Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/KjEkJ9QPyqRKJ3IB0lbhuwjf4Ds.cer
File: KjEkJ9QPyqRKJ3IB0lbhuwjf4Ds.cer (raw, json)
Hash identifier: uswCLzWPmdfzC+NT+XpFycjQ0BPUxtwf3w8OBmkBA0Q=
Subject key identifier: 2A:31:24:27:D4:0F:CA:A4:4A:27:72:01:D2:56:E1:BB:08:DF:E0:3B
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CE82
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/KjEkJ9QPyqRKJ3IB0lbhuwjf4Ds.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Dec 2023 01:52:32 +0000
Certificate not after: Sun 02 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 152180
IP: 210.79.184.0/23
IP: 2401:5660::/32
Validation: Failed, certificate revoked on Fri 01 Dec 2023 07:52:11 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118402 (0x1ce82)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 1 01:52:32 2023 GMT
Not After : Mar 2 00:00:00 2025 GMT
Subject: CN=A91109A3/serialNumber=2A312427D40FCAA44A277201D256E1BB08DFE03B
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e5:04:35:8e:eb:a6:df:92:76:17:71:12:3c:3a:
75:c7:1a:0a:5f:43:3e:95:5f:c0:3d:98:2a:99:5c:
23:cf:6a:ec:a2:62:38:51:e2:3c:bd:b3:ec:37:38:
d3:59:6d:29:05:28:70:a2:9c:37:95:d9:2f:d0:34:
8a:be:1e:4e:46:60:ff:3d:5a:ee:4e:25:f5:b8:e8:
71:a8:e9:7e:e6:b4:1d:70:c9:f6:6c:cc:b5:7a:95:
e2:77:7a:7f:a2:61:a3:e4:29:04:ff:b4:17:99:ce:
33:c5:2b:11:4a:56:80:97:4e:c9:75:3e:79:de:a1:
99:19:46:82:5c:4e:56:f3:9f:fc:43:70:7c:8c:e0:
cf:2d:29:a8:42:0d:73:44:05:5b:23:c9:94:f5:d0:
ed:25:0f:cf:99:30:24:37:c0:c0:c1:3e:b5:5d:7c:
a2:a4:5c:80:02:54:ed:5f:d5:e2:b3:1f:f9:5b:26:
ab:47:c9:53:c6:97:36:89:e5:35:b5:db:81:0a:99:
ae:4d:00:d2:ad:c2:9b:3f:88:bd:12:a4:81:8f:8f:
16:33:83:71:4a:6b:a2:7c:60:77:85:6d:ed:b3:4b:
4d:9a:ce:c0:96:28:80:f1:df:60:eb:5f:9a:15:59:
11:da:d1:33:2a:e5:17:8d:96:e8:86:93:84:33:07:
98:4d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2A:31:24:27:D4:0F:CA:A4:4A:27:72:01:D2:56:E1:BB:08:DF:E0:3B
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91109A3/43FB62FA8FE811EE92F5C76AC4F9AE02/KjEkJ9QPyqRKJ3IB0lbhuwjf4Ds.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
152180
sbgp-ipAddrBlock: critical
IPv4:
210.79.184.0/23
IPv6:
2401:5660::/32
Signature Algorithm: sha256WithRSAEncryption
52:40:66:f4:f1:54:fb:42:47:48:ba:76:95:fc:27:38:ef:f1:
6e:6d:6c:26:9c:6f:43:89:bf:d6:2a:aa:b7:e4:c5:0c:98:a0:
b8:a5:0b:e0:4a:28:ab:31:56:49:68:5a:3d:9e:bc:ad:93:2e:
d5:10:d1:f6:63:b0:f1:bd:a1:4c:a2:8c:e7:b7:40:00:3c:75:
4e:c6:9c:18:91:fa:03:4c:5c:f8:a8:13:e0:77:15:46:0c:92:
b3:de:29:2e:0c:72:a6:04:39:c5:78:95:94:b2:03:dd:a7:d5:
99:31:cf:14:86:30:dd:f3:44:e2:0d:8f:78:d0:48:ea:22:92:
a5:77:92:83:76:74:d2:2a:23:ef:05:ae:c6:28:9f:ad:8a:49:
e0:5a:80:8a:ec:60:30:4e:8e:bd:73:e9:5b:51:94:ab:76:f6:
3f:4b:d5:1c:11:c5:6a:59:4f:72:16:5b:ad:1c:91:d4:24:95:
e7:c8:32:34:b6:7e:e2:2d:cb:97:b0:de:11:83:7e:b4:b6:ef:
79:7f:61:e7:e6:34:9d:19:c7:ef:2c:6e:8c:0b:ed:21:3a:48:
2a:ad:e2:2e:8f:52:24:5b:7e:4c:00:7a:1c:92:a0:46:eb:e9:
5c:84:9c:e0:c1:e7:cb:93:3f:91:3d:70:d8:76:52:da:ff:a9:
53:c8:cb:ec
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:42 2024 by rpki-client on console-ams.rpki-client.org