Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/LZGtMWvF7v9-3CUlODTr461WQb0.cer
File: LZGtMWvF7v9-3CUlODTr461WQb0.cer (raw, json)
Hash identifier: pWDm2s1RGK3QnoWoZ1i69MQ7JkwclsjadzVGBuXOXzs=
Subject key identifier: 2D:91:AD:31:6B:C5:EE:FF:7E:DC:25:25:38:34:EB:E3:AD:56:41:BD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01970F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9162578/25C39ECC7BE811EBB0B1F63CC4F9AE02/LZGtMWvF7v9-3CUlODTr461WQb0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9162578/25C39ECC7BE811EBB0B1F63CC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 11 Apr 2023 02:45:56 +0000
Certificate not after: Mon 01 Jul 2024 00:00:00 +0000
Subordinate resources: AS: 138690
IP: 103.136.176.0/22
IP: 2404:9940::/32
Validation: Failed, certificate revoked on Tue 07 May 2024 15:46:36 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 104207 (0x1970f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 11 02:45:56 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=A9162578/serialNumber=2D91AD316BC5EEFF7EDC25253834EBE3AD5641BD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:7f:61:f2:79:6d:7a:74:15:2b:5d:a5:a2:09:
5c:3d:bf:2d:83:cf:b0:5b:0b:fc:30:94:96:cc:f5:
31:af:f9:94:49:46:b4:80:e1:d2:6c:2b:5e:3c:05:
a3:e6:1c:1f:04:5f:aa:c6:8e:c6:38:dc:70:de:45:
53:ff:37:b2:09:d7:a3:0d:88:f9:9a:b0:c5:a7:28:
20:25:1d:64:92:ef:52:da:cd:6a:13:3d:c2:bf:65:
a2:da:09:c7:5c:68:6b:b1:3a:05:17:c6:8a:01:38:
d6:7b:e8:40:41:ad:76:82:30:d4:8b:a6:75:95:78:
a6:d4:f7:78:80:cd:e9:19:4e:95:f6:01:c6:4e:eb:
a4:2a:b4:94:b9:9f:59:df:48:87:a2:d0:e0:39:92:
b9:d2:a4:ba:a1:0c:d8:66:9b:10:f7:1c:a6:0b:29:
87:09:a9:13:8a:a2:e2:07:ab:ee:07:33:2b:c1:38:
09:ab:c8:e2:97:be:db:fd:51:06:c2:69:bb:f1:87:
06:e1:45:ca:b8:84:9c:fc:b2:e3:be:04:1f:e8:6c:
6b:17:65:1a:57:bc:cf:43:a3:51:4c:d2:e3:3b:cd:
e2:c9:94:46:01:c0:38:5e:04:e8:19:24:21:67:30:
88:b8:6f:9e:01:eb:52:6c:4d:bc:ac:c6:f5:94:06:
fa:f7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
2D:91:AD:31:6B:C5:EE:FF:7E:DC:25:25:38:34:EB:E3:AD:56:41:BD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9162578/25C39ECC7BE811EBB0B1F63CC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9162578/25C39ECC7BE811EBB0B1F63CC4F9AE02/LZGtMWvF7v9-3CUlODTr461WQb0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138690
sbgp-ipAddrBlock: critical
IPv4:
103.136.176.0/22
IPv6:
2404:9940::/32
Signature Algorithm: sha256WithRSAEncryption
3c:02:1f:61:31:dc:3d:b2:c7:5f:4b:b1:61:ec:15:86:54:d4:
80:62:dd:bb:34:ac:dd:57:1c:74:10:31:75:6f:b4:d6:ea:f8:
96:52:c7:9f:67:42:be:ec:6c:a2:b7:5c:f1:36:8a:2f:23:dc:
b6:41:3f:da:f9:47:33:cd:1c:44:4a:55:fd:55:be:ba:e1:85:
5f:65:62:9e:f6:e7:6f:94:e0:d7:a5:cf:e5:7d:d1:5c:96:d9:
6d:44:97:39:64:1d:cb:fe:c5:1b:13:be:d2:17:b8:d0:ad:58:
79:69:f4:9c:05:26:3a:a1:41:54:15:d3:f0:2d:e7:96:1a:dc:
3e:87:53:78:0b:c8:82:8c:74:35:6e:7b:92:3d:94:46:a4:1b:
a0:51:53:89:47:61:2b:21:ae:fb:7c:fa:e0:5c:98:25:16:bf:
51:af:5b:12:81:25:ec:f5:32:0a:72:0b:f3:63:6e:6a:6c:26:
61:e1:66:90:af:95:ce:87:28:11:a0:91:eb:41:7e:ca:52:92:
b8:64:1d:f3:b3:52:54:92:94:d1:52:c1:8d:e6:94:ef:e1:d6:
36:dc:a4:f1:f0:b2:b2:aa:c5:62:25:c9:2f:85:2a:a6:d1:3f:
d7:57:44:74:ba:62:3c:82:0c:f3:fd:38:0f:b3:cc:42:9b:d4:
14:69:37:5d
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAZcPMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDQxMTAyNDU1NloXDTI0MDcwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjI1NzgxMTAvBgNVBAUTKDJEOTFBRDMxNkJDNUVFRkY3RURDMjUy
NTM4MzRFQkUzQUQ1NjQxQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDFf2HyeW16dBUrXaWiCVw9vy2Dz7BbC/wwlJbM9TGv+ZRJRrSA4dJsK148BaPm
HB8EX6rGjsY43HDeRVP/N7IJ16MNiPmasMWnKCAlHWSS71LazWoTPcK/ZaLaCcdc
aGuxOgUXxooBONZ76EBBrXaCMNSLpnWVeKbU93iAzekZTpX2AcZO66QqtJS5n1nf
SIei0OA5krnSpLqhDNhmmxD3HKYLKYcJqROKouIHq+4HMyvBOAmryOKXvtv9UQbC
abvxhwbhRcq4hJz8suO+BB/obGsXZRpXvM9Do1FM0uM7zeLJlEYBwDheBOgZJCFn
MIi4b54B61JsTbysxvWUBvr3AgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQULZGtMWvF
7v9+3CUlODTr461WQb0wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTYyNTc4LzI1QzM5RUNDN0JFODExRUJCMEIxRjYzQ0M0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2MjU3OC8yNUMzOUVDQzdCRTgxMUVCQjBCMUY2M0NDNEY5QUUwMi9MWkd0TVd2
Rjd2OS0zQ1VsT0RUcjQ2MVdRYjAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAh3CMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQCZ4iwMA0EAgAC
MAcDBQAkBJlAMA0GCSqGSIb3DQEBCwUAA4IBAQA8Ah9hMdw9ssdfS7Fh7BWGVNSA
Yt27NKzdVxx0EDF1b7TW6viWUsefZ0K+7Gyit1zxNoovI9y2QT/a+UczzRxESlX9
Vb664YVfZWKe9udvlODXpc/lfdFcltltRJc5ZB3L/sUbE77SF7jQrVh5afScBSY6
oUFUFdPwLeeWGtw+h1N4C8iCjHQ1bnuSPZRGpBugUVOJR2ErIa77fPrgXJglFr9R
r1sSgSXs9TIKcgvzY25qbCZh4WaQr5XOhygRoJHrQX7KUpK4ZB3zs1JUkpTRUsGN
5pTv4dY23KTx8LKyqsViJckvhSqm0T/XV0R0umI8ggzz/TgPs8xCm9QUaTdd
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:53 2024 by rpki-client on console-fra.rpki-client.org