Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/CZXIUEL2_botG3-QUozk1xhelWY.cer
File: CZXIUEL2_botG3-QUozk1xhelWY.cer (raw, json)
Hash identifier: qpt5TRDXHhShB31zfiKaxWkkXFuKnoq81BEQ3prebVM=
Subject key identifier: 09:95:C8:50:42:F6:FD:BA:2D:1B:7F:90:52:8C:E4:D7:18:5E:95:66
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01E306
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91B60EC/D6D214C8254511EA86406A84C4F9AE02/CZXIUEL2_botG3-QUozk1xhelWY.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91B60EC/D6D214C8254511EA86406A84C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 05 Mar 2024 17:46:53 +0000
Certificate not after: Wed 29 May 2024 00:00:00 +0000
Subordinate resources: IP: 2404:de80::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 123654 (0x1e306)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 5 17:46:53 2024 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=A91B60EC/serialNumber=0995C85042F6FDBA2D1B7F90528CE4D7185E9566
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:a1:a6:32:50:a1:29:2c:3a:ac:ed:71:61:a4:
27:15:ef:2d:ec:89:cf:bb:dd:17:bb:b4:07:a5:da:
5a:23:12:8f:1e:fe:d8:63:a4:97:89:8d:3f:bd:f4:
fa:2e:e4:ad:85:fb:a8:38:9e:12:f5:21:41:d3:48:
0a:9d:91:7d:00:9d:fc:bb:d1:5b:52:2c:2c:26:3f:
2e:35:fb:67:b8:f9:a7:c7:82:04:12:70:4a:88:72:
70:1b:89:6e:10:ea:d9:69:5f:81:32:d6:95:6e:1d:
ea:f1:cd:c3:43:0e:7d:b0:1a:21:3c:50:ec:93:2c:
94:d0:a0:d9:64:ad:44:98:94:f2:1c:67:f6:63:78:
80:64:8c:49:55:43:c9:e9:9b:11:04:96:34:9e:80:
dd:b7:d6:ea:53:5f:fe:03:57:4c:b3:05:44:47:24:
73:2f:e2:f6:87:59:b7:42:a3:87:1c:8e:03:44:21:
5e:9d:0b:e8:f2:e2:47:34:3b:d7:08:77:6c:1f:57:
83:1e:c5:58:ce:b1:1f:47:cd:d3:4c:c8:d9:14:da:
9e:3a:c0:a5:85:7e:6e:d2:52:49:91:2f:46:52:6f:
56:1d:31:7f:26:54:3d:7c:fc:cb:27:a1:a6:1d:09:
1b:ea:71:24:8d:b2:be:45:3b:9a:d5:4d:2b:0b:6d:
b5:95
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
09:95:C8:50:42:F6:FD:BA:2D:1B:7F:90:52:8C:E4:D7:18:5E:95:66
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91B60EC/D6D214C8254511EA86406A84C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91B60EC/D6D214C8254511EA86406A84C4F9AE02/CZXIUEL2_botG3-QUozk1xhelWY.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:de80::/32
Signature Algorithm: sha256WithRSAEncryption
c8:75:a9:42:d0:36:d3:4b:6f:d7:21:38:fc:20:46:8b:48:33:
a7:a1:12:84:36:42:bf:17:ce:8b:13:27:4d:1e:30:c2:2f:e3:
0b:35:7d:a8:a3:41:d2:fa:2f:60:df:b0:66:90:a6:ae:be:27:
84:af:39:31:21:a4:63:fa:55:52:49:50:da:33:03:71:ea:b1:
0d:03:7f:5e:b9:e9:00:70:86:9f:97:33:30:af:15:fa:57:13:
7e:fd:d3:27:b6:13:68:41:a4:fb:90:67:59:ec:d7:fb:49:97:
5f:e3:8e:0e:5d:22:b9:06:07:ae:6a:10:96:c8:33:51:59:38:
aa:31:69:e3:79:35:78:c0:0b:43:3f:4c:ae:39:f8:5e:93:89:
ac:0a:11:90:8b:a2:61:4c:57:d0:6d:4d:ce:77:47:74:1b:2c:
d9:a9:b1:19:b6:39:22:05:2e:c1:44:17:2c:1d:3a:60:92:13:
b0:95:74:c9:bd:9c:ab:d2:fa:e3:8a:bf:78:ed:da:f4:d3:a9:
06:c6:ac:20:a1:f1:ac:01:92:82:29:fa:bb:7f:a3:21:4d:59:
3d:97:92:5c:ff:58:06:82:f1:fb:65:00:a8:f3:fe:0a:f6:53:
8e:2c:f8:35:1f:bb:c9:cf:13:d3:22:41:4e:c3:72:78:51:2d:
98:27:46:90
-----BEGIN CERTIFICATE-----
MIIF/zCCBOegAwIBAgIDAeMGMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDMwNTE3NDY1M1oXDTI0MDUyOTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQjYwRUMxMTAvBgNVBAUTKDA5OTVDODUwNDJGNkZEQkEyRDFCN0Y5
MDUyOENFNEQ3MTg1RTk1NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDToaYyUKEpLDqs7XFhpCcV7y3sic+73Re7tAel2lojEo8e/thjpJeJjT+99Pou
5K2F+6g4nhL1IUHTSAqdkX0Anfy70VtSLCwmPy41+2e4+afHggQScEqIcnAbiW4Q
6tlpX4Ey1pVuHerxzcNDDn2wGiE8UOyTLJTQoNlkrUSYlPIcZ/ZjeIBkjElVQ8np
mxEEljSegN231upTX/4DV0yzBURHJHMv4vaHWbdCo4ccjgNEIV6dC+jy4kc0O9cI
d2wfV4MexVjOsR9HzdNMyNkU2p46wKWFfm7SUkmRL0ZSb1YdMX8mVD18/MsnoaYd
CRvqcSSNsr5FO5rVTSsLbbWVAgMBAAGjggL0MIIC8DAdBgNVHQ4EFgQUCZXIUEL2
/botG3+QUozk1xhelWYwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUI2MEVDL0Q2RDIxNEM4MjU0NTExRUE4NjQwNkE4NEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFCNjBFQy9ENkQyMTRDODI1NDUxMUVBODY0MDZBODRDNEY5QUUwMi9DWlhJVUVM
Ml9ib3RHMy1RVW96azF4aGVsV1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAP
MA0EAgACMAcDBQAkBN6AMA0GCSqGSIb3DQEBCwUAA4IBAQDIdalC0DbTS2/XITj8
IEaLSDOnoRKENkK/F86LEydNHjDCL+MLNX2oo0HS+i9g37BmkKauvieErzkxIaRj
+lVSSVDaMwNx6rENA39euekAcIaflzMwrxX6VxN+/dMnthNoQaT7kGdZ7Nf7SZdf
444OXSK5BgeuahCWyDNRWTiqMWnjeTV4wAtDP0yuOfhek4msChGQi6JhTFfQbU3O
d0d0GyzZqbEZtjkiBS7BRBcsHTpgkhOwlXTJvZyr0vrjir947dr006kGxqwgofGs
AZKCKfq7f6MhTVk9l5Jc/1gGgvH7ZQCo8/4K9lOOLPg1H7vJzxPTIkFOw3J4US2Y
J0aQ
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:41 2024 by rpki-client on console-ams.rpki-client.org