Certificate 

$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/-P-HgJbLhByDdgq1VerbvXBSUwo.cer
File:                     -P-HgJbLhByDdgq1VerbvXBSUwo.cer (raw, json)
Hash identifier:          LSpCjEamym8qCZCgEhc9zXJ2znZSKJaHQBWScBs6jBQ=
Subject key identifier:   F8:FF:87:80:96:CB:84:1C:83:76:0A:B5:55:EA:DB:BD:70:52:53:0A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer:       /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial:       01E323
Authority info access:    rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest:                 rsync://rpki.apnic.net/member_repository/A91E28F6/FEF3446C8D7811EB8D8BD60BC4F9AE02/-P-HgJbLhByDdgq1VerbvXBSUwo.mft
caRepository:             rsync://rpki.apnic.net/member_repository/A91E28F6/FEF3446C8D7811EB8D8BD60BC4F9AE02/
Notify URL:               https://rrdp.apnic.net/notification.xml
Certificate not before:   Wed 06 Mar 2024 14:42:18 +0000
Certificate not after:    Thu 01 May 2025 00:00:00 +0000
Subordinate resources:    IP: 202.20.98.0/24
                          IP: 202.20.111.0/24
                          IP: 203.14.166.0/24

Validation:               Failed, certificate revoked on Mon 26 Aug 2024 23:26:38 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 123683 (0x1e323)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
        Validity
            Not Before: Mar  6 14:42:18 2024 GMT
            Not After : May  1 00:00:00 2025 GMT
        Subject: CN=A91E28F6/serialNumber=F8FF878096CB841C83760AB555EADBBD7052530A
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d4:6b:1e:f2:15:ab:6b:55:dc:f9:cf:ad:c4:35:
                    e0:4f:96:30:72:b1:57:1f:96:44:80:26:71:1e:df:
                    6e:2e:ec:82:33:23:0e:60:e0:05:97:33:12:39:bc:
                    5f:05:f4:de:c1:36:bb:75:a9:ed:be:29:65:9e:52:
                    bb:9a:52:8e:ff:c1:81:86:7e:e3:ec:e8:16:d3:27:
                    6e:72:02:5f:0a:cd:f2:e5:7e:5f:11:a5:06:f5:c7:
                    7a:c7:ee:77:82:d5:0d:8f:b3:47:38:63:e3:1e:1c:
                    9e:77:18:f1:0d:d3:2d:b5:a4:d8:ca:2c:78:df:8e:
                    a1:7d:c5:54:57:d2:e2:3f:8f:bf:0d:55:6a:20:f6:
                    b8:8c:c1:c2:d3:bd:48:7c:a4:29:60:60:06:6c:51:
                    7d:e9:8c:a3:38:47:0e:a1:9a:4a:bc:b8:b8:e3:a7:
                    93:5f:49:8d:d0:aa:82:ac:d3:ef:d5:a1:59:d3:32:
                    08:9e:d3:ba:01:ce:02:17:ea:a0:43:59:a8:c9:ea:
                    5c:cb:2c:32:16:b6:ee:34:ec:10:33:2f:fd:47:eb:
                    f2:92:48:a8:61:dd:97:44:25:4e:43:e2:b9:fb:eb:
                    db:6e:c3:a0:25:74:3e:5a:28:f9:a2:a8:06:1b:01:
                    20:cf:be:5e:c4:30:3a:8a:c5:5b:a1:f4:27:41:80:
                    05:bd
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                F8:FF:87:80:96:CB:84:1C:83:76:0A:B5:55:EA:DB:BD:70:52:53:0A
            X509v3 Authority Key Identifier:
                keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F

            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE
            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber
                  CPS: https://www.apnic.net/RPKI/CPS.pdf

            Subject Information Access:
                CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E28F6/FEF3446C8D7811EB8D8BD60BC4F9AE02/
                RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E28F6/FEF3446C8D7811EB8D8BD60BC4F9AE02/-P-HgJbLhByDdgq1VerbvXBSUwo.mft
                RPKI Notify - URI:https://rrdp.apnic.net/notification.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  202.20.98.0/24
                  202.20.111.0/24
                  203.14.166.0/24

