7f:1d:f6:b2:9a:3e:16:62:
d9:08:75:db:d6:0d:5a:cf:d5:0c:6f:66:63:b5:dc:
ab:15:f9:a2:81:41:85:45:36:96:53:b2:c5:f9:f6:
7c:d4:df:97:7a:92:30:e9:0a:33:5e:09:21:47:3f:
06:c9:38:34:48:69:cf:22:e6:60:fd:76:80:27:95:
e3:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B2:E9:93:89:C4:AC:03:48:D8:AE:C8:75:B7:46:89:D0:4E:70:C8:3A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E77A1/B5C27A8C169111EBAAB3041BC4F9AE02/sumTicSsA0jYrsh1t0aJ0E5wyDo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136986
sbgp-ipAddrBlock: critical
IPv4:
103.149.39.0/24
103.162.126.0/24
Signature Algorithm: sha256WithRSAEncryption
80:4d:07:43:b8:22:41:59:12:6c:f3:a5:02:fb:a7:2e:20:25:
4f:7d:a4:55:03:84:77:47:ad:dc:51:ad:3f:e0:23:bd:43:eb:
4f:42:5b:55:3d:8f:3c:4c:ce:a6:be:d5:ad:3c:a3:8d:dd:b3:
1c:8b:c8:2f:ca:39:17:50:1f:8b:24:bb:ce:ea:4c:68:9a:4c:
bd:34:cb:95:0c:45:8e:ae:3c:52:10:29:66:93:a6:82:81:bc:
d4:13:9f:a8:59:80:71:aa:25:ac:5e:39:fc:59:8b:87:9e:9e:
4e:db:3c:38:a5:d3:f5:d1:fe:78:be:49:da:a4:c9:a2:38:4b:
7b:2d:6a:a0:98:ec:99:0e:56:a1:cd:5f:f8:92:34:26:98:ef:
95:6a:95:d6:2f:e5:a7:68:9d:fc:fd:f7:5e:32:b8:6f:e3:0e:
46:25:b2:51:73:31:ec:96:24:0f:10:9f:ec:bf:6b:52:58:b7:
3b:f0:7b:db:40:88:ef:53:0d:82:5c:39:0a:77:42:7e:7e:71:
b9:2e:75:62:86:7c:c3:a9:ea:b8:fe:87:5d:ba:05:1b:d8:14:
aa:60:cc:c2:f9:e1:08:cc:c4:88:50:88:ba:4b:30:da:b5:24:
e3:b4:ae:86:59:ed:65:0a:4f:43:05:a9:d7:d5:f4:12:f5:f5:
83:e1:16:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Apr 8 02:55:26 2025 by rpki-client