Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IS3Jn_Wug53zc50Ny_Ikp7NGCr8.cer
File: IS3Jn_Wug53zc50Ny_Ikp7NGCr8.cer (raw, json)
Hash identifier: YRtwJ+pz2Tige0fy6uvMnNEzP8MGlKzeJxQofz6xN/0=
Subject key identifier: 21:2D:C9:9F:F5:AE:83:9D:F3:73:9D:0D:CB:F2:24:A7:B3:46:0A:BF
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 017774
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A917B55D/A250912C0DC311EB9D943816C4F9AE02/IS3Jn_Wug53zc50Ny_Ikp7NGCr8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A917B55D/A250912C0DC311EB9D943816C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 02 Nov 2022 01:00:32 +0000
Certificate not after: Wed 01 Mar 2023 00:00:00 +0000
Subordinate resources: IP: 2001:df3:f200::/48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 96116 (0x17774)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 2 01:00:32 2022 GMT
Not After : Mar 1 00:00:00 2023 GMT
Subject: CN=A917B55D/serialNumber=212DC99FF5AE839DF3739D0DCBF224A7B3460ABF
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:f3:ff:c3:d0:71:c7:af:68:92:79:34:e6:a9:
8a:81:b2:59:cc:33:04:2e:85:01:10:a0:63:51:61:
a4:c9:68:49:53:35:fb:6d:97:58:4f:7c:b7:20:d6:
b0:94:49:9f:e9:42:e2:c5:a1:e7:fb:4d:1b:13:cc:
be:c0:e1:3a:d2:e3:c2:c7:89:80:4f:2e:82:54:f3:
df:f9:b8:8c:18:4a:12:a0:34:42:76:8f:b2:d3:49:
0a:cd:15:5a:e4:23:10:19:3d:2d:3e:8f:fa:02:08:
6a:02:76:a4:a6:d2:2a:d4:e9:19:b0:7c:5a:d5:50:
ed:58:5c:be:8e:f8:0d:09:aa:22:4c:cc:f7:22:46:
cf:ac:b0:90:b5:c3:2f:91:42:ec:ba:06:be:5c:4e:
18:7c:cf:00:3f:06:63:8b:14:0a:02:24:52:dc:39:
db:07:75:7e:4d:26:a9:c6:f6:bb:24:e2:76:6e:84:
90:c9:4a:c4:82:e5:25:11:7b:1d:5c:c4:75:52:7c:
88:4d:7a:39:6f:ed:44:a4:bd:1d:3c:a4:a2:98:a8:
db:33:67:70:f7:10:cb:77:27:da:20:e9:7c:fc:6f:
ee:47:31:eb:88:94:20:ce:1b:10:ef:39:10:80:ca:
b3:b9:f3:cb:b5:9c:0b:bb:78:b1:95:f1:26:7b:dc:
59:f9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:2D:C9:9F:F5:AE:83:9D:F3:73:9D:0D:CB:F2:24:A7:B3:46:0A:BF
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A917B55D/A250912C0DC311EB9D943816C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A917B55D/A250912C0DC311EB9D943816C4F9AE02/IS3Jn_Wug53zc50Ny_Ikp7NGCr8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2001:df3:f200::/48
Signature Algorithm: sha256WithRSAEncryption
c2:a9:d8:6c:65:a2:9a:07:02:d2:b9:dd:6b:1a:d6:a5:75:5c:
9c:89:1d:d9:c7:bc:d9:80:dc:d6:7e:18:f4:fa:30:b7:3e:d6:
97:af:57:65:96:27:b4:cc:a5:90:81:e9:00:41:82:23:c4:e5:
c6:0e:97:b6:6f:24:ff:f1:74:27:ef:d6:2f:c2:eb:68:f3:fc:
31:c3:a4:2c:57:c9:fc:ff:67:9f:1b:2c:4b:6e:23:12:11:1e:
8a:52:35:74:2e:a2:2f:fd:03:ca:ba:ab:f4:72:24:fb:c3:cd:
20:c1:25:f4:f7:61:59:05:0c:27:5f:f3:db:d3:99:63:d4:e3:
b6:5e:29:77:cd:42:3f:f1:e6:d3:a3:86:6f:a6:0a:82:e8:56:
1b:e8:8b:20:d2:ce:7b:c7:b4:2f:39:5c:60:35:38:2d:ae:7d:
3c:b5:f7:a8:9f:b2:8a:fa:10:9b:c7:9c:9b:87:84:46:56:8a:
0b:26:56:99:bf:4c:54:ad:5c:7b:36:b3:d9:66:68:a8:d6:9c:
5b:27:46:5f:1c:15:5b:2b:8f:96:d5:e7:fc:13:52:3f:38:ed:
f9:47:79:b1:f1:4f:91:46:d8:5a:93:74:5c:72:db:14:89:d6:
56:c3:64:35:22:54:bb:da:0f:5e:45:30:16:4b:f2:31:a0:14:
90:c0:a7:2b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:16 2023 by rpki-client on console-fra.rpki-client.org