This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer File: BfhBmvmqMYTqsf-HQkpq4zz3MsQ.cer (raw, json) Hash identifier: eosUVmWTKvBa4o/6aB1CZkBj3AOHxTEzWQhFMtqmR/o= Subject key identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Certificate serial: 0260D3 Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer Manifest: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft caRepository: rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/ Notify URL: https://rrdp.apnic.net/notification.xml Certificate not before: Fri 29 Aug 2025 16:04:33 +0000 Certificate not after: Sat 31 Oct 2026 00:00:00 +0000 Subordinate resources: AS: 18017 IP: 202.65.160.0/23 Validation: Failed, certificate revoked on Fri 12 Sep 2025 16:18:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 155859 (0x260d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F Validity Not Before: Aug 29 16:04:33 2025 GMT Not After : Oct 31 00:00:00 2026 GMT Subject: CN=A915E575, serialNumber=05F8419AF9AA3184EAB1FF87424A6AE33CF732C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ae:a4:01:40:cc:01:2d:1d:e7:25:45:ae:af: d2:5a:e7:94:80:32:dc:e4:ac:ba:6b:81:ab:f8:f8: b2:2d:87:dc:ec:c9:d4:03:46:55:7c:a1:b6:05:7e: 88:2d:c7:e6:65:a5:a3:c8:b9:cc:af:c3:dc:db:93: b4:84:67:b4:7d:86:4b:49:63:c5:38:c8:d2:32:64: 71:43:ea:3a:f1:da:55:c9:93:2c:7f:8d:ce:aa:f8: 30:cf:ac:a7:aa:25:51:f2:b6:e3:36:91:5c:6f:98: 30:74:b9:e6:a2:5e:01:b9:22:b5:3f:28:cd:c9:67: f2:50:6d:36:65:43:a3:be:c4:69:9f:16:0f:5b:82: 52:8b:38:10:42:37:ba:12:fb:d1:9c:99:1d:d9:16: 56:b7:1e:1a:9a:4f:d4:6e:6a:7b:74:c6:4a:34:c5: 69:66:c7:e1:bb:57:04:6f:2c:17:2b:58:29:85:f8: 2c:69:b2:19:15:6f:8c:68:98:f7:47:95:a9:47:2d: bc:fc:28:12:33:47:10:ef:0d:19:9f:4a:e3:c8:1e: 07:c9:c8:bc:5e:46:60:f4:a8:24:d9:38:27:6a:37: ed:de:f3:fa:d0:43:3d:3f:18:b8:f2:9b:59:90:13: 86:f0:5b:0e:6d:08:40:57:ed:e0:8a:b2:97:48:d0: 86:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F8:41:9A:F9:AA:31:84:EA:B1:FF:87:42:4A:6A:E3:3C:F7:32:C4 X509v3 Authority Key Identifier: keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 Basic Constraints: critical CA:TRUE X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: CA Repository - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/ RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A915E575/F0B242148FA611EC9C397762C4F9AE02/BfhBmvmqMYTqsf-HQkpq4zz3MsQ.