Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2nBnO8FPf4BfuJzmJcYR4g7wo3M.cer
File: 2nBnO8FPf4BfuJzmJcYR4g7wo3M.cer (raw, json)
Hash identifier: HHZ87NaKlAhfWt3vxqdywtmJHhjsW7VLNwQgLC5RWK4=
Subject key identifier: DA:70:67:3B:C1:4F:7F:80:5F:B8:9C:E6:25:C6:11:E2:0E:F0:A3:73
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E1CC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91521E2/EC1BB596DA7911EC801F7036C4F9AE02/2nBnO8FPf4BfuJzmJcYR4g7wo3M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91521E2/EC1BB596DA7911EC801F7036C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Mar 2024 03:57:19 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 149430
IP: 103.179.80.0/23
IP: 2001:df0:4a40::/48
Validation: Failed, certificate revoked on Tue 02 Apr 2024 18:54:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123340 (0x1e1cc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 1 03:57:19 2024 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A91521E2/serialNumber=DA70673BC14F7F805FB89CE625C611E20EF0A373
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e9:91:63:84:13:d0:82:18:b6:9e:87:a5:2b:84:
ef:88:73:8c:0c:d4:5d:9d:a1:08:2b:3a:61:8e:45:
76:2f:b2:7e:77:c2:7d:8d:4d:62:30:d2:20:49:45:
08:83:d6:2c:d7:15:26:9e:96:aa:95:27:3c:55:86:
e4:63:cf:92:af:fa:c8:d7:76:9f:3a:4c:76:f4:bd:
e5:5c:89:7e:72:44:4c:a5:76:df:ef:59:13:11:a1:
63:53:fb:f4:3a:97:01:1f:ed:1f:cc:c4:01:6c:a1:
2b:be:47:c0:f6:1e:10:a8:f7:05:9e:3b:5d:ad:6e:
ff:f0:bb:4c:39:61:bb:c4:91:0f:e8:e6:b2:33:f9:
f2:ca:bf:c3:64:32:35:84:cb:f1:b2:97:12:a0:4b:
57:f6:11:a5:b3:1f:b6:38:e1:b0:f3:f5:14:64:41:
a3:1b:db:c1:71:e1:d1:ac:41:2b:3c:e6:78:28:1a:
8c:cd:d0:30:8e:18:09:9d:7e:75:76:79:ad:7c:1c:
60:66:53:73:03:e0:17:17:98:f3:28:dd:f8:03:87:
a9:d8:87:bd:5d:b1:fa:3a:5f:80:37:6e:30:7b:a1:
db:dd:8c:e3:d3:e6:2a:63:77:dc:ab:40:65:84:4b:
a2:dc:a1:41:38:7a:1a:89:96:76:88:fe:8e:e6:3f:
fb:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DA:70:67:3B:C1:4F:7F:80:5F:B8:9C:E6:25:C6:11:E2:0E:F0:A3:73
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91521E2/EC1BB596DA7911EC801F7036C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91521E2/EC1BB596DA7911EC801F7036C4F9AE02/2nBnO8FPf4BfuJzmJcYR4g7wo3M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149430
sbgp-ipAddrBlock: critical
IPv4:
103.179.80.0/23
IPv6:
2001:df0:4a40::/48
Signature Algorithm: sha256WithRSAEncryption
d6:16:95:d5:02:71:9c:d9:40:9e:7f:88:10:79:8d:42:1b:62:
f6:8d:66:99:0f:54:d1:a8:26:30:bd:b6:b3:e9:78:a2:5c:8d:
5e:7a:b8:c4:5c:f0:95:d6:b9:be:d1:66:cd:5b:73:2e:91:30:
d3:d3:b3:94:4b:2a:d7:7d:62:77:74:93:e9:52:3a:25:5c:34:
59:c9:0e:8f:dd:f8:be:62:1e:4b:35:ca:93:7f:76:c7:52:f5:
ef:18:1c:76:8b:37:0f:b5:67:d3:1f:95:1a:e2:9e:e9:4d:e7:
9c:28:c4:b7:f2:de:1b:36:78:54:ca:74:bd:11:99:02:32:17:
21:70:8e:26:79:23:6a:39:c4:c8:5f:73:69:e2:1d:b8:d4:f2:
13:15:a5:bb:2f:9d:9b:78:b0:9f:29:9c:9c:83:42:4f:2c:15:
27:a2:5b:79:df:d5:68:e0:c9:a6:f4:62:d7:92:fb:01:00:4b:
ab:da:42:b1:9b:97:4e:8c:42:a8:e3:83:70:e4:36:28:3c:7a:
81:c3:a6:84:b9:98:2a:68:3e:53:eb:d1:3e:61:4f:0d:60:36:
a3:4b:62:b6:67:71:c1:65:ed:40:68:38:46:7b:85:04:62:11:
93:d7:7a:f7:b1:7f:f0:97:9a:c6:b9:fc:3b:c5:e4:a2:06:f6:
9b:6e:50:bf
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Tue Apr 2 20:59:16 2024 by rpki-client on console-fra.rpki-client.org