Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/CI8D5lLYS8azmzSOgBApu5qhYNE.cer
File: CI8D5lLYS8azmzSOgBApu5qhYNE.cer (raw, json)
Hash identifier: 13+9j4KEo0dJTz2RrotLlDxGO74+yIjgyqn5Bck+DrU=
Subject key identifier: 08:8F:03:E6:52:D8:4B:C6:B3:9B:34:8E:80:10:29:BB:9A:A1:60:D1
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 47E4
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E6E3D/F5B37EEE225B11E2B3438FBC08B02CD2/CI8D5lLYS8azmzSOgBApu5qhYNE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E6E3D/F5B37EEE225B11E2B3438FBC08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 11 Jan 2023 06:51:01 +0000
Certificate not after: Sun 31 Mar 2024 00:00:00 +0000
Subordinate resources: IP: 192.138.251.0/24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 18404 (0x47e4)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 11 06:51:01 2023 GMT
Not After : Mar 31 00:00:00 2024 GMT
Subject: CN=A91E6E3D/serialNumber=088F03E652D84BC6B39B348E801029BB9AA160D1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c7:72:50:43:aa:94:51:3f:d5:f0:32:55:07:85:
6c:58:70:82:31:ac:b9:9f:4c:6d:8e:d4:3c:34:4e:
ca:c4:49:95:07:ef:31:93:d3:af:da:54:32:63:7b:
09:c2:1c:e0:60:83:c8:bf:80:ed:ec:4f:e2:b7:2c:
a9:06:9e:73:48:58:2d:3b:27:8a:b1:6d:2d:7d:65:
e8:b1:9d:42:9c:ee:0d:af:a3:17:87:34:63:e1:9c:
12:76:df:11:18:69:bd:5c:56:de:26:77:2f:86:5a:
b9:fb:7d:04:23:1b:fa:1c:82:d3:dd:8d:ea:65:f7:
c7:0e:53:c8:08:5c:44:4d:ed:d1:86:4b:b7:ad:6a:
07:d8:0f:ab:6b:2c:85:9e:bc:37:d8:d1:3c:b3:20:
8d:c5:fc:09:da:b8:ad:3b:ac:0a:ec:ab:e3:70:7b:
f0:9f:81:9c:20:cd:63:09:ec:44:67:dc:c6:c4:08:
ae:e9:f4:43:f0:12:ae:ca:6c:0a:22:93:97:bb:a6:
86:d5:af:aa:6a:95:5b:ef:61:44:87:6b:84:c1:d8:
94:a9:5b:04:81:6e:6b:34:c9:ca:a6:25:52:17:c9:
64:04:e3:24:b4:d7:62:8a:5f:ba:4f:3a:4e:09:50:
84:5e:9c:3e:b9:27:f3:69:ed:8f:63:17:a5:a6:59:
97:9f
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
08:8F:03:E6:52:D8:4B:C6:B3:9B:34:8E:80:10:29:BB:9A:A1:60:D1
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E6E3D/F5B37EEE225B11E2B3438FBC08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E6E3D/F5B37EEE225B11E2B3438FBC08B02CD2/CI8D5lLYS8azmzSOgBApu5qhYNE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
192.138.251.0/24
Signature Algorithm: sha256WithRSAEncryption
61:d7:78:a7:16:e2:47:bb:d8:c0:3c:2c:3c:ac:4c:2e:17:46:
61:ba:f9:34:1a:5f:41:8f:71:1b:30:0c:e5:a1:0d:e1:5a:c0:
03:42:97:9d:5b:bc:18:0f:4f:e5:7d:7e:c3:29:3c:05:ad:7f:
91:63:0a:ef:d4:6a:70:31:17:af:fd:a5:31:b1:93:2c:58:d0:
1a:3a:cb:e2:cd:57:a5:c2:0a:1a:ec:cc:6c:f6:3c:97:97:22:
df:1b:33:b5:b5:9f:07:29:9f:06:4f:c9:8e:bb:49:33:fd:dc:
c3:68:54:66:7c:d2:cd:1e:07:ce:53:a4:7e:cc:93:28:ea:b0:
38:65:32:b1:3f:82:34:45:65:a2:eb:ed:1f:7b:9d:56:87:f0:
b6:ef:c3:b9:bc:97:e9:cf:74:72:84:9c:0c:8a:7d:50:77:f4:
8c:4d:cf:97:d9:49:4a:95:ee:a6:48:e6:86:01:5c:14:46:1c:
c6:87:06:18:34:f7:55:50:45:33:21:1d:ee:7f:cb:da:0b:d1:
19:6f:6b:db:bd:be:23:85:88:3d:d5:64:a9:aa:df:9b:16:50:
dc:23:8c:4c:29:65:3b:97:6b:41:05:e9:66:36:ac:df:87:7a:
2c:cb:58:83:ef:e4:6f:23:47:a6:0d:8f:6e:0a:4a:3b:58:00:
23:5a:eb:4a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Nov 13 21:55:12 2023 by rpki-client on console-fra.rpki-client.org