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: 18017 sbgp-ipAddrBlock: critical IPv4: 202.65.160.0/23 Signature Algorithm: sha256WithRSAEncryption 72:a8:6b:6c:e5:92:82:2c:db:5e:d7:d8:f3:29:2c:37:a0:0a: d3:f6:63:d2:fd:98:f3:c5:74:26:55:21:d4:76:74:d3:4f:11: 94:23:ba:a5:9e:dc:12:3b:29:86:fd:de:57:ff:9a:18:04:d6: 4b:56:bf:0f:47:68:69:68:91:d0:98:6f:d3:8f:c2:c0:81:51: fc:8a:36:50:a7:1e:7d:83:82:f8:8c:07:33:92:31:63:69:ab: b6:48:9e:a6:0c:e5:e8:b5:18:95:f4:23:74:e0:4d:42:ef:32: e0:5a:a7:52:a6:e4:53:12:0e:1a:df:b0:d5:8a:ee:ac:ce:c8: 84:5f:02:56:22:09:7f:af:49:be:97:3a:66:78:72:8b:8d:3e: 8f:30:96:fd:01:42:75:3c:99:b7:c3:de:a8:f8:2b:61:cc:25: e9:f8:e6:0f:f4:05:42:79:f7:2e:c4:c4:c4:61:66:f2:07:58: 01:7f:1e:3f:82:45:c2:57:0a:58:c4:bf:81:ea:f8:04:19:3b: a4:a0:7b:29:0e:07:4d:a8:b9:79:f4:af:8f:16:bf:ea:2e:42: 71:ca:8b:41:8c:b8:3a:03:5a:22:29:44:47:e7:88:a3:c2:79: b1:28:5d:2d:17:32:d0:e3:12:da:d4:d1:3e:aa:d0:96:5c:5c: 99:ea:8a:a6 -----BEGIN CERTIFICATE----- MIIGGTCCBQGgAwIBAgIDAmDTMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5 MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4 QzkwN0FBNzlGMB4XDTI1MDgyOTE2MDQzM1oXDTI2MTAzMTAwMDAwMFowRjERMA8G A1UEAxMIQTkxNUU1NzUxMTAvBgNVBAUTKDA1Rjg0MTlBRjlBQTMxODRFQUIxRkY4 NzQyNEE2QUUzM0NGNzMyQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDRrqQBQMwBLR3nJUWur9Ja55SAMtzkrLprgav4+LIth9zsydQDRlV8obYFfogt x+ZlpaPIucyvw9zbk7SEZ7R9hktJY8U4yNIyZHFD6jrx2lXJkyx/jc6q+DDPrKeq JVHytuM2kVxvmDB0ueaiXgG5IrU/KM3JZ/JQbTZlQ6O+xGmfFg9bglKLOBBCN7oS +9GcmR3ZFla3HhqaT9Ruant0xko0xWlmx+G7VwRvLBcrWCmF+CxpshkVb4xomPdH lalHLbz8KBIzRxDvDRmfSuPIHgfJyLxeRmD0qCTZOCdqN+3e8/rQQz0/GLjym1mQ E4bwWw5tCEBX7eCKspdI0IYjAgMBAAGjggMOMIIDCjAdBgNVHQ4EFgQUBfhBmvmq MYTqsf+HQkpq4zz3MsQwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2 NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1 OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0 RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5 MTVFNTc1L0YwQjI0MjE0OEZBNjExRUM5QzM5Nzc2MkM0RjlBRTAyLzB+BggrBgEF BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B OTE1RTU3NS9GMEIyNDIxNDhGQTYxMUVDOUMzOTc3NjJDNEY5QUUwMi9CZmhCbXZt cU1ZVHFzZi1IUWtwcTR6ejNNc1EubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI oAYwBAICRmEwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHKQaAwDQYJKoZI hvcNAQELBQADggEBAHKoa2zlkoIs217X2PMpLDegCtP2Y9L9mPPFdCZVIdR2dNNP EZQjuqWe3BI7KYb93lf/mhgE1ktWvw9HaGlokdCYb9OPwsCBUfyKNlCnHn2DgviM BzOSMWNpq7ZInqYM5ei1GJX0I3TgTULvMuBap1Km5FMSDhrfsNWK7qzOyIRfAlYi CX+vSb6XOmZ4couNPo8wlv0BQnU8mbfD3qj4K2HMJen45g/0BUJ59y7ExMRhZvIH WAF/Hj+CRcJXCljEv4Hq+AQZO6SgeykOB02ouXn0r48Wv+ouQnHKi0GMuDoDWiIp REfniKPCebEoXS0XMtDjEtrU0T6q0JZcXJnqiqY= -----END CERTIFICATE-----Generated at Fri Dec 19 23:50:26 2025 by rpki-client