Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/XbXCwBT_Lc3ANQKomVyj6zs23l8.cer
File: XbXCwBT_Lc3ANQKomVyj6zs23l8.cer (raw, json)
Hash identifier: kDaFE0PmRN4+3vd9MaxBcZ12DfMUYCnhopJG2fj2Lxg=
Subject key identifier: 5D:B5:C2:C0:14:FF:2D:CD:C0:35:02:A8:99:5C:A3:EB:3B:36:DE:5F
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0151F1
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A916155A/2D250014864411EB8A814D46C4F9AE02/XbXCwBT_Lc3ANQKomVyj6zs23l8.mft
caRepository: rsync://rpki.apnic.net/member_repository/A916155A/2D250014864411EB8A814D46C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 28 Apr 2022 14:55:30 +0000
Certificate not after: Sun 28 Aug 2022 00:00:00 +0000
Subordinate resources: AS: 138640
IP: 103.135.44.0/23
IP: 2001:df3:9180::/48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 86513 (0x151f1)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 28 14:55:30 2022 GMT
Not After : Aug 28 00:00:00 2022 GMT
Subject: CN=A916155A/serialNumber=5DB5C2C014FF2DCDC03502A8995CA3EB3B36DE5F
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c0:92:8c:c8:87:1e:eb:ab:84:1c:1c:2d:61:e0:
95:88:21:ad:55:e8:dc:62:f7:fc:50:fb:ed:50:4a:
a9:79:de:d1:0d:48:00:e0:14:42:45:37:83:b1:ca:
a1:79:49:cc:f7:e3:80:11:24:84:49:bc:a3:e8:be:
71:04:2b:50:3c:f7:cc:41:4b:3a:15:be:d4:27:30:
f2:87:82:7b:ca:d3:ac:34:02:bf:4e:fd:29:55:a4:
81:3e:81:f9:dd:d2:72:d6:52:fb:ab:9d:2f:89:21:
5a:b2:79:55:ae:f1:26:07:9d:f8:a3:07:20:ad:5b:
7a:9a:63:b8:71:6a:92:bf:40:18:2e:d5:41:b6:f9:
3d:d0:74:53:e6:99:7c:48:7d:3d:41:c8:57:ab:eb:
64:df:4a:41:e9:9e:f4:9b:24:98:00:ae:89:29:89:
04:6f:0b:2c:32:22:6c:a5:1a:d2:4e:5e:e7:09:e8:
a3:7d:74:94:30:ee:c0:2f:30:d8:ff:45:c3:ed:69:
db:63:ef:0e:19:79:79:f0:f1:1f:da:73:c6:f9:6a:
57:4d:50:68:c9:b3:5b:d7:65:87:3b:cc:09:3c:9b:
fc:7e:de:13:93:2b:73:d0:db:5b:07:76:96:33:e2:
3c:57:dc:1e:a8:92:66:c0:f1:fa:a1:51:df:be:c8:
0a:e1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5D:B5:C2:C0:14:FF:2D:CD:C0:35:02:A8:99:5C:A3:EB:3B:36:DE:5F
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A916155A/2D250014864411EB8A814D46C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A916155A/2D250014864411EB8A814D46C4F9AE02/XbXCwBT_Lc3ANQKomVyj6zs23l8.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
138640
sbgp-ipAddrBlock: critical
IPv4:
103.135.44.0/23
IPv6:
2001:df3:9180::/48
Signature Algorithm: sha256WithRSAEncryption
1a:25:38:f9:27:d7:8a:d4:99:0d:aa:ed:87:f1:af:85:b6:e9:
68:58:67:2c:9e:c2:35:01:7a:4c:83:42:6b:b9:bd:a9:63:5f:
13:6c:ef:4d:30:8a:d3:c0:eb:c4:e6:0b:85:fa:41:8c:5f:3f:
32:0c:5b:ad:5e:de:dd:f3:e8:8d:51:7f:3e:3e:d1:18:7b:5e:
5b:40:9d:0c:88:04:9f:ad:a1:63:34:be:98:5b:3d:53:d5:42:
1c:ec:23:88:f6:cd:3f:49:3a:30:c8:c1:e3:33:03:cf:a2:6a:
00:32:db:c5:16:23:63:75:84:95:9b:38:e4:e6:76:26:62:84:
d7:5a:86:8b:49:6c:1b:e3:81:5f:77:9d:30:19:3a:49:f7:5b:
bb:9d:40:16:f0:f5:17:e0:2d:2e:4f:06:db:fe:d7:2a:df:6c:
09:33:27:f9:10:a7:fc:c0:e8:ab:9b:79:78:a3:57:69:e6:9d:
fa:3d:98:35:18:02:f9:b9:1d:3d:54:ac:aa:07:4f:3b:e6:ea:
a0:a7:1d:5a:db:4b:9a:8b:82:d7:8e:82:5c:a4:68:68:63:1a:
68:6b:8c:36:79:4b:b7:d6:9e:a7:dd:b7:30:ae:ed:18:ff:d4:
29:47:5b:e0:b0:52:37:84:78:47:39:b6:2c:9c:10:bf:fa:2a:
cf:cb:e0:42
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:16 2023 by rpki-client on console-fra.rpki-client.org