Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/JJotbKs-ncO-hp4i2FjfYVYOQS8.cer
File: JJotbKs-ncO-hp4i2FjfYVYOQS8.cer (raw, json)
Hash identifier: qb+GVINlpvtR4Q/D8EZuy04UAN25BH0Mzym/1EQ8OPI=
Subject key identifier: 24:9A:2D:6C:AB:3E:9D:C3:BE:86:9E:22:D8:58:DF:61:56:0E:41:2F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01AB5E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9193E80/1C97E8188A2C11E8AA7B8B1BC4F9AE02/JJotbKs-ncO-hp4i2FjfYVYOQS8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9193E80/1C97E8188A2C11E8AA7B8B1BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 22 Jun 2023 00:30:35 +0000
Certificate not after: Wed 29 May 2024 00:00:00 +0000
Subordinate resources: AS: 134090
IP: 45.249.116.0/22
IP: 103.51.112.0/22
IP: 103.85.36.0/22
IP: 103.95.112.0/22
IP: 103.106.88.0/22
IP: 123.253.188.0/22
IP: 202.128.112.0/20
IP: 202.179.128.0/22
IP: 2400:a840::/29
IP: 2402:2c80::/32
IP: 2402:3fc0::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 109406 (0x1ab5e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jun 22 00:30:35 2023 GMT
Not After : May 29 00:00:00 2024 GMT
Subject: CN=A9193E80/serialNumber=249A2D6CAB3E9DC3BE869E22D858DF61560E412F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:b5:2b:5c:27:19:db:c9:96:89:23:cb:02:ac:
bc:4a:39:62:dc:ec:0f:02:66:78:65:60:db:9d:68:
5d:7c:a4:77:5f:83:92:00:0a:85:ca:ea:73:18:26:
ac:f1:d4:e3:b0:af:e7:d3:bb:44:83:3e:e7:a4:8c:
de:74:c7:0b:ef:a8:a4:0c:10:22:eb:23:e7:e0:9f:
90:bf:ea:c0:75:37:f9:f6:36:0b:cf:88:16:2e:65:
72:fb:32:25:81:82:bc:42:7e:50:29:14:5b:e1:16:
ba:80:29:cb:4a:b5:ff:02:d3:08:1a:ab:87:22:8b:
0f:c5:c6:d5:05:49:30:3d:1f:15:48:1e:9a:df:87:
bb:3b:c7:d0:15:57:3b:73:fd:ba:57:e8:ff:4b:ee:
79:0b:02:27:dd:ca:15:6f:b0:48:c0:79:c2:2f:8a:
cd:22:f1:f7:fc:21:bb:aa:2f:99:3b:55:1b:8d:54:
57:48:08:04:c7:df:15:52:ef:de:32:3c:d2:f1:c9:
43:fe:86:86:c5:71:dd:3b:c9:27:c4:5a:9f:47:17:
f8:9c:b1:a5:9d:a1:10:74:c0:f5:57:5a:cc:60:d4:
05:d3:5d:63:b2:be:f5:50:4d:3e:da:d6:80:69:ed:
5d:a9:ef:7e:1b:86:23:54:81:63:e8:e8:04:be:f0:
e2:9d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
24:9A:2D:6C:AB:3E:9D:C3:BE:86:9E:22:D8:58:DF:61:56:0E:41:2F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9193E80/1C97E8188A2C11E8AA7B8B1BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9193E80/1C97E8188A2C11E8AA7B8B1BC4F9AE02/JJotbKs-ncO-hp4i2FjfYVYOQS8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134090
sbgp-ipAddrBlock: critical
IPv4:
45.249.116.0/22
103.51.112.0/22
103.85.36.0/22
103.95.112.0/22
103.106.88.0/22
123.253.188.0/22
202.128.112.0/20
