Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yq3LrMUbKkZS3XMHTygsM00BAnc.cer
File: yq3LrMUbKkZS3XMHTygsM00BAnc.cer (raw, json)
Hash identifier: 3+zH+nvEARNw6hpQ9sfxwHpd7SaNSynswAUSqJj7zvI=
Subject key identifier: CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021E1D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 27 Nov 2024 22:50:28 +0000
Certificate not after: Sat 31 Jan 2026 00:00:00 +0000
Subordinate resources: IP: 103.144.142.0/24
IP: 2001:df1:c580::/48
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 138781 (0x21e1d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Nov 27 22:50:28 2024 GMT
Not After : Jan 31 00:00:00 2026 GMT
Subject: CN=A91DCCB3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:1c:79:72:78:6e:4f:a8:82:2f:8e:bc:f7:93:
a1:df:14:b4:30:7e:32:af:45:1a:e3:66:aa:8d:19:
9e:f2:0e:75:05:62:14:a1:f5:b0:b5:e6:f4:d7:3d:
f3:40:b6:a4:41:8b:a1:f5:f3:e8:8f:18:ec:17:5a:
9d:ef:99:a2:95:dc:e9:b6:17:08:49:88:16:8c:10:
6d:3e:b0:9a:78:c3:1d:a6:ad:f8:bb:40:a0:1c:4e:
e3:e6:0c:45:ca:c9:5b:20:1a:ac:c0:27:59:67:30:
64:2d:70:03:68:07:aa:cb:e8:77:37:07:62:c0:ad:
90:ff:d6:95:1f:e6:00:70:39:17:79:f1:01:50:b7:
58:31:20:4d:93:65:27:40:86:f8:be:2c:60:7c:48:
80:e6:1f:ec:0b:e1:db:48:65:6b:da:f1:2b:60:f4:
ac:de:b8:b3:cc:fa:80:5d:35:03:1c:41:dd:a3:b5:
3d:28:d2:6e:0b:d7:cd:ed:16:71:8e:f8:b1:2d:10:
98:2b:07:ea:56:35:6c:b4:7d:a3:dc:4e:6b:e2:57:
bc:39:c5:4c:bb:dd:ed:cb:19:29:25:94:35:84:68:
dd:3c:a4:06:fa:62:0b:4b:50:d8:b9:71:08:81:86:
8c:1d:95:5c:f5:26:53:c7:a5:e7:98:0a:7f:63:d0:
1a:b9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:AD:CB:AC:C5:1B:2A:46:52:DD:73:07:4F:28:2C:33:4D:01:02:77
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91DCCB3/41FD6016895C11EA890C6343C4F9AE02/yq3LrMUbKkZS3XMHTygsM00BAnc.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.144.142.0/24
IPv6:
2001:df1:c580::/48
Signature Algorithm: sha256WithRSAEncryption
18:7b:ea:71:13:9a:65:5e:c8:27:ce:ce:fd:0d:7d:2c:fa:11:
09:8e:15:b7:74:e9:b5:b5:5e:31:72:68:17:15:ca:03:26:b2:
c8:91:68:15:55:c4:25:6a:6a:a4:d2:04:aa:d6:ad:b4:94:5d:
10:3f:58:8d:ac:7c:2d:24:31:f6:9f:9f:82:5e:5e:7f:59:d3:
01:fe:e5:c0:f9:c1:57:67:48:dd:fe:0e:d2:c8:81:24:c2:b7:
c2:d3:0e:b2:df:23:6d:6f:c1:5e:ad:e3:ea:12:86:3a:ed:31:
d7:df:7b:09:1e:02:fe:f9:78:96:9e:fd:52:ff:c6:5d:f7:18:
13:a0:ab:24:27:c6:8e:6c:96:c6:7d:fe:44:bf:de:6f:0b:9d:
08:1b:be:65:02:ae:4d:6e:ce:93:40:67:88:a9:d2:c9:26:ba:
d7:24:fc:aa:68:07:d5:61:28:8d:46:d5:96:f4:39:72:ff:a8:
49:0e:f2:6a:34:ab:05:2f:2f:2c:ce:9a:ee:75:24:1d:41:8d:
e7:88:66:22:80:d5:f2:c4:02:44:87:db:bc:ba:22:35:62:2a:
f8:4c:be:18:c1:f2:24:8e:e9:eb:f2:fa:e6:46:6a:23:0c:2a:
95:ee:a3:f0:b9:4f:af:08:f3:5f:80:af:66:80:2c:9c:51:f6:
22:8f:aa:2a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Apr 6 14:35:59 2025 by rpki-client