Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/OghEIiV_9fF5pQ7L_ALr9yW7k0M.cer
File: OghEIiV_9fF5pQ7L_ALr9yW7k0M.cer (raw, json)
Hash identifier: wzRGWhIWhFKaQO9e85cIo2mycUQNoK+pIm7vWZVOmjw=
Subject key identifier: 3A:08:44:22:25:7F:F5:F1:79:A5:0E:CB:FC:02:EB:F7:25:BB:93:43
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C7BF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/OghEIiV_9fF5pQ7L_ALr9yW7k0M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 01 Nov 2023 00:24:06 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 24192
AS: 45459
AS: 46075
AS: 58583
IP: 103.7.168.0/22
IP: 103.14.40.0/22
IP: 103.253.192.0/24
IP: 103.253.194.0/23
IP: 112.109.64.0 -- 112.109.73.255
IP: 112.109.75.0 -- 112.109.80.255
IP: 112.109.85.0 -- 112.109.87.255
IP: 119.47.116.0/24
IP: 119.47.120.0/23
IP: 119.47.125.0 -- 119.47.127.255
IP: 202.174.81.0 -- 202.174.87.255
IP: 202.174.112.0/21
IP: 210.79.48.0/21
IP: 2404:3800::/32
IP: 2406:1200::/32
Validation: Failed, certificate revoked on Tue 30 Jan 2024 20:45:03 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116671 (0x1c7bf)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 1 00:24:06 2023 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A91856F6/serialNumber=3A084422257FF5F179A50ECBFC02EBF725BB9343
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:31:42:0e:a0:43:6e:d0:95:50:16:2e:79:10:
2f:23:c8:09:04:8b:2d:d1:46:be:ca:d9:25:05:44:
15:28:eb:4d:1f:2b:c9:f7:73:dc:0b:9a:a4:67:10:
08:25:69:57:3a:2c:32:ff:19:89:89:27:4c:0b:b5:
d9:bc:82:9a:b4:f9:a3:7d:f1:a0:70:76:15:30:d8:
06:5e:b9:ff:e6:36:9b:9f:c7:9d:0a:5a:63:4e:9c:
5c:d5:f4:a5:ea:cd:00:ff:e8:20:f3:34:5a:10:af:
cd:cf:1e:cd:90:84:b7:20:b5:9d:99:5f:d6:ef:30:
1d:86:b5:23:ac:25:19:5c:49:73:a2:84:26:ad:fe:
78:92:61:44:b8:3a:47:1f:8c:72:a4:e1:4f:2d:93:
05:21:84:27:95:c0:38:3f:9a:b3:f8:a8:a3:3b:21:
ff:31:2e:24:a2:8a:4a:cb:b3:46:20:93:3f:8e:77:
3a:a5:ef:0d:a7:54:83:2c:0c:a0:d9:91:72:72:97:
a5:72:e0:46:83:ef:1d:22:d7:37:9e:c2:c4:2a:4c:
6b:7e:93:11:a0:2b:f0:b5:f6:e1:8d:7b:b0:10:91:
82:92:df:c2:51:d2:7b:37:df:fd:5e:0a:d6:b0:9d:
db:88:ac:8b:0c:a4:ab:ad:78:51:d2:8d:2b:61:f6:
02:05
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
3A:08:44:22:25:7F:F5:F1:79:A5:0E:CB:FC:02:EB:F7:25:BB:93:43
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91856F6/879F388E869E11EB9A049627C4F9AE02/OghEIiV_9fF5pQ7L_ALr9yW7k0M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24192
45459
46075
58583
sbgp-ipAddrBlock: critical
IPv4:
103.7.168.0/22
103.14.40.0/22
103.253.192.0/24
103.253.194.0/23
112.109.64.0-112.109.73.255
112.109.75.0-112.109.80.255
112.109.85.0-112.109.87.255
119.47.116.0/24
119.47.120.0/23
119.47.125.0-119.47.127.255
202.174.81.0-202.174.87.255
202.174.112.0/21
210.79.48.0/21
IPv6:
2404:3800::/32
2406:1200::/32
Signature Algorithm: sha256WithRSAEncryption
4d:2e:07:f5:81:bb:d0:38:77:92:d5:9c:1c:c2:66:dc:91:50:
8f:e4:b8:77:55:4c:cf:7f:10:7d:e8:7c:3e:79:b4:c2:20:1e:
84:33:d6:81:19:8c:89:8e:3c:8e:09:17:ed:87:d4:20:92:6c:
30:62:f8:67:3a:60:32:0a:f8:88:a3:23:88:28:a1:a3:6d:db:
fb:47:a3:7d:90:1b:d5:b1:2f:7d:b0:63:21:1d:43:e6:24:51:
6c:e7:b8:ed:47:90:00:94:c0:c7:7e:43:ba:40:f0:10:8f:9a:
97:2b:3b:c9:65:33:4c:69:72:59:8a:12:7b:e1:e4:22:67:1b:
2a:59:b4:c1:a6:88:26:3a:69:77:32:7c:98:38:d9:73:8a:9e:
e3:cc:d0:99:6e:6a:f6:85:25:d1:f1:03:cc:8c:d1:cc:f6:6e:
01:b8:4d:7d:7d:90:05:0c:7b:56:cd:00:0b:b3:4d:a7:31:40:
52:d4:21:4c:d7:58:86:7e:8f:8b:6d:67:7e:b2:e6:ae:3c:77:
4f:f3:d7:a0:1a:83:0b:3c:1f:46:3f:d4:6a:88:db:76:33:5d:
e9:cd:a1:db:15:26:a9:54:26:92:d7:e5:71:1b:39:77:d6:fa:
a2:78:d5:c7:34:fe:68:3f:81:dc:cb:ac:d4:61:12:f2:d6:e3:
c3:82:6f:51
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:54 2024 by rpki-client on console-fra.rpki-client.org