Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/TLgV1pdFW8swK3TXnapq5Bu3t4k.cer
File: TLgV1pdFW8swK3TXnapq5Bu3t4k.cer (raw, json)
Hash identifier: DMgkIE34FDFBWMJDSO2vTSb1ZlVN8mZILe9tWdCPvig=
Subject key identifier: 4C:B8:15:D6:97:45:5B:CB:30:2B:74:D7:9D:AA:6A:E4:1B:B7:B7:89
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01FDBC
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 03 Jul 2024 14:14:35 +0000
Certificate not after: Sun 31 Aug 2025 00:00:00 +0000
Subordinate resources: AS: 137854
IP: 103.115.167.0/24
IP: 103.125.25.0 -- 103.125.27.255
IP: 2001:df5:3100::/48
Validation: Failed, certificate revoked on Fri 09 Aug 2024 13:39:59 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 130492 (0x1fdbc)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jul 3 14:14:35 2024 GMT
Not After : Aug 31 00:00:00 2025 GMT
Subject: CN=A91395A9/serialNumber=4CB815D697455BCB302B74D79DAA6AE41BB7B789
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:d2:25:1a:da:d3:32:5e:f7:b1:e2:d5:b3:33:
ea:18:c2:57:ec:f4:a3:ee:6d:c4:13:8f:df:b0:25:
6a:6f:36:c0:79:51:80:bc:c9:9d:6f:b9:ee:f1:00:
28:92:8c:72:49:50:cd:ae:c8:4a:70:b0:bc:57:63:
bd:73:9a:ab:ce:d4:00:7f:3e:6e:44:32:6b:59:f4:
2c:95:17:26:e0:58:e6:81:ca:82:84:e5:38:38:03:
33:48:86:60:f9:8a:b8:4b:47:a9:e5:85:f5:3a:ee:
62:22:70:5f:11:e3:78:8d:66:03:52:3c:c1:6a:27:
e8:3b:16:04:db:a9:51:e8:e4:29:90:67:b3:c6:c8:
75:03:b6:1f:18:b6:cf:c8:40:29:c5:75:89:15:f6:
9d:97:10:4d:05:12:ca:e6:d7:a3:2d:59:02:45:f5:
af:40:76:28:0f:b6:53:11:cd:4a:12:35:33:de:1f:
5e:ba:67:a6:1d:84:8d:b9:33:45:1f:c9:77:09:de:
75:d8:d0:62:ac:6a:29:af:1a:cd:d1:a6:8b:09:71:
a2:2b:5a:e9:85:80:7b:ac:46:3f:97:5c:55:0b:00:
6a:d6:9f:ee:a3:78:80:ff:78:49:37:eb:54:cb:e6:
a2:fa:26:59:25:91:43:ef:62:0f:eb:27:a2:72:d6:
07:57
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
4C:B8:15:D6:97:45:5B:CB:30:2B:74:D7:9D:AA:6A:E4:1B:B7:B7:89
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91395A9/67AEDE8C5D1911E88DDE393EC4F9AE02/TLgV1pdFW8swK3TXnapq5Bu3t4k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
137854
sbgp-ipAddrBlock: critical
IPv4:
103.115.167.0/24
103.125.25.0-103.125.27.255
IPv6:
2001:df5:3100::/48
Signature Algorithm: sha256WithRSAEncryption
b8:f1:6a:d4:e3:7f:fa:e3:53:ff:37:35:8e:36:72:9a:de:96:
57:08:70:58:43:82:88:46:e6:15:9b:9d:a4:2b:d1:3a:f3:7e:
