Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QPxwUeE1C7mgE9sGI-D5ZRYkQnk.cer
File: QPxwUeE1C7mgE9sGI-D5ZRYkQnk.cer (raw, json)
Hash identifier: 0bDwz0wxhUf2bsb7N/xBc3/DUlr19K1EKWaxU+nDMQc=
Subject key identifier: 40:FC:70:51:E1:35:0B:B9:A0:13:DB:06:23:E0:F9:65:16:24:42:79
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01101F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A911CF5D/B1844B8228F111EAA2D2C761C4F9AE02/QPxwUeE1C7mgE9sGI-D5ZRYkQnk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A911CF5D/B1844B8228F111EAA2D2C761C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sat 01 May 2021 12:35:24 +0000
Certificate not after: Fri 01 Jul 2022 00:00:00 +0000
Subordinate resources: IP: 103.211.0.0/22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 69663 (0x1101f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 1 12:35:24 2021 GMT
Not After : Jul 1 00:00:00 2022 GMT
Subject: CN=A911CF5D/serialNumber=40FC7051E1350BB9A013DB0623E0F96516244279
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d0:36:ca:ac:f1:7b:00:54:01:69:1f:0c:24:42:
8e:06:88:40:fb:33:2e:13:32:46:6b:c4:92:1e:53:
57:9d:8b:23:60:c2:69:28:07:81:c2:a7:22:e8:6c:
3e:00:62:4f:74:9d:20:e7:26:92:0f:7b:0c:1c:09:
f5:14:b0:9d:e1:39:dc:34:f7:7a:b3:3e:ed:b3:7c:
5a:ad:55:5a:8a:e4:43:0a:ba:46:b9:c3:92:2e:4f:
2c:5e:cb:ea:97:47:4c:2f:0c:46:9f:4f:a4:32:7e:
51:cf:88:41:e7:6a:94:0a:66:03:9b:b5:27:27:bf:
9f:31:0b:f9:35:69:69:60:b3:01:d0:01:58:40:4f:
bd:c2:2f:2d:42:9e:34:20:9f:a4:c4:61:4a:99:5e:
6e:91:e9:78:2e:2e:fc:b0:15:fd:01:fd:46:af:fd:
a2:f9:1a:30:5d:1b:0f:67:d3:4c:b1:16:aa:e1:5e:
17:ac:5d:15:c2:5c:df:a7:d1:03:ad:ad:f0:8b:2f:
36:51:1a:ca:67:9f:ae:1f:d8:cb:87:77:3f:79:6e:
e1:3f:4b:34:f7:95:df:9f:a8:64:30:b5:51:e3:4e:
a9:8c:17:66:5b:49:a1:75:ab:f8:e7:f2:5f:7e:16:
d4:31:26:af:05:07:3e:10:d8:90:1f:13:34:26:47:
b2:b5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
40:FC:70:51:E1:35:0B:B9:A0:13:DB:06:23:E0:F9:65:16:24:42:79
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A911CF5D/B1844B8228F111EAA2D2C761C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A911CF5D/B1844B8228F111EAA2D2C761C4F9AE02/QPxwUeE1C7mgE9sGI-D5ZRYkQnk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.211.0.0/22
Signature Algorithm: sha256WithRSAEncryption
22:07:8c:34:e9:d3:a6:8d:d1:16:2a:2b:2e:ae:2c:0b:83:91:
64:4e:67:da:02:8b:29:45:ea:41:c3:cc:c2:67:a9:1f:4a:88:
4f:d8:d4:e4:0e:a7:5a:de:8f:c8:1e:2e:5c:92:80:18:ea:d4:
f7:6f:df:e9:db:04:59:7c:36:a3:e5:a3:54:e4:7e:20:48:a2:
a4:a9:02:31:36:b1:47:a0:c4:99:f1:e0:39:ca:95:4a:59:9f:
aa:85:52:ec:f2:80:e0:97:95:00:72:de:ac:ec:0d:c9:14:ed:
4e:1d:72:3b:61:c5:74:41:03:73:ac:c6:93:78:30:80:09:28:
a8:c0:1f:f8:ff:6e:d7:7a:10:2d:c8:6b:78:4b:0a:9b:20:9e:
59:db:3c:f9:d2:1d:70:a4:65:55:2a:8e:11:04:a3:74:72:0e:
2b:df:21:d1:f9:0a:17:f5:ac:59:63:84:c2:7a:db:d7:7e:6d:
95:cf:e5:99:5d:4c:88:1c:16:1a:30:bb:6a:23:3b:f0:1a:29:
11:c5:9e:4d:55:ad:a3:72:f4:58:3d:02:b4:8c:d9:21:5f:ea:
f9:e0:d1:f8:ed:fa:ec:bd:d7:09:03:47:13:11:d0:be:d6:c5:
21:5a:ad:bc:e0:d5:02:43:e1:1e:87:88:88:99:82:a4:3d:1f:
fd:ad:b4:95
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:16 2023 by rpki-client on console-fra.rpki-client.org