Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/YiFKHFIkgcc4F5W-6lXzyIzgE80.cer
File: YiFKHFIkgcc4F5W-6lXzyIzgE80.cer (raw, json)
Hash identifier: 4LAq8sOCl+O1SPY0GvevADDf7SQvwPNvZZd08NynZlQ=
Subject key identifier: 62:21:4A:1C:52:24:81:C7:38:17:95:BE:EA:55:F3:C8:8C:E0:13:CD
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01F3DF
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91D1862/350845AA1BC111EF8CE32F7FC4F9AE02/YiFKHFIkgcc4F5W-6lXzyIzgE80.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91D1862/350845AA1BC111EF8CE32F7FC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Mon 27 May 2024 00:36:57 +0000
Certificate not after: Sun 01 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 55914
IP: 202.94.64.0/23
IP: 202.129.255.0/24
IP: 203.191.6.0/24
Validation: Failed, certificate revoked on Thu 25 Jul 2024 19:40:53 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 127967 (0x1f3df)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 27 00:36:57 2024 GMT
Not After : Dec 1 00:00:00 2024 GMT
Subject: CN=A91D1862/serialNumber=62214A1C522481C7381795BEEA55F3C88CE013CD
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:3b:10:61:50:d6:7e:aa:39:78:8e:12:6d:62:
46:f0:36:b5:54:ec:ad:27:d8:ee:d0:e2:8b:ce:2b:
c3:2c:a0:f1:a5:72:67:ce:a2:4c:b1:13:e1:02:8c:
a0:1c:62:69:58:ab:f3:35:e5:28:c3:f5:4b:93:c3:
49:89:1e:2b:8b:75:c0:90:72:9a:50:a4:41:72:c8:
4a:0c:52:e9:51:dd:f9:1b:0d:99:a4:de:41:bf:db:
e9:94:cf:c4:aa:b5:c1:62:e0:79:b0:38:d8:df:45:
4a:1f:33:96:30:87:8a:95:59:bc:08:7d:bf:8c:4f:
9c:70:0f:8f:7f:ac:50:49:c4:f9:89:49:70:0e:b3:
11:cd:41:56:b3:b7:79:dd:54:10:a3:8b:e5:5c:10:
2d:87:8d:74:fd:d0:a1:2c:49:b4:bf:77:69:aa:ce:
49:1f:11:bc:ec:a1:37:d5:ff:10:e9:a6:15:c7:a9:
6c:8e:87:47:1f:45:ab:1b:60:f1:cc:dd:87:cc:6a:
29:ee:eb:c0:30:4a:02:66:72:92:23:55:8a:96:38:
f1:94:29:ef:0c:f1:13:a9:48:78:e7:ac:a2:d8:b4:
05:38:5b:a7:48:7c:89:ac:64:11:cd:6f:7e:11:9e:
50:6d:a0:d6:99:77:3b:65:00:e1:02:8a:9a:6a:bf:
b7:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
62:21:4A:1C:52:24:81:C7:38:17:95:BE:EA:55:F3:C8:8C:E0:13:CD
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91D1862/350845AA1BC111EF8CE32F7FC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91D1862/350845AA1BC111EF8CE32F7FC4F9AE02/YiFKHFIkgcc4F5W-6lXzyIzgE80.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
55914
sbgp-ipAddrBlock: critical
IPv4:
202.94.64.0/23
202.129.255.0/24
203.191.6.0/24
Signature Algorithm: sha256WithRSAEncryption
0b:a2:2e:00:c2:30:d1:73:a9:f4:16:a2:ea:4a:42:89:7a:72:
19:c0:bf:bf:db:2a:d2:d0:ef:f4:c5:3f:ba:c6:85:03:3a:f3:
e1:78:8c:05:71:f5:51:7b:a6:27:4a:46:61:50:4a:6f:6c:82:
f9:78:15:4f:6f:e4:63:8f:02:d8:18:43:91:7d:eb:3b:cb:81:
17:84:30:b5:80:f7:e8:bb:18:b4:08:91:b0:cb:61:b1:02:e1:
55:a1:80:98:34:4c:2b:34:54:43:3c:4e:9f:f2:7d:24:52:79:
7a:a6:52:86:40:81:e9:02:76:3b:ed:5f:56:28:41:d0:fc:82:
12:db:c8:41:72:48:a9:b1:e3:5e:fc:d7:a6:d0:59:09:5c:b0:
1a:aa:af:b6:61:86:9a:ea:6f:7f:1f:c5:36:7a:4e:ed:0c:36:
0a:fc:82:f2:a5:7d:89:a9:d6:c4:4f:2f:bb:f0:37:69:e3:cb:
73:1d:45:24:ed:28:fe:b9:7a:0b:82:c3:cd:0f:26:c1:1c:43:
d3:b1:8f:84:2d:06:f2:f1:06:de:4d:a6:7f:da:ba:8a:17:87:
d6:43:fa:38:a0:8f:01:f9:c2:7c:54:e3:a0:ca:62:eb:42:f4:
9e:4d:a8:0d:4b:a2:9b:d8:79:c7:cb:91:c2:4f:34:07:4c:bb:
08:af:b7:93
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 25 21:44:49 2024 by rpki-client on console-fra.rpki-client.org