Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/giYmVpLd75Ic2YEnX620N_Cwdro.cer
File: giYmVpLd75Ic2YEnX620N_Cwdro.cer (raw, json)
Hash identifier: AYEtQZxH2s5CcyfgH9MYOLwm1VNDG8Jl6cLPKIUtJgA=
Subject key identifier: 82:26:26:56:92:DD:EF:92:1C:D9:81:27:5F:AD:B4:37:F0:B0:76:BA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 014FAB
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91401B1/7BCD48581DAB11E2A4EEA1A908B02CD2/giYmVpLd75Ic2YEnX620N_Cwdro.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91401B1/7BCD48581DAB11E2A4EEA1A908B02CD2/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 13 Apr 2022 23:52:02 +0000
Certificate not after: Mon 31 Oct 2022 00:00:00 +0000
Subordinate resources: IP: 2404:c500::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85931 (0x14fab)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Apr 13 23:52:02 2022 GMT
Not After : Oct 31 00:00:00 2022 GMT
Subject: CN=A91401B1/serialNumber=8226265692DDEF921CD981275FADB437F0B076BA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:85:97:a9:12:e4:87:75:dd:52:41:56:bc:8f:
87:8a:85:71:b7:50:e3:47:0c:0a:6b:f5:1b:6a:38:
1c:34:af:f1:dc:f2:f0:e5:f1:19:d9:9c:f0:0a:61:
70:7a:3b:37:a5:ad:a8:bb:6e:ae:93:d6:63:6f:16:
cf:2e:5b:b7:15:d0:dc:9c:bb:02:e4:6e:59:d5:7c:
39:62:d3:dc:cf:ae:96:ae:93:54:49:2c:37:d4:b3:
45:aa:72:80:a1:d5:35:7f:9e:f5:95:ba:2a:50:71:
7f:0d:4e:88:b9:e6:69:4f:a8:7a:be:f0:f7:61:52:
33:ca:42:36:51:4b:b6:02:11:0d:77:e0:ed:83:86:
eb:43:a7:5a:2c:86:b0:52:d1:14:2b:ac:e8:9d:56:
fa:8e:52:7c:b0:67:d7:0e:2f:20:91:44:0e:d0:24:
1a:09:04:19:7b:9f:59:dc:53:d2:e2:92:6f:f1:9f:
8f:b3:7d:0f:99:65:2d:ba:ef:3b:93:37:0d:a2:a7:
ba:ed:87:3e:f7:34:3a:03:8a:5a:c5:58:8c:55:e4:
a3:f7:ba:a7:d2:35:c3:92:b2:9a:66:f0:00:84:50:
65:63:e1:6c:9d:b8:91:fc:d9:ce:c1:97:35:32:5b:
ef:f0:96:c9:03:f0:d6:15:a0:35:35:ee:b7:c7:e3:
49:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
82:26:26:56:92:DD:EF:92:1C:D9:81:27:5F:AD:B4:37:F0:B0:76:BA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91401B1/7BCD48581DAB11E2A4EEA1A908B02CD2/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91401B1/7BCD48581DAB11E2A4EEA1A908B02CD2/giYmVpLd75Ic2YEnX620N_Cwdro.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2404:c500::/32
Signature Algorithm: sha256WithRSAEncryption
2f:35:c5:49:5e:8a:ec:41:c6:eb:ac:25:d0:99:c4:cb:aa:e3:
1b:e1:4d:de:29:3f:77:c6:ea:c7:99:84:aa:28:d6:3c:1a:bf:
70:82:bc:8a:a7:47:28:ee:0a:e1:03:a0:7d:7c:12:22:e9:22:
71:b4:f2:fe:76:32:3e:06:2e:66:f4:ca:87:33:68:f0:47:b0:
29:94:4f:d1:f2:bb:c2:68:4d:3f:9b:ba:69:43:64:a2:45:c7:
57:aa:a6:e6:31:88:69:1d:2d:f8:d0:19:ea:72:81:74:cb:3b:
ef:1a:5a:46:67:de:9d:b4:86:6e:6a:45:4c:5a:ed:f4:d8:73:
4a:10:cb:19:83:2f:69:f3:5b:e5:17:38:5a:b3:52:1e:ce:28:
42:52:0f:61:f4:c1:d9:18:93:ad:3f:2d:66:e3:70:08:43:a6:
42:31:6d:98:38:18:f1:ab:e2:01:70:2c:40:80:c8:03:fb:a2:
95:0d:d2:bf:61:b4:ce:1c:c0:05:5b:a4:b0:8f:53:06:36:8b:
0e:fc:a5:61:e5:13:9a:ab:a4:7f:fc:78:72:a5:84:69:c6:70:
3e:a5:2b:6d:71:07:ab:95:dc:da:4b:ca:6c:ba:ed:96:e3:fd:
1f:cc:d5:1b:6a:ec:66:94:59:d1:2f:6c:62:3e:46:13:6d:13:
fa:af:cb:18
-----BEGIN CERTIFICATE-----
MIIF/zCCBOegAwIBAgIDAU+rMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIyMDQxMzIzNTIwMloXDTIyMTAzMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNDAxQjExMTAvBgNVBAUTKDgyMjYyNjU2OTJEREVGOTIxQ0Q5ODEy
NzVGQURCNDM3RjBCMDc2QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDahZepEuSHdd1SQVa8j4eKhXG3UONHDApr9RtqOBw0r/Hc8vDl8RnZnPAKYXB6
Ozelrai7bq6T1mNvFs8uW7cV0NycuwLkblnVfDli09zPrpauk1RJLDfUs0WqcoCh
1TV/nvWVuipQcX8NToi55mlPqHq+8PdhUjPKQjZRS7YCEQ134O2DhutDp1oshrBS
0RQrrOidVvqOUnywZ9cOLyCRRA7QJBoJBBl7n1ncU9Likm/xn4+zfQ+ZZS267zuT
Nw2ip7rthz73NDoDilrFWIxV5KP3uqfSNcOSsppm8ACEUGVj4WyduJH82c7BlzUy
W+/wlskD8NYVoDU17rfH40lZAgMBAAGjggL0MIIC8DAdBgNVHQ4EFgQUgiYmVpLd
75Ic2YEnX620N/CwdrowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTQwMUIxLzdCQ0Q0ODU4MURBQjExRTJBNEVFQTFBOTA4QjAyQ0QyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE0MDFCMS83QkNENDg1ODFEQUIxMUUyQTRFRUExQTkwOEIwMkNEMi9naVltVnBM
ZDc1SWMyWUVuWDYyME5fQ3dkcm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwIAYIKwYBBQUHAQcBAf8EETAP
MA0EAgACMAcDBQAkBMUAMA0GCSqGSIb3DQEBCwUAA4IBAQAvNcVJXorsQcbrrCXQ
mcTLquMb4U3eKT93xurHmYSqKNY8Gr9wgryKp0co7grhA6B9fBIi6SJxtPL+djI+
Bi5m9MqHM2jwR7AplE/R8rvCaE0/m7ppQ2SiRcdXqqbmMYhpHS340BnqcoF0yzvv
GlpGZ96dtIZuakVMWu302HNKEMsZgy9p81vlFzhas1IezihCUg9h9MHZGJOtPy1m
43AIQ6ZCMW2YOBjxq+IBcCxAgMgD+6KVDdK/YbTOHMAFW6Swj1MGNosO/KVh5ROa
q6R//HhypYRpxnA+pSttcQerldzaS8psuu2W4/0fzNUbauxmlFnRL2xiPkYTbRP6
r8sY
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:17 2023 by rpki-client on console-fra.rpki-client.org