Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mk8Pe577zQLXZm1kG7YZbjHnNyU.cer
File: mk8Pe577zQLXZm1kG7YZbjHnNyU.cer (raw, json)
Hash identifier: RX5w2k2ZvrzTLDmeiniMSB5AQiRXA6DX0S7iWu6KQAg=
Subject key identifier: 9A:4F:0F:7B:9E:FB:CD:02:D7:66:6D:64:1B:B6:19:6E:31:E7:37:25
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 014CFD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91E428E/C3192FE8EA5A11E781483A3EC4F9AE02/mk8Pe577zQLXZm1kG7YZbjHnNyU.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91E428E/C3192FE8EA5A11E781483A3EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Mar 2022 17:52:19 +0000
Certificate not after: Sun 28 May 2023 00:00:00 +0000
Subordinate resources: AS: 135605
AS: 136747
IP: 103.86.44.0/22
IP: 116.204.168.0/22
IP: 2400:b8c0::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 85245 (0x14cfd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 31 17:52:19 2022 GMT
Not After : May 28 00:00:00 2023 GMT
Subject: CN=A91E428E/serialNumber=9A4F0F7B9EFBCD02D7666D641BB6196E31E73725
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:1d:ef:6c:92:7d:94:e1:a2:44:a3:4b:09:ab:
c3:2b:32:7e:1e:f0:21:f8:e3:fb:dd:b7:ae:33:5b:
45:1d:3c:1f:ae:b4:b9:72:eb:e0:3e:02:af:35:3f:
8d:b0:2a:dc:8b:56:10:72:b2:28:b9:d9:4d:52:d4:
98:05:3d:4c:bc:72:50:6b:de:3f:6e:dd:d5:a2:3f:
da:03:60:42:2d:3d:bd:c3:0c:3c:1c:cd:e3:fa:79:
e3:81:fc:5e:11:35:b7:e3:e3:fc:14:83:94:1a:49:
18:b7:0c:c0:b4:06:93:04:41:e5:a9:7a:26:d1:3e:
d5:2b:4f:af:e6:70:0d:66:12:8b:39:de:1e:dd:76:
8e:2b:0a:0a:b3:c0:d8:d0:15:07:aa:58:43:e4:55:
35:70:03:c0:20:21:23:a0:79:94:d6:40:33:3c:60:
01:19:14:21:23:e2:b1:53:0c:d6:2d:08:27:f1:38:
48:a5:9a:40:cb:19:58:e2:36:67:af:db:a8:ea:45:
4f:47:4b:c1:ef:52:1e:d3:87:d0:7f:02:ce:23:ee:
95:7e:60:f6:67:25:e0:df:3b:9f:1a:de:5b:0f:1f:
2d:5f:fd:de:c7:14:9b:ba:ff:ab:e8:32:1e:f7:6d:
41:54:0f:94:e2:a8:fd:1b:fb:5d:57:6a:c9:7a:89:
73:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9A:4F:0F:7B:9E:FB:CD:02:D7:66:6D:64:1B:B6:19:6E:31:E7:37:25
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91E428E/C3192FE8EA5A11E781483A3EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91E428E/C3192FE8EA5A11E781483A3EC4F9AE02/mk8Pe577zQLXZm1kG7YZbjHnNyU.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
135605
136747
sbgp-ipAddrBlock: critical
IPv4:
103.86.44.0/22
116.204.168.0/22
IPv6:
2400:b8c0::/32
Signature Algorithm: sha256WithRSAEncryption
