Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_TrfdnL4J3lYLn8UqpKfRHBKvg0.cer
File: _TrfdnL4J3lYLn8UqpKfRHBKvg0.cer (raw, json)
Hash identifier: cn9h6IA5SFW5KPeOsI2jVJaf09rXLmIQNucNgXynw00=
Subject key identifier: FD:3A:DF:76:72:F8:27:79:58:2E:7F:14:AA:92:9F:44:70:4A:BE:0D
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01BE80
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9113435/6F0494C42FDE11ECAB5B1268C4F9AE02/_TrfdnL4J3lYLn8UqpKfRHBKvg0.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9113435/6F0494C42FDE11ECAB5B1268C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 20 Sep 2023 12:25:16 +0000
Certificate not after: Thu 31 Oct 2024 00:00:00 +0000
Subordinate resources: AS: 9336
AS: 55573
AS: 137558
IP: 27.113.240.0/21
IP: 45.113.244.0/22
IP: 103.53.200.0/22
IP: 121.200.208.0/21
IP: 202.90.48.0/21
IP: 2403:3600::/32
Validation: Failed, certificate revoked on Mon 20 Nov 2023 12:27:15 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 114304 (0x1be80)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Sep 20 12:25:16 2023 GMT
Not After : Oct 31 00:00:00 2024 GMT
Subject: CN=A9113435/serialNumber=FD3ADF7672F82779582E7F14AA929F44704ABE0D
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b1:eb:5a:97:69:94:07:60:96:b8:0b:32:25:6f:
36:2c:f3:69:9c:22:73:08:a9:c2:dd:49:b7:3e:76:
16:91:16:2a:d8:25:5c:f4:81:8b:53:a6:ae:01:87:
0b:f1:5f:22:ef:29:1a:c5:e7:b2:5b:e4:84:9e:37:
65:25:3d:39:05:9b:73:4a:92:c3:f2:ee:17:f4:f7:
2e:46:42:45:51:3b:50:ea:db:7a:68:c6:e7:be:d7:
63:f7:7e:4f:10:09:45:7f:a5:dc:41:52:ab:be:35:
65:95:5a:8a:ff:c9:cd:76:c2:e9:77:1c:16:d1:2b:
d6:dc:50:9d:6e:63:06:c8:6d:6f:60:23:38:eb:6b:
66:f0:41:3b:c1:d0:7b:b6:c4:5d:28:24:99:d4:01:
c5:2a:a3:52:f4:c6:a8:2e:1b:0e:10:20:d6:8f:03:
1d:c2:3e:16:65:3e:fe:f7:d1:ec:29:3d:4c:7f:c9:
3b:79:c0:99:c0:d9:6a:44:5d:b2:24:f9:f7:18:df:
f7:e9:1f:2d:94:51:3a:85:2a:e9:8f:d8:5d:2d:01:
7b:00:93:b0:70:85:3b:e8:41:54:46:86:85:e0:20:
aa:64:86:16:9f:ca:21:d3:1d:29:50:28:0c:c7:6c:
6c:a3:60:f4:2a:d4:c1:be:a4:28:ed:1a:41:8f:ce:
89:c7
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FD:3A:DF:76:72:F8:27:79:58:2E:7F:14:AA:92:9F:44:70:4A:BE:0D
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9113435/6F0494C42FDE11ECAB5B1268C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9113435/6F0494C42FDE11ECAB5B1268C4F9AE02/_TrfdnL4J3lYLn8UqpKfRHBKvg0.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
9336
55573
137558
sbgp-ipAddrBlock: critical
IPv4:
27.113.240.0/21
45.113.244.0/22
103.53.200.0/22
121.200.208.0/21
