Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DkAcrnQYRWKE6ZKD8r2hj6a1z3I.cer
File: DkAcrnQYRWKE6ZKD8r2hj6a1z3I.cer (raw, json)
Hash identifier: LfvQNd82yfUKVaPN5MaA5t4I/7ryA37n6hCS7NVad5o=
Subject key identifier: 0E:40:1C:AE:74:18:45:62:84:E9:92:83:F2:BD:A1:8F:A6:B5:CF:72
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F3F2
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91527FB/B0EB6CBABE7911E9BEBE3374C4F9AE02/DkAcrnQYRWKE6ZKD8r2hj6a1z3I.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91527FB/B0EB6CBABE7911E9BEBE3374C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 27 May 2024 15:27:49 +0000
Certificate not after: Mon 30 Sep 2024 00:00:00 +0000
Subordinate resources: IP: 2403:1740::/32
Validation: Failed, certificate revoked on Mon 12 Aug 2024 15:18:33 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127986 (0x1f3f2)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 27 15:27:49 2024 GMT
Not After : Sep 30 00:00:00 2024 GMT
Subject: CN=A91527FB/serialNumber=0E401CAE7418456284E99283F2BDA18FA6B5CF72
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:86:9a:20:64:d2:3a:6a:44:bd:54:b2:93:ff:
06:43:e0:63:78:44:1b:f5:56:46:1d:9c:00:7a:68:
fd:3e:ef:35:73:6b:b3:08:2f:86:81:53:25:48:58:
0f:cc:ec:2b:81:35:da:fa:ff:e2:6b:11:00:c0:1a:
ce:9d:2a:5b:4f:a2:11:61:b7:dc:1f:f8:ca:c3:66:
c3:55:80:a9:42:91:01:32:0a:e9:be:59:6b:98:c2:
a0:31:45:fe:8a:7f:bf:1f:f8:96:50:30:34:57:71:
0e:6f:f0:f5:e0:9e:31:d7:5d:a9:68:fc:ff:30:17:
0c:3c:6c:d1:39:9f:1d:0d:4a:8a:d7:f8:4e:72:b8:
0e:cd:2b:c7:65:7c:da:08:bd:88:91:58:d5:b6:70:
00:3e:82:14:0b:1d:70:a5:db:64:3f:56:59:45:c1:
eb:84:ad:8d:62:7c:04:c4:b1:b8:33:2c:3a:62:1a:
94:ea:dd:b1:de:19:49:c9:5f:9d:14:28:0d:32:4a:
5a:75:82:a0:aa:32:8c:01:86:ef:e8:87:e4:1d:44:
b9:d8:62:cb:4f:51:1d:d7:2d:d2:ca:6d:82:43:b9:
a2:ce:ce:66:5f:b1:d3:03:a7:19:2e:b0:72:81:06:
72:4c:92:0a:ac:28:0b:23:bc:cb:2b:5c:04:1b:66:
89:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:40:1C:AE:74:18:45:62:84:E9:92:83:F2:BD:A1:8F:A6:B5:CF:72
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91527FB/B0EB6CBABE7911E9BEBE3374C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91527FB/B0EB6CBABE7911E9BEBE3374C4F9AE02/DkAcrnQYRWKE6ZKD8r2hj6a1z3I.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2403:1740::/32
Signature Algorithm: sha256WithRSAEncryption
c2:65:67:e6:68:37:29:bf:86:bf:2d:61:c5:b0:9d:5f:7b:b7:
5f:da:46:92:62:e1:eb:2e:4d:8f:a0:b6:de:c0:75:12:df:89:
6f:3f:4e:b6:c3:d3:32:2e:d0:1e:73:fd:a2:6c:d1:c1:51:db:
ce:49:e7:f6:b4:a3:19:0f:6a:80:91:95:2c:ff:ee:99:8a:3e:
ab:a6:52:4c:63:cd:ff:86:d8:dd:59:93:8d:21:5f:35:c5:d3:
da:50:63:d6:fe:0b:71:e3:36:30:27:30:c9:ff:ed:58:c6:61:
82:fd:ce:dd:78:e4:fb:d9:8b:eb:73:ab:aa:ec:d8:11:47:fc:
f6:3a:7c:e7:51:18:a2:78:77:78:97:d8:1b:07:0b:1c:1d:b3:
72:1d:c7:92:eb:a4:01:8f:f8:83:04:29:09:de:8d:aa:73:17:
c8:a5:22:36:bf:13:0d:f0:50:57:04:60:05:df:0f:9b:48:c4:
e1:5e:7c:06:96:c4:28:4f:38:d5:88:07:09:8d:c5:77:67:32:
3b:1e:5c:43:80:a8:41:d5:09:36:4a:aa:75:87:35:76:46:bd:
42:ba:85:5f:d8:c3:60:b1:1e:b0:23:75:59:20:17:0d:1d:52:
0c:61:36:64:6f:bb:7a:1c:27:25:4a:85:fa:9c:c9:92:f9:28:
db:69:a2:1c
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Aug 12 20:15:37 2024 by rpki-client on console-ams.rpki-client.org