    Signature Algorithm: sha256WithRSAEncryption
         a0:d7:0d:7b:a0:cc:f0:83:7e:87:86:16:18:cf:ee:c8:94:78:
         5d:77:24:7d:08:ac:40:a2:83:fd:7a:0a:6e:69:4d:f6:84:f7:
         0e:92:9c:22:ba:27:56:34:36:43:00:10:2e:e5:34:b5:1d:8d:
         65:ea:9d:68:2c:74:60:06:4d:bc:55:fd:57:2f:2b:58:76:3f:
         b3:90:87:9d:aa:cf:db:0a:58:e3:b6:b9:2b:23:0e:fe:a0:c1:
         df:86:b7:33:bd:07:9f:f1:3d:29:dd:db:e2:0f:ea:f4:82:79:
         4d:bd:8a:f0:a0:a6:a9:c9:0f:07:52:1b:b4:29:dd:ea:0c:22:
         82:60:d5:36:c3:5c:c4:d9:8c:98:bb:95:9a:ca:c3:1f:91:b5:
         d5:f5:7a:0a:61:83:62:f0:8a:b0:60:45:04:0c:21:c6:60:bb:
         f6:ab:67:93:2e:52:59:b3:29:f5:1f:a4:82:82:f3:51:91:72:
         88:17:af:78:bd:f3:2d:81:17:b9:31:91:5c:9a:ce:2b:a9:5b:
         93:d9:90:0d:0c:05:5b:1d:1d:4a:fa:52:53:24:fc:76:35:c4:
         36:81:74:c5:88:9e:aa:7d:cb:8d:5d:f0:68:3c:c5:5f:d2:a7:
         81:7e:82:7e:12:a9:ff:0e:da:bb:70:6e:53:f9:60:2e:89:b3:
         d8:23:ed:b4
-----BEGIN CERTIFICATE-----
MIIGCjCCBPKgAwIBAgIDAeMjMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwNjE0NDIxOFoXDTI1MDUwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTI4RjYxMTAvBgNVBAUTKEY4RkY4NzgwOTZDQjg0MUM4Mzc2MEFC
NTU1RUFEQkJENzA1MjUzMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDUax7yFatrVdz5z63ENeBPljBysVcflkSAJnEe324u7IIzIw5g4AWXMxI5vF8F
9N7BNrt1qe2+KWWeUruaUo7/wYGGfuPs6BbTJ25yAl8KzfLlfl8RpQb1x3rH7neC
1Q2Ps0c4Y+MeHJ53GPEN0y21pNjKLHjfjqF9xVRX0uI/j78NVWog9riMwcLTvUh8
pClgYAZsUX3pjKM4Rw6hmkq8uLjjp5NfSY3QqoKs0+/VoVnTMgie07oBzgIX6qBD
WajJ6lzLLDIWtu407BAzL/1H6/KSSKhh3ZdEJU5D4rn769tuw6AldD5aKPmiqAYb
ASDPvl7EMDqKxVuh9CdBgAW9AgMBAAGjggL/MIIC+zAdBgNVHQ4EFgQU+P+HgJbL
hByDdgq1VerbvXBSUwowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUUyOEY2L0ZFRjM0NDZDOEQ3ODExRUI4RDhCRDYwQkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFMjhGNi9GRUYzNDQ2QzhENzgxMUVCOEQ4QkQ2MEJDNEY5QUUwMi8tUC1IZ0pi
TGhCeURkZ3ExVmVyYnZYQlNVd28ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwKwYIKwYBBQUHAQcBAf8EHDAa
MBgEAgABMBIDBADKFGIDBADKFG8DBADLDqYwDQYJKoZIhvcNAQELBQADggEBAKDX
DXugzPCDfoeGFhjP7siUeF13JH0IrECig/16Cm5pTfaE9w6SnCK6J1Y0NkMAEC7l
NLUdjWXqnWgsdGAGTbxV/VcvK1h2P7OQh52qz9sKWOO2uSsjDv6gwd+GtzO9B5/x
PSnd2+IP6vSCeU29ivCgpqnJDwdSG7Qp3eoMIoJg1TbDXMTZjJi7lZrKwx+RtdX1
egphg2LwirBgRQQMIcZgu/arZ5MuUlmzKfUfpIKC81GRcogXr3i98y2BF7kxkVya
ziupW5PZkA0MBVsdHUr6UlMk/HY1xDaBdMWInqp9y41d8Gg8xV/Sp4F+gn4Sqf8O
2rtwblP5YC6Js9gj7bQ=
-----END CERTIFICATE-----
Generated at Tue Aug 27 00:33:05 2024 by rpki-client on console-fra.rpki-client.org