Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/QStIAXYSTgiEYCaJYCwq5XTwuHY.cer
File: QStIAXYSTgiEYCaJYCwq5XTwuHY.cer (raw, json)
Hash identifier: 6sXzTdM1kk6+9Ss1FVvOlVkA5WzXHibsBJCBNfyJCF0=
Subject key identifier: 41:2B:48:01:76:12:4E:08:84:60:26:89:60:2C:2A:E5:74:F0:B8:76
Authority key identifier: 74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
Certificate issuer: /CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Certificate serial: 44BC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91AE0C4/63A92766F14711E99A9AB712C4F9AE02/QStIAXYSTgiEYCaJYCwq5XTwuHY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91AE0C4/63A92766F14711E99A9AB712C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 28 Aug 2022 13:09:08 +0000
Certificate not after: Tue 31 Oct 2023 00:00:00 +0000
Subordinate resources: IP: 131.203.0.0/16
IP: 161.29.0.0/16
IP: 161.65.0.0/19
IP: 161.65.64.0 -- 161.65.159.255
IP: 161.65.192.0/18
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 17596 (0x44bc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=740165A80D1071970ABC09C02B71C1AC7C1D6E0E
Validity
Not Before: Aug 28 13:09:08 2022 GMT
Not After : Oct 31 00:00:00 2023 GMT
Subject: CN=A91AE0C4/serialNumber=412B480176124E0884602689602C2AE574F0B876
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:e1:19:d4:14:e5:d7:ff:bd:ab:cb:4a:ee:47:
47:ce:50:df:79:12:c2:4f:b1:e4:9a:7e:90:18:72:
80:c9:53:e5:64:d4:1a:1c:41:91:d3:9e:8f:01:16:
f9:8a:73:3b:94:86:46:e8:54:b0:52:c4:5f:77:33:
9a:9b:69:54:f2:27:b5:73:da:33:b0:0b:49:bd:c1:
4d:92:9d:0a:8e:33:71:7d:1d:b9:f6:df:c6:8d:d4:
67:ea:7c:2b:d9:57:a6:ee:d1:67:f7:ad:93:29:77:
fc:4a:01:7a:b3:2d:89:79:1a:53:b7:6f:f0:f1:fd:
5d:a4:f4:b6:42:44:3e:f2:ca:a4:f3:f1:47:43:37:
cb:99:cd:96:2c:00:34:64:0a:e0:b7:27:97:b2:44:
a9:dc:30:b1:77:1b:a2:31:61:f4:f4:4e:bb:cf:53:
7f:66:95:66:6d:f7:3f:e8:ff:59:12:dc:15:44:cb:
a2:4d:a1:9d:69:7d:75:60:ab:38:f6:af:2f:6a:ea:
04:57:37:3b:9e:3f:04:0e:65:16:6d:e0:47:5a:6c:
a2:38:29:f3:71:c6:6a:99:e7:f7:bf:08:65:f1:5c:
36:a3:c8:90:09:8e:2d:c6:be:c0:35:c2:55:23:47:
cd:06:eb:06:8f:e6:90:56:64:03:f8:76:23:5a:02:
44:b7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
41:2B:48:01:76:12:4E:08:84:60:26:89:60:2C:2A:E5:74:F0:B8:76
X509v3 Authority Key Identifier:
keyid:74:01:65:A8:0D:10:71:97:0A:BC:09:C0:2B:71:C1:AC:7C:1D:6E:0E
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91AE0C4/63A92766F14711E99A9AB712C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91AE0C4/63A92766F14711E99A9AB712C4F9AE02/QStIAXYSTgiEYCaJYCwq5XTwuHY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
131.203.0.0/16
161.29.0.0/16
161.65.0.0/19
161.65.64.0-161.65.159.255
161.65.192.0/18
Signature Algorithm: sha256WithRSAEncryption
b0:60:df:3b:5f:ed:26:2c:9c:3e:7e:24:5b:c3:c7:13:35:b1:
f6:ab:5a:aa:f6:4a:67:f6:c4:d0:ce:1c:b9:f1:86:6d:69:57:
32:1b:f6:b7:50:89:0c:3e:ea:52:b1:ce:68:0b:44:c0:3f:75:
e7:dd:82:98:25:3f:a9:69:d8:58:3b:20:51:51:98:e1:66:96:
