Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/1EDYDwgsdqSDZNFDbJI4W5NK6zk.cer
File: 1EDYDwgsdqSDZNFDbJI4W5NK6zk.cer (raw, json)
Hash identifier: XUYqGIqXmD33TNDI2R0qRtZrEMcoDt4vu3vqFcpjrx0=
Subject key identifier: D4:40:D8:0F:08:2C:76:A4:83:64:D1:43:6C:92:38:5B:93:4A:EB:39
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 017937
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A915E810/884E04DA4F0211EDA4C84869C4F9AE02/1EDYDwgsdqSDZNFDbJI4W5NK6zk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A915E810/884E04DA4F0211EDA4C84869C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 11 Nov 2022 02:33:57 +0000
Certificate not after: Sat 30 Dec 2023 00:00:00 +0000
Subordinate resources: IP: 2402:5140::/32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96567 (0x17937)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 11 02:33:57 2022 GMT
Not After : Dec 30 00:00:00 2023 GMT
Subject: CN=A915E810/serialNumber=D440D80F082C76A48364D1436C92385B934AEB39
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a7:ec:87:33:5b:2a:28:51:91:37:75:45:46:26:
5b:8b:b0:3c:76:73:b8:45:d9:48:74:e8:b6:d6:cc:
28:4d:5f:4b:04:ab:5e:41:be:7b:3b:1b:ff:7d:69:
c6:49:b0:61:71:f7:2f:30:54:49:3e:fa:78:77:16:
32:60:9e:53:67:07:35:40:35:71:f5:9c:c9:12:a0:
f8:f9:18:84:c0:80:10:11:cd:74:c7:e9:7b:cf:d8:
8c:15:c7:82:56:b6:e2:3d:a5:82:48:d7:b1:89:40:
c6:65:03:46:6e:70:96:b3:cb:bf:0a:51:ab:11:fe:
37:d7:b8:f4:6b:c4:ba:a1:0d:1d:1f:6c:47:97:01:
0e:b7:d7:98:1f:e3:68:45:2a:c1:de:95:13:e2:53:
06:de:a3:78:07:46:a0:4e:8e:f1:e5:d3:73:67:c0:
a3:16:f9:58:22:e4:d0:24:94:09:ac:40:e6:fe:be:
b8:8a:75:ca:5b:b1:23:56:2b:62:af:f9:3e:89:42:
4e:e2:75:2a:80:43:c5:fd:38:37:35:1b:d3:a8:8e:
4b:1b:01:5c:e0:69:2d:de:bf:ae:84:d6:3d:35:5b:
f3:cd:45:a4:16:5b:68:02:10:ac:03:4d:28:22:8b:
b4:b4:47:19:4e:44:80:9d:94:33:6b:ce:67:db:26:
05:e7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D4:40:D8:0F:08:2C:76:A4:83:64:D1:43:6C:92:38:5B:93:4A:EB:39
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915E810/884E04DA4F0211EDA4C84869C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915E810/884E04DA4F0211EDA4C84869C4F9AE02/1EDYDwgsdqSDZNFDbJI4W5NK6zk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:5140::/32
Signature Algorithm: sha256WithRSAEncryption
c7:3d:cb:7e:c6:9d:2b:cb:76:08:1f:50:d9:09:70:ec:bd:ad:
32:2c:04:c3:00:e8:56:33:cd:58:22:8f:de:34:37:2b:0a:55:
12:e9:78:e9:94:58:5b:43:51:79:30:15:03:4b:a1:3d:26:00:
b3:89:73:12:3a:8d:b9:c9:e5:fa:64:cf:23:52:2e:90:92:10:
4d:e2:a4:c6:83:ef:b8:bd:28:65:6f:d8:24:1d:3e:1d:c1:a0:
bd:e0:b1:c4:ef:c3:5a:df:b8:8a:8c:fa:15:a3:1e:ec:dd:a4:
1f:35:16:2c:bf:c7:d5:b0:47:60:71:40:76:5a:d6:19:e3:0c:
90:3a:a2:f8:e0:bb:37:ce:92:4e:2c:e7:f9:fb:c2:e3:ff:76:
35:d9:f4:73:1d:73:5c:8f:e3:89:a1:c9:d7:94:a2:c0:fe:54:
a7:1e:58:7a:d3:68:33:53:69:21:da:ea:2a:d7:6d:b1:db:60:
c4:d0:46:fd:c0:2c:db:6c:eb:01:04:80:92:11:d8:21:97:dd:
6a:35:33:e7:1c:3f:ea:5e:26:c7:6d:e9:99:15:6e:86:27:32:
11:bc:cb:38:50:a1:ea:d7:34:4e:10:ff:0a:92:b8:b0:e9:82:
da:f5:2b:79:5b:c9:19:6a:31:0e:d3:68:e0:e4:6c:45:df:73:
ba:fe:b3:c7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Aug 29 15:36:49 2023 by rpki-client on console-ams.rpki-client.org