Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/UFJL9L6b3tXqzveLhX1KGJa5iBk.cer
File: UFJL9L6b3tXqzveLhX1KGJa5iBk.cer (raw, json)
Hash identifier: DWpchDFr8ob6xU49wCqShrng9XXD9C9S/B0RcT0WHmI=
Subject key identifier: 50:52:4B:F4:BE:9B:DE:D5:EA:CE:F7:8B:85:7D:4A:18:96:B9:88:19
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 017689
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB11E/8180AE5E002B11E7ADD1A14EC4F9AE02/UFJL9L6b3tXqzveLhX1KGJa5iBk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB11E/8180AE5E002B11E7ADD1A14EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 31 Oct 2022 17:08:18 +0000
Certificate not after: Fri 01 Dec 2023 00:00:00 +0000
Subordinate resources: AS: 132078
AS: 132095
AS: 132121
AS: 132451
AS: 132474
AS: 132596
IP: 203.62.128.0/23
IP: 2407:b500::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 95881 (0x17689)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 31 17:08:18 2022 GMT
Not After : Dec 1 00:00:00 2023 GMT
Subject: CN=A91CB11E/serialNumber=50524BF4BE9BDED5EACEF78B857D4A1896B98819
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c8:69:83:33:48:6e:66:f8:ff:aa:53:e2:ad:bb:
14:42:4c:e7:f5:9b:0a:71:87:19:88:85:ae:b7:2e:
18:89:ac:e0:2d:f2:06:02:0e:7c:23:22:4b:ec:71:
85:50:31:bb:02:47:f1:12:d9:08:33:3b:44:06:d1:
6c:00:95:b4:7e:47:86:6b:21:23:21:9f:23:9c:40:
94:04:89:4e:10:b9:09:a6:2a:66:38:73:6f:b5:9a:
69:2c:12:66:2a:24:6d:b3:f0:5b:b8:3d:63:ca:09:
cc:40:98:68:f0:49:72:95:de:25:ad:c0:44:66:cf:
44:53:7b:ab:86:1f:b8:95:4d:24:2d:cf:88:7f:51:
ba:4a:f2:f7:fb:4e:0c:24:90:af:7e:39:e9:7d:c9:
22:ea:2b:d7:b6:12:5b:36:ae:bf:da:24:60:45:43:
35:0c:86:e8:ad:00:a7:9f:c7:c3:3c:b7:85:f7:0d:
71:d0:88:bc:37:61:81:27:87:dd:f3:41:16:0b:8b:
fe:9b:3c:bc:7c:92:28:cb:8e:5a:88:1d:dd:a5:04:
b3:b3:34:dd:23:3b:4b:4a:10:5a:59:87:eb:9b:a2:
dc:a5:51:cf:ff:59:49:e5:34:89:e1:9f:59:c9:b6:
ec:db:44:5e:68:6d:ef:a0:0b:f1:2e:2e:76:14:48:
5c:35
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
50:52:4B:F4:BE:9B:DE:D5:EA:CE:F7:8B:85:7D:4A:18:96:B9:88:19
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB11E/8180AE5E002B11E7ADD1A14EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB11E/8180AE5E002B11E7ADD1A14EC4F9AE02/UFJL9L6b3tXqzveLhX1KGJa5iBk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
132078
132095
132121
132451
132474
132596
sbgp-ipAddrBlock: critical
IPv4:
203.62.128.0/23
IPv6:
2407:b500::/32
Signature Algorithm: sha256WithRSAEncryption
38:58:f6:12:a6:d3:d2:5e:a6:f6:36:f0:25:a0:e2:fe:f7:1c:
cd:e9:0b:56:11:f0:85:a8:1d:c5:43:69:3c:18:4a:b5:65:f2:
a4:ba:3c:c1:85:e8:25:7b:72:76:30:13:9f:36:c6:4d:31:21:
bb:d5:67:fb:8e:a2:60:8d:7d:08:f9:49:7f:b8:44:ba:89:56:
d8:06:53:65:ab:3d:79:ef:75:09:d6:e7:c2:72:6f:05:ee:d3:
d4:96:2f:60:65:3a:46:16:db:44:25:c2:80:16:15:5c:79:d2:
08:dc:71:10:3f:22:d4:04:00:08:95:50:d3:40:6f:a3:e2:cc:
73:cb:d6:15:40:b8:36:8c:88:20:fd:55:ef:7f:b2:72:4f:67:
66:48:b1:d8:a3:70:f9:81:9b:62:f1:dd:23:47:d3:a4:15:aa:
8c:1a:a7:ab:d2:9a:68:c5:ec:98:58:d9:65:51:bd:b4:5b:d4:
2e:9a:08:81:84:eb:7c:c3:90:37:19:2d:f2:ee:b7:8c:76:a1:
aa:f2:28:ed:9f:d4:c5:ce:04:88:dc:ff:e6:a6:c1:a5:9a:b7:
44:ae:b8:01:21:af:06:ef:e3:35:6a:fb:b1:a0:89:5e:09:59:
41:85:db:67:12:11:26:cb:84:c9:7b:de:b7:c0:aa:bb:f5:b1:
03:49:65:98
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:43 2024 by rpki-client on console-ams.rpki-client.org