Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ePNA8YcbcGJ-Dsk-l9fQ2AwK0CE.cer
File: ePNA8YcbcGJ-Dsk-l9fQ2AwK0CE.cer (raw, json)
Hash identifier: zQMZfz0UZuPJQKQAiJ+LVdpeuNuhxGOGGASBgl26Rbg=
Subject key identifier: 78:F3:40:F1:87:1B:70:62:7E:0E:C9:3E:97:D7:D0:D8:0C:0A:D0:21
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CE7A
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9111DD6/3AD2F7F2D99111EB8A17D81BC4F9AE02/ePNA8YcbcGJ-Dsk-l9fQ2AwK0CE.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9111DD6/3AD2F7F2D99111EB8A17D81BC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 01 Dec 2023 01:28:43 +0000
Certificate not after: Sat 30 Mar 2024 00:00:00 +0000
Subordinate resources: AS: 133458
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 118394 (0x1ce7a)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Dec 1 01:28:43 2023 GMT
Not After : Mar 30 00:00:00 2024 GMT
Subject: CN=A9111DD6/serialNumber=78F340F1871B70627E0EC93E97D7D0D80C0AD021
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cb:82:18:9d:fe:d3:be:9c:ce:7e:2e:e1:d5:19:
c4:de:9b:b4:bf:79:dc:67:8b:19:be:b6:90:19:a4:
49:d4:72:c2:0a:60:d8:3a:5c:0e:fe:15:48:2b:30:
b1:c8:52:ea:89:48:36:6f:27:fd:2c:39:2d:88:1a:
5a:06:3a:c3:b6:fa:66:30:1b:0b:d7:b4:d7:77:6b:
84:79:c0:9f:02:33:38:9c:80:23:fb:df:78:c9:b9:
7e:06:3a:31:c3:7a:2d:37:dc:5f:55:35:70:f2:0d:
e5:df:6b:4f:8c:09:06:7f:50:3a:32:6b:81:15:94:
f9:b6:68:95:62:5e:9d:02:1a:0c:28:06:6b:23:9c:
70:24:e6:43:20:81:f5:6c:cb:76:90:dc:7e:b8:a9:
ae:fd:e9:17:10:0e:58:07:d2:0c:cc:fb:28:a9:f4:
e7:d4:37:1d:45:73:e7:d9:43:ab:b4:c5:6d:62:81:
8b:0b:9a:db:8b:17:5e:01:a1:77:c2:c6:04:ef:f2:
9d:8e:d9:7f:ae:01:0e:ef:07:d2:d0:2f:b2:0a:bd:
48:b3:a8:5a:bf:73:93:b0:cd:3a:dd:3f:f1:e3:fa:
57:01:f1:b5:f1:6a:15:10:ca:06:ea:55:76:21:f2:
98:0d:bc:f4:bf:79:fe:54:99:a2:02:d6:3f:27:e5:
63:df
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
78:F3:40:F1:87:1B:70:62:7E:0E:C9:3E:97:D7:D0:D8:0C:0A:D0:21
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9111DD6/3AD2F7F2D99111EB8A17D81BC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9111DD6/3AD2F7F2D99111EB8A17D81BC4F9AE02/ePNA8YcbcGJ-Dsk-l9fQ2AwK0CE.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
133458
Signature Algorithm: sha256WithRSAEncryption
9a:c2:dc:64:a8:74:a1:05:c3:b1:15:2e:85:d3:b1:b3:3c:b8:
77:04:86:76:b3:30:45:ff:da:7d:74:30:65:39:a1:b4:e5:32:
51:ab:25:74:25:6a:64:7d:9d:ce:83:79:1c:38:27:ab:61:56:
c1:72:57:49:ec:88:d7:70:89:84:4d:6e:ee:23:31:fe:94:21:
65:c4:b0:8e:7e:5c:c4:ca:25:4c:2d:9b:61:cd:1f:40:6b:eb:
6a:49:5a:f8:0e:9f:14:5e:f0:47:23:15:da:6e:a8:2c:87:d2:
ca:b5:2e:d6:ac:25:48:91:23:35:ce:4a:f6:78:d0:2f:8d:b9:
ea:09:40:fa:b9:1e:16:8c:52:4a:83:4b:9a:1d:59:a9:49:11:
99:0e:62:bc:60:2f:2e:0b:b6:bd:94:38:bd:6b:fa:68:fc:30:
de:28:b6:42:6e:cc:35:49:cd:95:3f:f8:51:2d:58:33:11:b3:
38:2f:e1:d1:5e:d7:95:41:cc:e5:ee:68:74:40:4d:9d:c8:7c:
c9:0c:b8:5b:cb:1a:f5:5c:6c:f0:b4:c5:56:37:5e:1b:a8:4d:
f0:e6:01:cd:b8:33:99:f2:e5:eb:e5:9b:2e:d7:9a:a5:22:1a:
cb:03:dc:30:a5:48:f2:ca:ba:61:e2:a3:8f:93:a4:db:3f:7f:
5b:26:e4:11
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:54 2024 by rpki-client on console-fra.rpki-client.org