Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/IedJniGAvSEvqqDRUh0WVnfYve4.cer
File: IedJniGAvSEvqqDRUh0WVnfYve4.cer (raw, json)
Hash identifier: DmWTwZToJOXhSXFBIxAXjkq7oYThzUuCbe1N1sQv0zA=
Subject key identifier: 21:E7:49:9E:21:80:BD:21:2F:AA:A0:D1:52:1D:16:56:77:D8:BD:EE
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DFE3
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A919D772/C625FF2E6A6311E9B9DAFC6DC4F9AE02/IedJniGAvSEvqqDRUh0WVnfYve4.mft
caRepository: rsync://rpki.apnic.net/member_repository/A919D772/C625FF2E6A6311E9B9DAFC6DC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 20 Feb 2024 18:04:19 +0000
Certificate not after: Tue 30 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 132610
AS: 136419
AS: 137707
IP: 2402:ca40::/32
Validation: Failed, certificate revoked on Thu 14 Mar 2024 18:14:48 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 122851 (0x1dfe3)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Feb 20 18:04:19 2024 GMT
Not After : Jul 30 00:00:00 2024 GMT
Subject: CN=A919D772/serialNumber=21E7499E2180BD212FAAA0D1521D165677D8BDEE
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a3:b3:49:5b:1c:24:28:45:98:d4:65:de:e4:38:
57:2a:93:f3:d9:5b:25:f2:4a:e6:35:7c:da:09:ca:
8a:ac:a6:cb:c6:dc:73:56:46:d1:04:2b:c1:fb:e0:
33:37:4b:72:93:9f:4f:53:16:3a:8c:33:b3:95:12:
19:28:0c:cb:6f:27:32:52:cc:17:fd:4f:07:e5:73:
60:7f:2b:a1:7c:09:22:76:a6:f3:b1:48:e6:4a:9b:
ee:0d:86:fd:73:c7:67:e3:00:e1:7f:a7:02:fb:e4:
a6:28:25:bc:dd:68:99:35:75:d2:63:1f:69:11:b8:
a0:93:93:bd:cc:e5:e1:6d:7a:63:0f:d1:11:6a:97:
71:42:f0:e3:be:f4:7d:31:cc:bd:55:ce:08:e6:4e:
c7:b4:17:30:79:61:39:b2:38:56:6b:e7:28:e0:c5:
26:17:44:c7:b9:83:24:f3:97:50:82:28:d8:50:0b:
2f:a8:cc:e8:72:a4:ce:de:a9:ba:fc:ff:bf:12:e9:
96:f5:9b:94:5e:c7:75:57:4e:94:90:ae:2e:81:4d:
95:c4:2c:96:ff:fd:e0:d6:7a:bd:48:c4:4e:ff:48:
55:5d:d0:b2:8a:55:b0:97:6b:b7:14:7a:a9:7c:63:
4e:af:f7:12:cc:b2:fc:84:60:19:3d:49:9c:ee:88:
26:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
21:E7:49:9E:21:80:BD:21:2F:AA:A0:D1:52:1D:16:56:77:D8:BD:EE
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A919D772/C625FF2E6A6311E9B9DAFC6DC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A919D772/C625FF2E6A6311E9B9DAFC6DC4F9AE02/IedJniGAvSEvqqDRUh0WVnfYve4.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132610
136419
137707
sbgp-ipAddrBlock: critical
IPv6:
2402:ca40::/32
Signature Algorithm: sha256WithRSAEncryption
00:ae:f7:77:32:68:ff:65:2a:80:0c:0a:41:9f:d6:c0:b9:25:
20:e5:1b:1e:e4:db:7e:5a:4d:28:50:0c:31:a7:4a:f3:be:a3:
8a:27:1a:35:58:ff:0a:67:d2:be:83:18:11:b9:a4:45:6b:cf:
3f:15:8b:a5:82:65:50:5e:b7:ed:58:b6:c7:6a:cf:ea:a7:3d:
a3:81:93:04:b9:1f:21:f3:39:ae:c2:73:18:d2:73:36:fb:bf:
23:95:69:15:30:f7:cd:d5:38:00:65:38:2e:c2:4e:50:12:b5:
9c:3a:a8:77:b4:a5:f0:1e:e8:bc:1e:6f:3a:15:47:ce:ae:e3:
cd:32:d1:b9:8a:56:90:dc:56:24:43:06:8b:7b:f3:fd:05:8b:
f3:a3:1b:c9:48:9b:43:3c:00:b7:f8:95:f3:e5:65:69:4e:52:
52:94:cd:0c:c4:98:6d:7c:5d:ff:61:06:b6:2a:a7:53:f1:3f:
78:6e:aa:4e:d2:11:3a:8f:07:fd:82:e4:46:6f:d0:64:a9:96:
53:37:7d:d4:20:92:cd:8d:a6:be:25:e7:5a:a1:10:0d:0e:ca:
e6:c1:0b:06:ed:a9:19:c9:bb:dd:63:09:8a:15:4e:13:38:1b:
37:dd:97:9a:c0:8c:4c:74:90:e2:3d:4f:46:dc:0b:1e:9c:29:
2b:67:de:45
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 14 21:21:07 2024 by rpki-client on console-ams.rpki-client.org