Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/MgqkgQw8CaJaJnnaP64BUwYEXoQ.cer
File: MgqkgQw8CaJaJnnaP64BUwYEXoQ.cer (raw, json)
Hash identifier: rIPbyExg1VJc2T9UorACi/NWJ+BauVcpgZ/avoP3ZNk=
Subject key identifier: 32:0A:A4:81:0C:3C:09:A2:5A:26:79:DA:3F:AE:01:53:06:04:5E:84
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 50BC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/MgqkgQw8CaJaJnnaP64BUwYEXoQ.mft
caRepository: rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jan 2024 15:35:58 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: IP: 67.158.52.0/24
IP: 142.79.224.0/19
IP: 157.10.12.0/22
IP: 157.10.22.0 -- 157.10.27.255
IP: 157.10.40.0/23
IP: 157.10.56.0 -- 157.10.62.255
IP: 157.10.92.0/23
IP: 157.10.96.0/24
IP: 157.10.98.0/23
IP: 157.10.150.0/23
IP: 157.10.168.0/23
IP: 157.10.204.0/24
IP: 157.10.216.0/23
IP: 158.144.0.0/16
IP: 159.117.144.0/20
IP: 162.216.140.0/22
IP: 164.164.0.0/16
IP: 168.220.224.0/19
Validation: Failed, certificate revoked on Thu 18 Jan 2024 22:51:25 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 20668 (0x50bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Jan 18 15:35:58 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A918EDB2/serialNumber=320AA4810C3C09A25A2679DA3FAE015306045E84
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dd:e1:52:a6:c4:e8:df:ab:cb:4f:66:6e:7c:e3:
e5:76:63:86:fc:17:e5:29:9d:13:02:59:0f:67:89:
11:08:17:b4:f1:e3:76:86:01:6a:41:09:d5:56:d1:
75:78:1d:78:a7:c2:5e:37:8e:36:0a:0f:3f:05:07:
20:01:89:20:70:d2:d9:64:99:80:5e:65:7c:06:03:
0a:95:fb:26:80:84:b2:97:a3:57:9c:85:35:9e:60:
04:92:4e:7d:60:43:0e:76:6a:81:c7:ff:1f:2b:94:
2f:35:32:f4:bd:27:d8:21:5a:9a:ea:8b:de:b5:b7:
37:f9:95:73:38:33:59:2a:4b:b0:96:3f:9d:ff:ae:
b6:64:4e:33:b0:cd:cf:42:9c:b8:39:32:a9:b9:05:
ac:d0:14:9d:cd:4a:71:10:57:a9:6d:97:b2:2a:2b:
ae:26:cd:75:46:50:22:d4:11:d4:42:72:64:af:1e:
0c:07:88:bc:5b:bf:7b:e4:2b:05:1b:22:39:d6:6b:
34:71:1a:c0:05:fa:a1:3a:ba:e1:c2:ae:e2:c5:f2:
f8:03:af:9d:48:9e:d0:20:61:fb:f7:9e:33:e3:63:
52:10:66:5f:32:0f:cf:a1:b1:96:3e:2d:f5:3d:43:
55:bf:c2:76:36:ab:f0:0a:40:eb:d5:a8:be:61:07:
7c:91
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
32:0A:A4:81:0C:3C:09:A2:5A:26:79:DA:3F:AE:01:53:06:04:5E:84
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A918EDB2/1C57CEAC70E911E2B36D4B6B2979BB20/MgqkgQw8CaJaJnnaP64BUwYEXoQ.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
67.158.52.0/24
142.79.224.0/19
157.10.12.0/22
157.10.22.0-157.10.27.255
157.10.40.0/23
157.10.56.0-157.10.62.255
157.10.92.0/23
157.10.96.0/24
157.10.98.0/23
157.10.150.0/23
157.10.168.0/23
157.10.204.0/24
157.10.216.0/23
158.144.0.0/16
159.117.144.0/20
162.216.140.0/22
164.164.0.0/16
168.220.224.0/19
Signature Algorithm: sha256WithRSAEncryption
73:ce:65:ef:0d:db:9e:e7:4a:7d:5f:0e:3e:9d:39:1b:3b:62:
8c:04:51:8a:ff:ab:d6:59:db:12:0e:56:7b:f8:30:29:a2:3a:
94:d2:2f:43:2b:4b:47:8a:97:85:49:1f:99:3c:6e:fc:ac:bb:
94:30:7f:ee:c1:06:be:d2:13:30:c0:6b:35:fe:95:16:d6:4e:
9e:ce:a7:6b:74:63:62:aa:12:be:5a:47:9d:1d:ba:64:46:87:
eb:39:8f:8e:13:f8:db:e4:39:6b:ca:76:62:47:8b:cd:fa:c5:
9d:54:b8:e4:a6:69:8a:21:8d:da:df:47:b1:b7:84:6d:f2:b3:
51:1b:b0:78:a7:42:0e:e5:ff:2a:74:ce:25:b9:99:e7:92:fb:
16:c9:e6:af:2d:92:a0:6b:e5:f0:90:5c:36:f0:48:44:7d:47:
09:32:89:0c:2a:1d:1c:76:a7:f7:70:ea:5d:7c:90:ad:fe:dc:
63:e9:c9:0c:fe:ef:29:71:e1:10:20:d5:0b:d6:1c:cd:52:f7:
36:98:07:40:40:b3:b4:6c:42:fc:95:a1:4a:16:1f:82:fc:b8:
0d:6a:a1:10:c1:4d:f0:fc:8d:b6:6d:68:e7:84:9b:f2:1b:53:
ab:05:11:28:be:85:36:12:f9:3c:5c:5b:27:8e:46:1a:8b:e3:
03:3f:ca:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 19 01:49:38 2024 by rpki-client on console-ams.rpki-client.org