Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/RIpYNjdV8YvqFYk5g7Xmk23Soh8.cer
File: RIpYNjdV8YvqFYk5g7Xmk23Soh8.cer (raw, json)
Hash identifier: uhMqHAyl8gGJlSjpLOoNTp8zZzBzSIzM+8PvkoQZUsU=
Subject key identifier: 44:8A:58:36:37:55:F1:8B:EA:15:89:39:83:B5:E6:93:6D:D2:A2:1F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 020A24
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9171D3B/B2499858313811E99DE3266FC4F9AE02/RIpYNjdV8YvqFYk5g7Xmk23Soh8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9171D3B/B2499858313811E99DE3266FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 30 Aug 2024 18:00:11 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 136765
IP: 2404:5a40::/32
Validation: Failed, certificate revoked on Mon 14 Oct 2024 15:20:05 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 133668 (0x20a24)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 30 18:00:11 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A9171D3B/serialNumber=448A58363755F18BEA15893983B5E6936DD2A21F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d8:79:6b:63:c0:25:e6:66:3a:45:5e:57:64:04:
6c:a6:10:26:9d:8a:12:1f:ed:56:5c:d5:9a:38:18:
d5:58:4f:59:6e:68:50:7e:b3:76:67:63:3f:2e:b0:
15:92:e3:9f:e0:4b:75:81:3b:cf:1c:78:8d:f0:ff:
6e:ac:f3:af:85:1b:e9:92:6b:82:e0:e7:be:07:1a:
30:b3:68:0a:a1:7c:f4:e4:d4:2f:d1:cc:65:32:f5:
1a:b9:dd:59:e8:f3:62:ee:0d:1d:e2:30:07:b4:75:
f3:6f:c9:e1:65:b2:2b:08:2a:51:a1:14:6e:66:fa:
cc:1a:b0:89:0a:67:1f:21:2a:f6:c4:28:ca:3c:b1:
b8:49:2d:de:89:6a:ee:79:0b:96:68:de:ff:cf:9f:
f9:50:b3:ed:fa:08:9d:d7:8b:94:6b:1e:51:e4:07:
93:32:01:a1:66:eb:8d:88:f7:02:da:3a:67:50:f3:
2e:e2:6b:b3:ab:bb:4c:75:ce:70:2a:8d:44:47:75:
99:cd:80:da:52:3d:77:f0:34:bb:99:a0:b9:fa:73:
33:fc:3e:fd:94:3a:c3:a2:c9:d6:54:aa:0e:fe:0a:
b8:dd:9a:b0:28:1b:d8:d0:cd:56:e7:7a:7f:67:98:
62:b4:cd:b6:f8:7a:24:72:1d:ec:6e:ea:d3:ed:f7:
52:ad
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
44:8A:58:36:37:55:F1:8B:EA:15:89:39:83:B5:E6:93:6D:D2:A2:1F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9171D3B/B2499858313811E99DE3266FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9171D3B/B2499858313811E99DE3266FC4F9AE02/RIpYNjdV8YvqFYk5g7Xmk23Soh8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
136765
sbgp-ipAddrBlock: critical
IPv6:
2404:5a40::/32
Signature Algorithm: sha256WithRSAEncryption
46:77:3e:b8:0a:a0:e1:cc:d8:89:68:3e:18:e2:15:7a:bf:27:
1e:bb:c4:db:c2:09:ec:ef:34:91:1d:bd:50:48:f4:30:c6:19:
45:30:41:df:bf:17:6a:28:3e:85:be:3b:94:51:2e:28:2b:15:
6c:d7:96:1a:40:49:51:5e:cd:67:5b:b6:42:4b:2e:06:c3:c5:
58:da:87:2b:02:d8:9f:7c:11:4e:30:04:ba:6c:2b:c9:50:60:
27:24:45:51:27:a7:a3:c5:33:dc:d4:ee:ba:90:dc:5b:c9:af:
09:1f:10:a3:7a:a7:82:e1:59:56:6a:62:1c:f4:d4:f8:f6:a3:
58:a0:ec:07:12:24:4a:30:d7:c7:13:15:10:1a:f6:e2:db:a3:
be:c5:c5:99:42:56:5d:1d:78:8d:d3:72:21:53:a5:81:18:05:
24:34:79:91:89:f4:93:42:6f:7b:b9:13:51:d0:7e:11:b1:d5:
f7:00:7b:bb:7d:c2:ad:b3:5f:92:dd:8b:14:52:0e:19:10:eb:
25:4b:94:ea:7a:15:cc:c3:c8:56:fe:b7:e3:67:55:4c:3a:49:
4a:fa:38:0d:f8:f9:9a:85:23:59:4e:81:7c:e7:27:1f:6e:2e:
d8:8b:f8:ca:4a:5d:10:32:2a:47:a6:2f:f1:86:f5:8b:8a:8d:
00:db:45:9e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 14 20:38:01 2024 by rpki-client on console-ams.rpki-client.org