202.90.48.0/21
IPv6:
2403:3600::/32
Signature Algorithm: sha256WithRSAEncryption
b6:a0:8f:87:40:f5:52:0a:68:cb:60:fe:b1:f4:e8:7a:6d:15:
42:10:8e:26:b4:67:02:42:4e:29:6b:91:07:0c:0b:12:df:d8:
44:f5:10:13:c8:4b:1d:09:2d:29:f7:ee:d0:c0:2d:b1:b4:ac:
a7:9c:1a:e2:2a:4d:62:11:2d:8e:a9:78:da:f2:16:35:7d:79:
93:f9:14:c5:94:c1:d0:1e:b5:56:45:59:03:eb:b6:da:21:a9:
a8:d5:29:5a:29:40:69:51:13:01:c9:e0:28:dd:de:14:ea:b7:
10:f5:95:d6:90:27:16:35:0e:e2:93:d1:45:f3:df:f2:c0:82:
8c:35:64:ad:0b:65:ab:b6:ce:c7:16:97:63:2a:23:7a:16:c8:
95:59:d2:f5:49:54:db:1a:53:27:cb:c1:b7:41:74:27:ce:73:
ba:b8:c1:11:d6:c1:bd:2a:7e:d6:b6:d6:36:76:90:a5:40:39:
37:51:7b:7a:4e:c2:6c:69:16:63:57:74:4b:df:3e:af:d5:43:
2b:d6:af:19:43:d6:3f:5f:ed:1b:b3:60:f0:52:3f:96:ec:ae:
10:a7:d8:46:47:37:0c:02:35:de:1a:0c:28:8c:b4:fe:43:5a:
ad:cf:e0:d9:84:2d:80:5f:35:8c:9d:20:39:c1:a6:54:7a:d4:
b8:64:46:b1
-----BEGIN CERTIFICATE-----
MIIGSjCCBTKgAwIBAgIDAb6AMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMDkyMDEyMjUxNloXDTI0MTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxMTM0MzUxMTAvBgNVBAUTKEZEM0FERjc2NzJGODI3Nzk1ODJFN0Yx
NEFBOTI5RjQ0NzA0QUJFMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCx61qXaZQHYJa4CzIlbzYs82mcInMIqcLdSbc+dhaRFirYJVz0gYtTpq4Bhwvx
XyLvKRrF57Jb5ISeN2UlPTkFm3NKksPy7hf09y5GQkVRO1Dq23poxue+12P3fk8Q
CUV/pdxBUqu+NWWVWor/yc12wul3HBbRK9bcUJ1uYwbIbW9gIzjra2bwQTvB0Hu2
xF0oJJnUAcUqo1L0xqguGw4QINaPAx3CPhZlPv730ewpPUx/yTt5wJnA2WpEXbIk
+fcY3/fpHy2UUTqFKumP2F0tAXsAk7BwhTvoQVRGhoXgIKpkhhafyiHTHSlQKAzH
bGyjYPQq1MG+pCjtGkGPzonHAgMBAAGjggM/MIIDOzAdBgNVHQ4EFgQU/TrfdnL4
J3lYLn8UqpKfRHBKvg0wHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTEzNDM1LzZGMDQ5NEM0MkZERTExRUNBQjVCMTI2OEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTExMzQzNS82RjA0OTRDNDJGREUxMUVDQUI1QjEyNjhDNEY5QUUwMi9fVHJmZG5M
NEozbFlMbjhVcXBLZlJIQkt2ZzAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIwYIKwYBBQUHAQgBAf8EFDAS
oBAwDgICJHgCAwDZFQIDAhlWMEYGCCsGAQUFBwEHAQH/BDcwNTAkBAIAATAeAwQD
G3HwAwQCLXH0AwQCZzXIAwQDecjQAwQDylowMA0EAgACMAcDBQAkAzYAMA0GCSqG
SIb3DQEBCwUAA4IBAQC2oI+HQPVSCmjLYP6x9Oh6bRVCEI4mtGcCQk4pa5EHDAsS
39hE9RATyEsdCS0p9+7QwC2xtKynnBriKk1iES2OqXja8hY1fXmT+RTFlMHQHrVW
RVkD67baIamo1SlaKUBpURMByeAo3d4U6rcQ9ZXWkCcWNQ7ik9FF89/ywIKMNWSt
C2Wrts7HFpdjKiN6FsiVWdL1SVTbGlMny8G3QXQnznO6uMER1sG9Kn7WttY2dpCl
QDk3UXt6TsJsaRZjV3RL3z6v1UMr1q8ZQ9Y/X+0bs2DwUj+W7K4Qp9hGRzcMAjXe
GgwojLT+Q1qtz+DZhC2AXzWMnSA5waZUetS4ZEax
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:43 2024 by rpki-client on console-ams.rpki-client.org