Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/3hzrj4KZQ9nzOkcKiG44OcPqcV0.cer
File: 3hzrj4KZQ9nzOkcKiG44OcPqcV0.cer (raw, json)
Hash identifier: y+XdSt3lhSAYpRxcGaf915MYZeqW+7PYsh0xKGZfZYY=
Subject key identifier: DE:1C:EB:8F:82:99:43:D9:F3:3A:47:0A:88:6E:38:39:C3:EA:71:5D
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 4054
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9191B70/96119F9C8EFE11EC87A6EA17C4F9AE02/3hzrj4KZQ9nzOkcKiG44OcPqcV0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9191B70/96119F9C8EFE11EC87A6EA17C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 16 Feb 2022 08:01:11 +0000
Certificate not after: Fri 31 Mar 2023 00:00:00 +0000
Subordinate resources: IP: 158.89.0.0/16
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 16468 (0x4054)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Feb 16 08:01:11 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=A9191B70/serialNumber=DE1CEB8F829943D9F33A470A886E3839C3EA715D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:91:83:2c:0a:7e:dc:2a:06:c6:85:b5:8e:ec:
b5:e3:25:6f:c8:57:2d:3a:14:ef:46:5e:8c:bd:dd:
33:6b:af:cf:6c:c1:50:08:4f:19:a3:dc:bf:89:f4:
40:6e:62:57:73:f2:c3:e7:cb:5e:2a:c4:f9:5a:03:
58:75:ff:0d:5a:a5:26:63:cb:15:86:d8:de:56:70:
8a:ce:41:39:4f:dd:54:84:58:a6:c7:9e:87:f5:f5:
00:ea:03:83:36:56:11:80:6a:42:11:63:7c:7a:a8:
7c:03:b0:84:cd:46:53:86:c0:73:a8:84:5f:3c:f5:
be:90:c2:e5:e0:ce:ea:03:2e:02:e8:e9:f3:ee:02:
97:d2:3b:4d:02:aa:83:9c:27:4c:61:a4:95:d3:3d:
13:05:28:e0:de:de:1c:53:b8:dc:e4:eb:b1:89:21:
4d:d3:db:c7:c7:b7:1f:32:fe:a4:0c:58:91:fa:60:
2c:c0:e3:a7:cd:df:46:e8:94:7f:0c:57:f2:3a:36:
e0:8e:6a:85:4f:5e:80:bb:13:40:52:f7:d2:c1:18:
ce:e4:73:94:c6:10:fc:3c:03:df:1c:44:8a:ea:8d:
bb:75:b6:8e:0d:32:16:4a:9b:94:8f:44:f0:f0:47:
a8:91:13:f4:26:f0:76:08:ba:ea:1a:ae:64:1d:eb:
ad:2b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DE:1C:EB:8F:82:99:43:D9:F3:3A:47:0A:88:6E:38:39:C3:EA:71:5D
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9191B70/96119F9C8EFE11EC87A6EA17C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9191B70/96119F9C8EFE11EC87A6EA17C4F9AE02/3hzrj4KZQ9nzOkcKiG44OcPqcV0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
158.89.0.0/16
Signature Algorithm: sha256WithRSAEncryption
83:23:cd:22:ab:77:cd:fb:0a:81:88:24:8c:07:7f:64:c4:8a:
4e:01:a0:c3:f0:fd:47:28:af:b3:a7:b4:14:4e:97:ca:f7:71:
14:49:e1:bd:37:30:2e:23:a3:82:57:10:b9:c2:bf:ad:93:ed:
02:94:c2:5e:ec:02:a9:73:32:b3:63:84:2c:e5:b7:2d:e1:4a:
17:62:38:96:de:de:e9:7f:39:e0:03:30:3a:e3:90:1e:d1:cc:
58:84:39:8b:01:c6:8e:b9:78:22:68:30:64:a2:c4:e6:92:ad:
bd:f1:dc:46:5d:e1:ab:aa:25:95:9b:8d:48:9a:0a:b6:59:6e:
f8:ec:1e:38:85:05:17:56:36:ca:af:eb:32:a9:4a:bb:e6:9f:
2c:2a:5e:6d:a0:dd:4e:0e:c4:39:e9:7a:10:a2:ee:df:97:6e:
1e:cc:c6:b9:04:73:36:9d:5c:eb:68:80:dc:75:fd:cd:22:b6:
8f:85:1e:7d:9d:7c:8b:09:08:fe:f6:26:6a:1c:3a:0c:af:73:
00:f1:df:97:b5:16:5e:d2:b3:7f:65:0f:e3:6e:ea:eb:9a:a9:
80:75:e1:a1:36:5a:a5:1e:8e:50:c1:6a:54:fe:5f:fd:e5:eb:
2b:dd:d9:7c:40:f8:c1:3a:33:84:2f:f5:fd:14:dd:0e:73:01:
4a:8b:38:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:15 2023 by rpki-client on console-fra.rpki-client.org