Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/_zkeMa_T_Onoby5Fg0xBsK3cb-k.cer
File: _zkeMa_T_Onoby5Fg0xBsK3cb-k.cer (raw, json)
Hash identifier: m+cRsasaJPNaBnJda0Px1oQzs3q1jioCAMR54lBGol8=
Subject key identifier: FF:39:1E:31:AF:D3:FC:E9:E8:6F:2E:45:83:4C:41:B0:AD:DC:6F:E9
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 018738
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9161FE1/99FD8AE019BE11EC88E6281EC4F9AE02/_zkeMa_T_Onoby5Fg0xBsK3cb-k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9161FE1/99FD8AE019BE11EC88E6281EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 25 Jan 2023 15:45:21 +0000
Certificate not after: Wed 31 Jan 2024 00:00:00 +0000
Subordinate resources: AS: 134711
IP: 220.158.188.0/22
IP: 2001:df6:8400::/48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 100152 (0x18738)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 25 15:45:21 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=A9161FE1/serialNumber=FF391E31AFD3FCE9E86F2E45834C41B0ADDC6FE9
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:da:c9:d2:32:c9:e1:25:99:a4:0c:84:7e:c4:
5b:b3:5d:6a:ff:40:00:26:c8:6c:3c:52:08:f6:c6:
3e:ab:00:3a:b1:ff:8c:18:11:3b:c3:ac:d6:a0:21:
4c:70:f1:81:84:b4:3c:4a:bc:a9:2e:57:b2:3b:6d:
e4:ab:39:cc:2c:1a:3a:d1:f6:6e:2c:5b:19:e7:60:
61:d5:48:b4:15:fe:bf:85:fe:72:36:57:a6:06:58:
1c:89:32:7d:12:a5:a7:98:1c:b4:8e:24:92:90:60:
2d:78:4f:46:f0:9e:ef:4d:9f:a8:ba:69:f0:8b:54:
3b:cc:e7:18:3b:3e:38:f9:de:c2:1f:de:e6:ae:7f:
cc:5b:48:35:8f:c2:00:3d:73:77:65:7a:bc:64:dc:
fd:3c:cc:80:b7:fb:c1:b5:64:36:4b:28:ee:fc:88:
35:58:6a:86:3a:76:3b:9e:39:61:6b:ff:16:c9:2e:
63:d4:69:89:aa:34:4d:f2:e6:ba:07:d6:23:9b:7d:
5a:05:37:36:da:9f:5b:d4:64:6d:8e:f3:68:4c:e7:
46:7a:de:be:68:13:db:c3:03:27:45:cd:3c:44:23:
df:75:84:49:5a:cf:42:8e:9a:a7:fe:f5:dd:80:21:
53:e9:e3:6c:2e:42:56:ad:26:28:40:3e:41:35:07:
b3:93
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
FF:39:1E:31:AF:D3:FC:E9:E8:6F:2E:45:83:4C:41:B0:AD:DC:6F:E9
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9161FE1/99FD8AE019BE11EC88E6281EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9161FE1/99FD8AE019BE11EC88E6281EC4F9AE02/_zkeMa_T_Onoby5Fg0xBsK3cb-k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
134711
sbgp-ipAddrBlock: critical
IPv4:
220.158.188.0/22
IPv6:
2001:df6:8400::/48
Signature Algorithm: sha256WithRSAEncryption
5d:c2:6e:4d:10:90:af:c0:68:83:f6:73:37:6d:a1:6c:6d:e2:
22:ff:25:16:fb:e1:96:e8:e6:95:4f:88:92:59:d9:cd:26:aa:
a9:0f:72:95:d1:c0:b3:d5:01:b3:8f:e5:50:c9:15:2c:7f:3f:
76:69:86:68:df:ee:54:01:6e:40:6a:35:31:88:f6:86:fa:db:
a5:0f:92:f6:f1:4f:58:c3:4a:66:3e:eb:37:39:3d:ce:12:b4:
8f:a4:52:34:f0:31:5a:1c:d8:7f:6b:7d:29:90:32:3a:7c:5f:
41:e6:6b:71:64:6c:5d:1a:f6:35:d8:2d:63:ac:3c:2a:36:ff:
f7:ad:07:0d:24:10:83:55:80:97:ad:b7:df:d1:7f:7e:73:26:
70:87:57:8b:c6:3a:23:1f:e9:ae:f7:16:1a:b0:c6:fb:37:28:
e4:8e:2e:c2:ca:1a:5f:60:87:ae:50:06:ee:f9:20:4a:d4:dd:
c2:e8:07:d8:32:e7:cc:4c:40:eb:31:d9:3e:21:d8:b3:f7:f6:
cc:68:86:21:0e:d2:8c:f4:c8:1f:3a:e8:c3:b0:39:83:8b:ea:
e8:c9:04:56:2d:16:22:18:ec:43:79:49:22:fc:12:19:5e:40:
8e:e9:4f:b6:10:1a:8b:3e:1d:a3:2c:84:b1:5b:9e:44:97:fb:
3d:33:e9:3d
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:54 2024 by rpki-client on console-fra.rpki-client.org