Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IPA2zVcYfKKab6qaaiKOIJYP3k8.cer
File: IPA2zVcYfKKab6qaaiKOIJYP3k8.cer (raw, json)
Hash identifier: Rbp8V+I/K0rybbJrnchvetsnFjIvkDIakFAPNwhgSO4=
Subject key identifier: 20:F0:36:CD:57:18:7C:A2:9A:6F:AA:9A:6A:22:8E:20:96:0F:DE:4F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01B6FC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9155A78/531EA1301D8411E289BB24DA08B02CD2/IPA2zVcYfKKab6qaaiKOIJYP3k8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9155A78/531EA1301D8411E289BB24DA08B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 15 Aug 2023 15:33:40 +0000
Certificate not after: Fri 01 Dec 2023 00:00:00 +0000
Subordinate resources: AS: 18206
IP: 124.197.224.0/19
IP: 202.162.0.0/19
IP: 202.165.0.0/19
IP: 203.153.80.0/20
IP: 2404:b8::/32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 112380 (0x1b6fc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 15 15:33:40 2023 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=A9155A78/serialNumber=20F036CD57187CA29A6FAA9A6A228E20960FDE4F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a0:42:95:47:a2:e7:e1:f1:66:7d:12:3e:bb:f8:
44:1a:98:a0:49:fc:87:fd:69:eb:79:a9:5d:a4:d1:
5a:e8:07:8a:2e:5d:22:d5:d4:38:d1:f5:e3:5a:39:
95:13:33:eb:c4:68:a3:48:98:67:35:75:6c:f0:6d:
fe:bd:27:3c:d4:05:09:37:48:f4:85:a7:f8:06:ec:
55:71:45:78:54:e8:a5:55:43:fa:53:3e:69:2b:6a:
bf:ba:ef:b2:6e:65:21:ea:d1:37:98:08:92:2f:05:
22:fb:9e:06:17:95:64:43:1f:68:38:02:f4:bb:ca:
92:29:28:d3:d4:85:98:da:96:33:82:98:92:64:20:
ec:c5:e4:97:3c:7c:4f:1d:b0:db:a0:f2:5e:1e:d0:
43:68:6b:a8:28:0a:14:35:f8:1d:1c:97:3f:f9:5f:
7a:4f:99:80:09:a5:b0:7b:48:7f:6d:39:6b:96:7d:
62:b4:78:1a:07:9c:58:22:ca:3a:85:32:7b:9a:80:
ee:2d:0d:c6:9e:3d:8e:ce:d8:e3:10:34:37:a7:53:
13:02:3a:cd:f9:c4:3b:d1:1f:97:77:70:1a:84:30:
8d:80:88:bd:b9:43:7a:7a:93:88:ea:5e:43:df:dd:
55:f4:36:50:d3:d0:eb:3a:ab:b3:d6:9d:f0:12:a3:
9a:bb
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
20:F0:36:CD:57:18:7C:A2:9A:6F:AA:9A:6A:22:8E:20:96:0F:DE:4F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9155A78/531EA1301D8411E289BB24DA08B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9155A78/531EA1301D8411E289BB24DA08B02CD2/IPA2zVcYfKKab6qaaiKOIJYP3k8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
18206
sbgp-ipAddrBlock: critical
IPv4:
124.197.224.0/19
202.162.0.0/19
202.165.0.0/19
203.153.80.0/20
IPv6:
2404:b8::/32
Signature Algorithm: sha256WithRSAEncryption
54:71:be:ab:b8:a2:c3:60:a6:6f:41:64:40:61:69:b9:5d:a1:
d6:36:2e:4e:8f:4d:17:84:1e:e7:a0:84:a4:5f:77:b9:74:c9:
2b:82:5d:d0:03:1e:70:1e:2b:79:b9:ee:32:97:7e:11:ff:d1:
49:be:9e:36:51:0a:56:1c:29:ed:20:d1:5e:20:0b:4e:19:12:
e7:a3:0b:88:37:48:d0:9d:0b:70:63:06:1d:41:39:c7:80:f5:
cd:bd:f4:b1:fe:06:28:5e:5f:0c:1e:1b:4c:ee:9d:cc:ac:d0:
f4:09:8d:5d:ee:23:20:b5:bc:77:09:0e:ca:d7:61:3b:f7:f1:
32:bc:11:89:8e:4b:c1:8b:82:02:71:c3:d0:b8:79:78:b5:8c:
30:eb:6b:9f:10:30:1f:77:2d:60:71:24:6b:67:74:a8:bd:e1:
34:f2:36:5f:5e:1e:b3:4a:1f:9a:a4:04:12:e1:e3:29:09:bf:
c4:c2:20:16:d0:32:66:6e:cb:02:73:98:17:8e:7d:3c:86:55:
a2:fa:e6:54:2a:97:d3:84:b4:7e:03:08:b6:fa:10:9b:7f:48:
a0:dc:77:2c:b0:5e:02:ce:c1:e7:66:45:b2:3e:7e:59:bc:ef:
93:c0:b7:f3:df:b9:6a:7c:35:7d:9c:b4:3f:18:a3:ef:91:e0:
6c:93:91:17
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Aug 16 14:49:10 2023 by rpki-client on console-fra.rpki-client.org