63:73:ce:0b:ac:db:fe:30:1e:e5:0c:52:6c:7a:5c:42:23:c4:
a5:0a:2d:9f:33:d0:fb:43:8e:40:a9:ad:b2:19:69:3c:8b:6c:
75:9a:88:36:f1:68:49:66:6d:91:ba:f8:b9:00:93:5c:5f:b2:
ea:0e:fc:b7:a0:46:9b:e6:14:91:97:40:a4:ff:b0:87:85:09:
2a:fb:2c:ef:6b:43:13:71:63:4c:85:e6:88:01:70:0b:2b:51:
61:88:93:12:f0:23:dc:34:bd:68:7c:2b:5d:f1:be:da:2c:95:
d1:78:92:30:77:1d:53:b4:c6:e9:b4:12:d8:25:d9:83:37:0e:
d7:ab:5f:fe:3e:ce:1b:a0:6f:3f:44:d8:ff:58:b8:74:80:1b:
6f:16:d0:9f:7d:8c:01:58:98:e1:0c:51:4d:f7:ee:79:01:85:
09:06:01:3f:76:6c:68:cf:90:28:7c:51:9e:3c:5e:4b:89:3f:
18:2e:e5:66
-----BEGIN CERTIFICATE-----
MIIGGzCCBQOgAwIBAgICRLwwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkw
REM1QkUxMTAvBgNVBAUTKDc0MDE2NUE4MEQxMDcxOTcwQUJDMDlDMDJCNzFDMUFD
N0MxRDZFMEUwHhcNMjIwODI4MTMwOTA4WhcNMjMxMDMxMDAwMDAwWjBGMREwDwYD
VQQDEwhBOTFBRTBDNDExMC8GA1UEBRMoNDEyQjQ4MDE3NjEyNEUwODg0NjAyNjg5
NjAyQzJBRTU3NEYwQjg3NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
ANjhGdQU5df/vavLSu5HR85Q33kSwk+x5Jp+kBhygMlT5WTUGhxBkdOejwEW+Ypz
O5SGRuhUsFLEX3czmptpVPIntXPaM7ALSb3BTZKdCo4zcX0dufbfxo3UZ+p8K9lX
pu7RZ/etkyl3/EoBerMtiXkaU7dv8PH9XaT0tkJEPvLKpPPxR0M3y5nNliwANGQK
4Lcnl7JEqdwwsXcbojFh9PROu89Tf2aVZm33P+j/WRLcFUTLok2hnWl9dWCrOPav
L2rqBFc3O54/BA5lFm3gR1psojgp83HGapnn978IZfFcNqPIkAmOLca+wDXCVSNH
zQbrBo/mkFZkA/h2I1oCRLcCAwEAAaOCAxEwggMNMB0GA1UdDgQWBBRBK0gBdhJO
CIRgJolgLCrldPC4djAfBgNVHSMEGDAWgBR0AWWoDRBxlwq8CcArccGsfB1uDjAO
BgNVHQ8BAf8EBAMCAQYwDwYDVR0TAQH/BAUwAwEB/zBzBgNVHR8EbDBqMGigZqBk
hmJyc3luYzovL3Jwa2kuYXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2
MTFFMjhBQzg4MzdDNzJGRDFGRjIvZEFGbHFBMFFjWmNLdkFuQUszSEJySHdkYmc0
LmNybDB+BggrBgEFBQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5h
cG5pYy5uZXQvcmVwb3NpdG9yeS85ODA2NTJFMEI3N0UxMUU3QTk2QTM5NTIxQTRG
NEZCNC9kQUZscUEwUWNaY0t2QW5BSzNIQnJId2RiZzQuY2VyMEoGA1UdIAEB/wRA
MD4wPAYIKwYBBQUHDgIwMDAuBggrBgEFBQcCARYiaHR0cHM6Ly93d3cuYXBuaWMu
bmV0L1JQS0kvQ1BTLnBkZjCCASgGCCsGAQUFBwELBIIBGjCCARYwXwYIKwYBBQUH
MAWGU3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx
QUUwQzQvNjNBOTI3NjZGMTQ3MTFFOTlBOUFCNzEyQzRGOUFFMDIvMH4GCCsGAQUF
BzAKhnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUFFMEM0LzYzQTkyNzY2RjE0NzExRTk5QTlBQjcxMkM0RjlBRTAyL1FTdElBWFlT
VGdpRVlDYUpZQ3dxNVhUd3VIWS5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJk
cC5hcG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDA9BggrBgEFBQcBBwEB/wQuMCww
KgQCAAEwJAMDAIPLAwMAoR0DBAWhQQAwDAMEBqFBQAMEBaFBgAMEBqFBwDANBgkq
hkiG9w0BAQsFAAOCAQEAsGDfO1/tJiycPn4kW8PHEzWx9qtaqvZKZ/bE0M4cufGG
bWlXMhv2t1CJDD7qUrHOaAtEwD91592CmCU/qWnYWDsgUVGY4WaWY3POC6zb/jAe
5QxSbHpcQiPEpQotnzPQ+0OOQKmtshlpPItsdZqINvFoSWZtkbr4uQCTXF+y6g78
t6BGm+YUkZdApP+wh4UJKvss72tDE3FjTIXmiAFwCytRYYiTEvAj3DS9aHwrXfG+
2iyV0XiSMHcdU7TG6bQS2CXZgzcO16tf/j7OG6BvP0TY/1i4dIAbbxbQn32MAViY
4QxRTffueQGFCQYBP3ZsaM+QKHxRnjxeS4k/GC7lZg==
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:14 2023 by rpki-client on console-ams.rpki-client.org