Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/i4aPIm_ndHl_dqKbWE7OqN6af6M.cer
File: i4aPIm_ndHl_dqKbWE7OqN6af6M.cer (raw, json)
Hash identifier: 7YYAemgG2T7GzNhEsc9j0t0agF/H/sNcFMvefk4AJSQ=
Subject key identifier: 8B:86:8F:22:6F:E7:74:79:7F:76:A2:9B:58:4E:CE:A8:DE:9A:7F:A3
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01CC07
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913E8CB/5703919C0B8511EA86A52A53C4F9AE02/i4aPIm_ndHl_dqKbWE7OqN6af6M.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913E8CB/5703919C0B8511EA86A52A53C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 21 Nov 2023 14:00:25 +0000
Certificate not after: Fri 01 Mar 2024 00:00:00 +0000
Subordinate resources: IP: 2402:1cc0::/32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 117767 (0x1cc07)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 21 14:00:25 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=A913E8CB/serialNumber=8B868F226FE774797F76A29B584ECEA8DE9A7FA3
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:bc:7e:b3:e7:69:70:76:c5:ea:5e:df:3b:cb:1b:
5a:05:2a:f6:64:d7:28:7b:ca:e4:fb:e7:dc:93:6e:
d6:4e:5e:42:d9:0f:81:34:a6:0c:08:37:34:e4:04:
16:d8:68:40:eb:f7:60:a5:3a:98:53:b9:eb:fa:8b:
3a:52:e3:d4:14:c2:db:07:b8:27:cf:d3:5d:b5:21:
bd:17:62:fd:50:ee:89:0b:10:a9:f6:02:17:a6:6f:
14:a2:f2:ec:df:17:96:cf:26:73:7f:43:9d:35:00:
fb:13:74:c9:3c:d7:f5:aa:47:51:f0:92:a1:36:18:
21:ec:2f:64:3a:81:cb:ac:ee:dc:bc:e9:a4:e3:52:
28:bf:4e:da:db:af:13:f1:c1:b2:63:2e:f5:a9:b0:
48:73:6f:c2:0a:90:2c:03:00:4c:cb:81:1f:09:9a:
23:a5:13:d4:de:a5:9a:3c:19:2e:26:a9:08:8c:53:
23:1c:b2:40:8f:a5:b8:46:fc:9f:de:c8:9a:97:0f:
9f:6b:c3:c1:01:63:f3:8b:09:db:52:e0:55:ed:90:
09:38:4d:d9:ae:dd:4b:26:e6:5a:7e:82:03:17:c7:
f3:ec:44:72:b2:06:59:c9:37:37:eb:53:52:a9:e3:
30:0f:06:f6:ce:ab:67:d0:5e:ed:3d:af:e6:f8:b2:
4a:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8B:86:8F:22:6F:E7:74:79:7F:76:A2:9B:58:4E:CE:A8:DE:9A:7F:A3
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913E8CB/5703919C0B8511EA86A52A53C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913E8CB/5703919C0B8511EA86A52A53C4F9AE02/i4aPIm_ndHl_dqKbWE7OqN6af6M.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv6:
2402:1cc0::/32
Signature Algorithm: sha256WithRSAEncryption
7e:7c:e8:18:26:7f:61:6a:0d:8c:2b:9b:ff:d9:e1:44:1b:50:
83:f6:3a:36:08:b9:9b:82:0a:57:5c:08:d2:11:c3:ff:ba:62:
df:63:ce:61:4c:ae:6f:9b:e0:89:3d:55:58:5b:35:29:71:63:
48:2a:e7:3c:6a:2c:6c:05:90:d3:2a:49:2a:1f:9d:5a:f8:b8:
9c:67:8b:97:e9:87:66:64:66:6a:64:2b:25:1e:2d:29:5f:a9:
81:fb:fa:d6:6d:cc:5e:9a:93:0a:1a:bb:67:b6:77:04:f1:d0:
a1:db:62:bc:ee:4d:bd:7f:07:23:4c:f3:84:8c:55:71:f6:f3:
f3:9b:53:34:5b:61:81:0a:8a:03:55:32:0b:86:46:75:a9:c1:
ec:d2:d7:eb:81:c5:20:e6:5e:95:89:61:4c:4a:d2:f0:52:b6:
4b:7b:4d:69:04:b7:36:4c:e2:1d:c6:75:53:09:3d:2b:28:32:
ec:3d:2a:bf:36:0f:49:7f:e7:8f:d1:0f:f7:67:c8:cc:92:12:
25:07:3d:1a:9e:29:e9:a4:c4:f6:a3:13:73:cc:38:66:10:40:
fd:7b:ae:d3:47:42:cd:c1:6c:22:41:2f:1f:a2:2b:6a:f4:57:
ba:da:01:3f:b5:86:4b:6e:8a:45:e6:ad:89:97:b9:60:0a:5e:
b2:37:78:76
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Dec 19 15:01:37 2023 by rpki-client on console-ams.rpki-client.org