Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/3-RrPbIun4VThHCazKhJTv95MUY.cer
File: 3-RrPbIun4VThHCazKhJTv95MUY.cer (raw, json)
Hash identifier: 7h43mNFTuYA5sv4YqhvuaM4sT6nuhtIvpWSNPwFWOnk=
Subject key identifier: DF:E4:6B:3D:B2:2E:9F:85:53:84:70:9A:CC:A8:49:4E:FF:79:31:46
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E796
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91976C9/0F9615B8E34D11E6B6B7021FC4F9AE02/3-RrPbIun4VThHCazKhJTv95MUY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91976C9/0F9615B8E34D11E6B6B7021FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 31 Mar 2024 16:44:01 +0000
Certificate not after: Thu 01 Aug 2024 00:00:00 +0000
Subordinate resources: IP: 2400:8b40::/32
Validation: Failed, certificate revoked on Fri 19 Apr 2024 17:17:55 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 124822 (0x1e796)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 16:44:01 2024 GMT
Not After : Aug 1 00:00:00 2024 GMT
Subject: CN=A91976C9/serialNumber=DFE46B3DB22E9F855384709ACCA8494EFF793146
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d4:23:fb:08:14:ea:44:00:40:48:eb:4f:cd:80:
05:72:24:6e:aa:4a:1d:9c:f4:3e:f7:ef:80:4a:de:
62:3a:1b:3f:d7:e1:a6:40:61:7d:d9:ee:d6:5d:2c:
c6:5f:a3:63:65:da:c3:1a:8f:64:05:04:07:07:8d:
c2:37:8e:3c:94:88:50:e6:0d:2d:41:7e:29:91:db:
4e:c4:62:12:46:ac:1c:b4:e1:ca:74:c4:d7:bb:7d:
b1:c1:3d:29:e9:db:2b:44:47:5a:39:f5:57:c0:57:
f8:1f:a5:3f:78:2b:6e:65:32:02:73:4b:0a:1b:0e:
1f:8e:83:d2:fe:03:6e:cc:1c:50:f3:9f:aa:7c:a2:
95:d1:a8:65:06:0a:70:b8:8e:bc:43:3f:a5:b2:e2:
08:90:6e:0a:70:c6:34:23:42:2e:cc:9c:cd:17:a7:
c1:c2:ef:be:90:c4:58:f3:98:bb:6b:e3:dd:d0:ab:
e5:03:3a:45:e3:9b:06:0e:f3:77:98:da:06:2d:67:
b3:59:65:57:bc:e7:f9:88:d7:80:8b:7f:45:98:51:
ba:d1:07:ab:0d:bc:99:ca:b7:e7:a5:8b:56:37:eb:
c4:eb:6f:02:95:3d:f7:6e:2b:d4:cd:07:31:9d:54:
06:cb:55:fa:fb:c6:39:ad:77:24:06:e0:dd:4e:f6:
44:d1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DF:E4:6B:3D:B2:2E:9F:85:53:84:70:9A:CC:A8:49:4E:FF:79:31:46
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91976C9/0F9615B8E34D11E6B6B7021FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91976C9/0F9615B8E34D11E6B6B7021FC4F9AE02/3-RrPbIun4VThHCazKhJTv95MUY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2400:8b40::/32
Signature Algorithm: sha256WithRSAEncryption
8c:e4:0e:f8:c8:be:97:63:12:7e:76:c5:4a:9a:b3:02:41:01:
5a:31:ec:c5:83:d7:85:82:89:dc:11:4c:00:83:bc:7c:03:e1:
97:56:82:55:5f:4a:2b:c7:12:38:2f:ba:8f:9d:69:8b:bc:37:
65:b0:72:6e:f9:04:40:41:1f:c0:d6:d7:40:9d:79:c7:b6:64:
a5:55:7b:ae:ef:6c:0c:12:ee:28:67:98:bd:0c:6e:54:bb:18:
d4:e3:db:04:57:5e:66:31:cf:e7:5a:67:ae:d9:6f:48:f1:47:
36:2f:83:4c:04:8c:ef:b2:8b:22:65:19:48:bb:28:4c:59:15:
62:5b:15:db:48:01:10:89:b8:af:43:7f:c1:00:df:54:35:4e:
c3:29:aa:29:a2:2d:f3:34:39:b4:fc:d2:fa:ba:f9:7a:68:e3:
b5:e4:d2:47:9b:30:a6:89:47:43:db:ff:71:52:a8:42:77:67:
4d:c9:74:5d:2a:62:f0:87:fe:b5:45:5b:a2:95:15:02:7f:2c:
96:c1:f8:bb:dc:b4:4d:9b:7f:c3:6a:5c:c7:a5:cc:c0:04:98:
ef:5f:a0:25:c8:cb:3d:24:f9:c8:3c:80:6a:53:77:ae:10:c2:
93:03:b1:36:ee:d1:e7:23:12:f1:cf:11:cc:47:df:db:0b:48:
11:97:48:ca
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:53 2024 by rpki-client on console-fra.rpki-client.org