52:bb:72:58:2b:1d:b8:3c:48:99:50:ad:f5:ef:71:63:85:e0:
0f:8c:98:f1:66:5d:c2:8e:db:21:06:af:c4:02:10:e9:a8:7e:
8f:0f:1b:0c:62:4f:cf:92:90:92:10:9b:2f:6b:a0:2a:a4:22:
03:e6:f8:83:4f:87:cb:9f:02:c2:6e:d9:9e:c4:5f:0d:54:ad:
25:26:74:aa:53:bb:38:45:70:79:3e:0d:7a:60:91:16:03:a2:
fa:2a:76:04:43:96:d6:96:5a:70:d5:cb:f6:9e:81:c0:d4:e1:
22:5b:5d:2a:c7:2d:95:18:30:bc:f0:2d:4f:58:65:7c:46:0e:
91:82:f5:f2:30:18:4f:30:49:dc:13:a6:bd:29:27:fa:c8:e0:
ce:58:4c:98:98:d7:a5:f6:1f:24:83:e1:e8:51:a4:24:ee:3e:
da:7e:68:f3:47:66:09:83:9a:a0:6f:3a:84:23:81:a6:a3:28:
9b:56:82:19:d8:59:3a:00:6d:72:32:85:a6:fa:4e:b4:15:f7:
8f:dd:90:99:af:41:62:8a:de:cd:42:4b:27:72:f9:41:b2:b6:
04:a5:0e:50:04:a8:bf:4c:23:3a:ef:8b:91:7a:35:41:99:4b:
ea:11:6f:a2:59:5d:6f:d4:16:78:30:83:12:c6:93:26:aa:cd:
66:e3:1f:ff
-----BEGIN CERTIFICATE-----
MIIGNDCCBRygAwIBAgIDAUz9MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIyMDMzMTE3NTIxOVoXDTIzMDUyODAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRTQyOEUxMTAvBgNVBAUTKDlBNEYwRjdCOUVGQkNEMDJENzY2NkQ2
NDFCQjYxOTZFMzFFNzM3MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQCtHe9skn2U4aJEo0sJq8MrMn4e8CH44/vdt64zW0UdPB+utLly6+A+Aq81P42w
KtyLVhBysii52U1S1JgFPUy8clBr3j9u3dWiP9oDYEItPb3DDDwczeP6eeOB/F4R
Nbfj4/wUg5QaSRi3DMC0BpMEQeWpeibRPtUrT6/mcA1mEos53h7ddo4rCgqzwNjQ
FQeqWEPkVTVwA8AgISOgeZTWQDM8YAEZFCEj4rFTDNYtCCfxOEilmkDLGVjiNmev
26jqRU9HS8HvUh7Th9B/As4j7pV+YPZnJeDfO58a3lsPHy1f/d7HFJu6/6voMh73
bUFUD5TiqP0b+11Xasl6iXPlAgMBAAGjggMpMIIDJTAdBgNVHQ4EFgQUmk8Pe577
zQLXZm1kG7YZbjHnNyUwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUU0MjhFL0MzMTkyRkU4RUE1QTExRTc4MTQ4M0EzRUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFFNDI4RS9DMzE5MkZFOEVBNUExMUU3ODE0ODNBM0VDNEY5QUUwMi9tazhQZTU3
N3pRTFhabTFrRzdZWmJqSG5OeVUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQgBAf8EEDAO
oAwwCgIDAhG1AgMCFiswNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwDBAJnViwD
BAJ0zKgwDQQCAAIwBwMFACQAuMAwDQYJKoZIhvcNAQELBQADggEBAFK7clgrHbg8
SJlQrfXvcWOF4A+MmPFmXcKO2yEGr8QCEOmofo8PGwxiT8+SkJIQmy9roCqkIgPm
+INPh8ufAsJu2Z7EXw1UrSUmdKpTuzhFcHk+DXpgkRYDovoqdgRDltaWWnDVy/ae
gcDU4SJbXSrHLZUYMLzwLU9YZXxGDpGC9fIwGE8wSdwTpr0pJ/rI4M5YTJiY16X2
HySD4ehRpCTuPtp+aPNHZgmDmqBvOoQjgaajKJtWghnYWToAbXIyhab6TrQV94/d
kJmvQWKK3s1CSydy+UGytgSlDlAEqL9MIzrvi5F6NUGZS+oRb6JZXW/UFngwgxLG
kyaqzWbjH/8=
-----END CERTIFICATE-----
Generated at Wed Jul 19 23:23:15 2023 by rpki-client on console-ams.rpki-client.org