Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2lyPJyhAj-74JW4gOI3rlgHltRA.cer
File: 2lyPJyhAj-74JW4gOI3rlgHltRA.cer (raw, json)
Hash identifier: RYMfGKYxO2R/lZ3OeWHYRzdtVjV5sDMu3sMz0Pmd4M4=
Subject key identifier: DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F614
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 01 Jun 2024 17:37:56 +0000
Certificate not after: Tue 01 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 59333
IP: 103.227.156.0/22
IP: 2001:df3:c800::/48
Validation: Failed, certificate revoked on Fri 21 Jun 2024 15:02:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 128532 (0x1f614)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 1 17:37:56 2024 GMT
Not After : Oct 1 00:00:00 2024 GMT
Subject: CN=A91546FB/serialNumber=DA5C8F2728408FEEF8256E20388DEB9601E5B510
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:be:96:b5:13:36:57:05:a2:d2:bd:14:20:3f:eb:
f5:d0:61:2f:b2:d2:01:b1:1a:e6:b4:ed:03:bb:ef:
47:5e:41:94:9c:19:bb:20:cf:b0:99:8e:ea:b5:84:
4d:6e:04:ae:8f:3c:0e:7d:cc:26:37:bb:60:c7:83:
b1:38:e2:ad:d5:c9:b5:23:93:29:12:45:a1:ed:e3:
ed:05:61:15:36:f7:64:51:07:41:81:28:f4:da:96:
5b:73:4b:87:3a:79:6d:ad:22:47:4d:14:0c:8e:ba:
a3:d0:0a:35:94:d8:c9:b0:e7:fe:d8:bd:d8:71:76:
f6:87:30:91:a2:63:30:1a:7f:4b:4b:21:9e:87:da:
14:56:82:9b:ea:7c:8e:81:b8:f5:34:f1:6d:7d:86:
3d:40:c2:79:30:09:35:9d:45:3d:9b:b3:e5:64:91:
6a:d4:07:89:16:3c:f1:d7:0d:ea:e3:01:4b:9b:90:
9d:5e:74:ae:aa:b2:9c:d7:17:6d:f0:b3:ba:0b:bf:
71:20:04:7d:3c:bd:12:52:95:8f:ba:8a:ac:d6:bf:
a3:fd:96:16:02:b7:1e:b8:8b:fc:33:22:62:37:bc:
1c:2a:03:e8:51:fd:b2:09:2f:1a:6f:8a:b2:0a:30:
1c:8f:e8:ab:a4:f2:64:fe:e4:8f:30:c4:08:c7:cc:
79:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:5C:8F:27:28:40:8F:EE:F8:25:6E:20:38:8D:EB:96:01:E5:B5:10
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91546FB/1E5C938A01E511EDBA7BA90EC4F9AE02/2lyPJyhAj-74JW4gOI3rlgHltRA.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
59333
sbgp-ipAddrBlock: critical
IPv4:
103.227.156.0/22
IPv6:
2001:df3:c800::/48
Signature Algorithm: sha256WithRSAEncryption
5b:97:19:f3:59:4e:03:8c:25:aa:d5:37:8b:af:83:78:52:2b:
80:03:fd:d9:eb:b0:84:4f:8c:15:14:ef:67:46:60:80:cc:5b:
46:54:2e:12:3f:7c:71:31:7c:c3:76:38:68:7d:77:60:bb:ca:
08:43:53:af:0f:a9:51:5a:13:bc:9f:00:7c:5b:e8:77:33:56:
c3:3d:1d:94:68:95:e3:1a:2e:4c:cc:90:df:94:d5:24:18:b1:
8e:30:fc:0c:c0:f9:39:49:48:a7:1b:20:82:99:43:8c:12:32:
f9:56:2b:0e:8b:12:88:08:44:66:3c:45:97:d1:5a:d3:41:8d:
bf:c2:28:8d:ed:74:07:f8:8d:bc:92:22:e2:10:89:30:81:72:
84:e8:55:cb:18:86:0b:8a:87:71:6a:4d:a1:94:d2:61:35:59:
d7:4b:22:c5:09:dc:90:9e:17:47:ca:2f:26:44:41:00:23:c3:
35:5d:18:f7:be:46:ff:d5:5c:0c:45:c5:e7:f7:5a:08:5a:e4:
fa:5f:15:89:f8:7f:84:fd:9c:37:be:c0:f8:74:98:23:ab:f0:
84:d1:b5:81:b8:01:ed:cf:29:53:5c:d7:6a:46:6b:d5:5d:ae:
98:74:4f:59:ad:70:4d:37:cf:fd:35:d9:e1:3e:51:05:69:9c:
6c:a8:a3:de
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri Jun 21 18:06:49 2024 by rpki-client on console-fra.rpki-client.org