Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer
File: z4BKbz2GoZcTpOiG1Ze03GRFaGo.cer (raw, json)
Hash identifier: I7de388tj7pZvvp64xh1QlzATM+Nqs/C2VouumC2kTw=
Subject key identifier: CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 022E85
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 03 Feb 2025 09:41:55 +0000
Certificate not after: Wed 30 Jul 2025 00:00:00 +0000
Subordinate resources: AS: 152690
IP: 163.61.48.0/24
IP: 202.37.166.0/24
IP: 2401:dfa0::/32
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 142981 (0x22e85)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE
Validity
Not Before: Feb 3 09:41:55 2025 GMT
Not After : Jul 30 00:00:00 2025 GMT
Subject: CN=A9149C62
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cf:68:c8:fa:6e:ab:93:d4:11:f6:9e:22:1d:30:
2f:66:2e:95:a3:6f:e2:68:02:1c:16:0e:61:6e:53:
02:03:f1:00:13:65:4c:d8:df:78:27:8b:5c:fe:13:
8c:fe:24:5c:3e:de:90:c9:f8:30:2a:9c:36:6d:3f:
4b:6d:a1:d4:88:bc:fe:ba:8f:53:94:1a:03:18:82:
d8:3b:64:b7:d5:c4:15:3e:83:81:9f:17:a6:be:54:
79:02:7a:76:1e:f2:0a:6a:b3:e0:dc:50:9a:0c:a7:
31:8f:70:b4:52:6d:17:0c:55:b1:21:79:db:3a:b1:
97:7e:76:af:49:6c:8f:cb:9b:ef:c8:5d:41:73:5c:
53:83:61:c0:ad:b3:3f:68:16:1c:78:7b:d0:ea:1e:
15:f0:dc:e7:06:38:13:9c:82:18:28:1d:a9:c9:97:
f4:b5:ee:65:02:c2:ff:47:ba:e8:ce:24:39:be:d9:
f7:11:8a:ce:52:ab:ec:36:99:0c:38:b1:0d:11:fd:
ba:a5:88:3d:d5:11:f6:dc:15:92:36:1b:15:ec:f2:
e7:63:72:e1:72:15:89:5e:9c:d4:0a:09:fe:68:48:
d4:40:83:d7:f3:a9:66:f4:e0:64:e0:cb:b4:57:ef:
e0:80:e3:97:8b:9e:01:ee:91:85:38:2b:8e:34:89:
2c:11
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CF:80:4A:6F:3D:86:A1:97:13:A4:E8:86:D5:97:B4:DC:64:45:68:6A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9149C62/84F46B68981511EFA4BD3D57C4F9AE02/z4BKbz2GoZcTpOiG1Ze03GRFaGo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152690
sbgp-ipAddrBlock: critical
IPv4:
163.61.48.0/24
202.37.166.0/24
IPv6:
2401:dfa0::/32
Signature Algorithm: sha256WithRSAEncryption
bc:59:de:1d:0a:ec:b5:96:08:4b:6c:d2:17:ab:2e:d8:c0:79:
3b:06:5f:31:5d:6b:41:43:f7:76:52:5c:14:28:a5:ca:7e:84:
0f:df:f1:b0:f9:b6:0d:64:6d:6b:3f:20:be:f2:58:a7:6f:d3:
26:21:10:a3:1c:af:88:5b:7a:49:b0:1e:3a:e4:d7:60:78:d6:
63:84:9c:d9:fe:c6:b1:e9:17:ec:a9:24:17:12:ad:c6:26:4a:
7c:ff:cf:ad:29:6a:63:eb:7d:be:76:80:98:a0:73:ef:c6:9e:
ea:c5:21:b4:e9:c0:d6:80:00:ec:93:f5:cb:84:ac:7f:ec:7a:
ca:8d:79:5a:fa:8d:b6:2d:f4:c8:53:0a:2e:a8:66:bb:bb:b5:
b2:e3:73:de:5e:7b:e7:22:8d:ee:84:b4:d2:6a:0a:78:e9:26:
dc:9d:09:ec:c2:26:7f:7f:94:e0:31:20:69:9e:2b:a1:2b:0c:
fe:5a:a9:ae:a4:fe:02:f4:30:2e:c8:9b:00:02:61:65:f0:c5:
17:54:33:d2:76:56:af:5f:f0:b4:bc:8a:c9:1b:a9:ff:c9:be:
14:0c:07:eb:5a:70:05:a6:69:28:dc:0c:05:b8:6c:f8:d2:02:
5c:dc:7e:c7:25:94:0e:61:4c:4d:3b:1a:b5:a6:7e:45:ff:f0:
76:74:50:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Apr 10 20:23:26 2025 by rpki-client