202.179.128.0/22
IPv6:
2400:a840::/29
2402:2c80::/32
2402:3fc0::/32
Signature Algorithm: sha256WithRSAEncryption
26:ed:87:c2:fc:59:3b:09:78:80:21:25:a1:1a:57:ac:12:ad:
51:bd:9f:ea:f3:95:c3:84:71:a8:e0:75:e5:da:68:58:00:24:
48:78:1d:15:ff:96:a8:5f:85:6b:cf:72:26:87:ae:4f:10:48:
9c:17:20:3f:4d:9c:7c:f5:94:4e:92:4c:4d:76:28:46:84:76:
2e:a8:58:68:49:8f:38:db:01:bb:28:01:7e:6c:b8:67:4a:9a:
ee:b5:fa:7e:3d:51:01:c7:8e:2e:2d:f2:1d:59:e0:f7:6d:de:
9e:05:85:3d:8b:70:f4:58:5d:63:79:26:c0:2f:e0:fa:ca:d9:
fd:3b:92:ae:f7:b7:a3:ce:f1:4c:41:81:29:79:9c:8e:2d:38:
b4:28:25:65:8e:45:f2:38:8c:d8:09:04:1b:e4:bd:ba:72:f1:
42:e1:d2:74:54:61:d2:94:a6:c0:ee:26:be:39:03:c2:9a:85:
88:5e:ee:56:12:54:60:10:ec:df:1b:f2:6e:16:e5:1e:bd:5d:
6e:06:b9:28:b0:8d:42:76:50:6b:77:94:64:4c:69:9f:ae:16:
74:1e:28:5b:05:e4:08:93:28:f7:29:fd:69:7c:3c:75:35:8b:
4d:0d:f3:31:98:17:e9:c0:33:8e:25:50:06:d8:c1:9f:f5:f2:
0f:9e:82:3c
-----BEGIN CERTIFICATE-----
MIIGYTCCBUmgAwIBAgIDAateMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDYyMjAwMzAzNVoXDTI0MDUyOTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxOTNFODAxMTAvBgNVBAUTKDI0OUEyRDZDQUIzRTlEQzNCRTg2OUUy
MkQ4NThERjYxNTYwRTQxMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDltStcJxnbyZaJI8sCrLxKOWLc7A8CZnhlYNudaF18pHdfg5IACoXK6nMYJqzx
1OOwr+fTu0SDPuekjN50xwvvqKQMECLrI+fgn5C/6sB1N/n2NgvPiBYuZXL7MiWB
grxCflApFFvhFrqAKctKtf8C0wgaq4ciiw/FxtUFSTA9HxVIHprfh7s7x9AVVztz
/bpX6P9L7nkLAifdyhVvsEjAecIvis0i8ff8IbuqL5k7VRuNVFdICATH3xVS794y
PNLxyUP+hobFcd07ySfEWp9HF/icsaWdoRB0wPVXWsxg1AXTXWOyvvVQTT7a1oBp
7V2p734bhiNUgWPo6AS+8OKdAgMBAAGjggNWMIIDUjAdBgNVHQ4EFgQUJJotbKs+
ncO+hp4i2FjfYVYOQS8wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTkzRTgwLzFDOTdFODE4OEEyQzExRThBQTdCOEIxQkM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE5M0U4MC8xQzk3RTgxODhBMkMxMUU4QUE3QjhCMUJDNEY5QUUwMi9KSm90Yktz
LW5jTy1ocDRpMkZqZllWWU9RUzgubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAgvKMGYGCCsGAQUFBwEHAQH/BFcwVTA2BAIAATAwAwQCLfl0AwQCZzNw
AwQCZ1UkAwQCZ19wAwQCZ2pYAwQCe/28AwQEyoBwAwQCyrOAMBsEAgACMBUDBQMk
AKhAAwUAJAIsgAMFACQCP8AwDQYJKoZIhvcNAQELBQADggEBACbth8L8WTsJeIAh
JaEaV6wSrVG9n+rzlcOEcajgdeXaaFgAJEh4HRX/lqhfhWvPciaHrk8QSJwXID9N
nHz1lE6STE12KEaEdi6oWGhJjzjbAbsoAX5suGdKmu61+n49UQHHji4t8h1Z4Pdt
3p4FhT2LcPRYXWN5JsAv4PrK2f07kq73t6PO8UxBgSl5nI4tOLQoJWWORfI4jNgJ
BBvkvbpy8ULh0nRUYdKUpsDuJr45A8KahYhe7lYSVGAQ7N8b8m4W5R69XW4GuSiw
jUJ2UGt3lGRMaZ+uFnQeKFsF5AiTKPcp/Wl8PHU1i00N8zGYF+nAM44lUAbYwZ/1
8g+egjw=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:42 2024 by rpki-client on console-ams.rpki-client.org