06:e9:8a:ac:df:7f:da:b4:be:f5:e1:f0:82:3f:b1:9a:be:46:
d7:e9:51:29:0d:fe:e6:34:a3:1a:bb:fe:5a:1d:2e:b6:77:53:
15:d6:da:92:80:71:a5:0c:f1:d4:c2:a4:dc:98:f4:3c:2f:0d:
36:12:1c:2c:34:5a:16:03:61:c4:36:fa:d1:b1:54:2a:6e:89:
00:b6:1a:73:19:d3:43:58:0c:0d:d3:fd:52:97:44:5b:af:da:
2f:2e:f9:f0:eb:b7:4a:31:e4:60:ac:87:88:50:bf:f5:f4:46:
94:17:cf:42:c5:e4:fd:5b:0b:1c:12:3e:15:80:13:1b:1a:04:
9d:ba:e8:3a:ce:6d:df:99:21:9b:a9:aa:22:e4:a4:6c:2b:99:
c2:a5:a1:d7:67:96:2c:c0:99:f1:22:9a:bc:70:d2:bc:b9:e3:
68:ad:a7:68:5f:bb:23:c7:44:d3:6b:dd:2f:1a:2d:9c:0a:b2:
7f:1e:9f:f9:e0:ab:c3:8d:78:c0:24:f5:74:b8:2d:30:4e:b7:
8c:5d:2b:c9:6f:39:e4:f2:01:2e:f2:af:11:f5:d1:72:c7:bc:
6c:ab:cb:c5
-----BEGIN CERTIFICATE-----
MIIGOTCCBSGgAwIBAgIDAf28MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDcwMzE0MTQzNVoXDTI1MDgzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMzk1QTkxMTAvBgNVBAUTKDRDQjgxNUQ2OTc0NTVCQ0IzMDJCNzRE
NzlEQUE2QUU0MUJCN0I3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDZ0iUa2tMyXvex4tWzM+oYwlfs9KPubcQTj9+wJWpvNsB5UYC8yZ1vue7xACiS
jHJJUM2uyEpwsLxXY71zmqvO1AB/Pm5EMmtZ9CyVFybgWOaByoKE5Tg4AzNIhmD5
irhLR6nlhfU67mIicF8R43iNZgNSPMFqJ+g7FgTbqVHo5CmQZ7PGyHUDth8Yts/I
QCnFdYkV9p2XEE0FEsrm16MtWQJF9a9AdigPtlMRzUoSNTPeH166Z6YdhI25M0Uf
yXcJ3nXY0GKsaimvGs3RposJcaIrWumFgHusRj+XXFULAGrWn+6jeID/eEk361TL
5qL6JlklkUPvYg/rJ6Jy1gdXAgMBAAGjggMuMIIDKjAdBgNVHQ4EFgQUTLgV1pdF
W8swK3TXnapq5Bu3t4kwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTM5NUE5LzY3QUVERThDNUQxOTExRTg4RERFMzkzRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTEzOTVBOS82N0FFREU4QzVEMTkxMUU4OERERTM5M0VDNEY5QUUwMi9UTGdWMXBk
Rlc4c3dLM1RYbmFwcTVCdTN0NGsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAhp+MD4GCCsGAQUFBwEHAQH/BC8wLTAaBAIAATAUAwQAZ3OnMAwDBABn
fRkDBAJnfRgwDwQCAAIwCQMHACABDfUxADANBgkqhkiG9w0BAQsFAAOCAQEAuPFq
1ON/+uNT/zc1jjZymt6WVwhwWEOCiEbmFZudpCvROvN+BumKrN9/2rS+9eHwgj+x
mr5G1+lRKQ3+5jSjGrv+Wh0utndTFdbakoBxpQzx1MKk3Jj0PC8NNhIcLDRaFgNh
xDb60bFUKm6JALYacxnTQ1gMDdP9UpdEW6/aLy758Ou3SjHkYKyHiFC/9fRGlBfP
QsXk/VsLHBI+FYATGxoEnbroOs5t35khm6mqIuSkbCuZwqWh12eWLMCZ8SKavHDS
vLnjaK2naF+7I8dE02vdLxotnAqyfx6f+eCrw414wCT1dLgtME63jF0ryW855PIB
LvKvEfXRcse8bKvLxQ==
-----END CERTIFICATE-----
Generated at Fri Aug 9 16:17:44 2024 by rpki-client on console-fra.rpki-client.org