Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pFoDXWVftHWjT0N_nAqlMhHrs3Y.cer
File: pFoDXWVftHWjT0N_nAqlMhHrs3Y.cer (raw, json)
Hash identifier: ME0mlJ8OKEtF07AtPs9pt8XgS7pxhvDo+TKvP7fs4GA=
Subject key identifier: A4:5A:03:5D:65:5F:B4:75:A3:4F:43:7F:9C:0A:A5:32:11:EB:B3:76
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01DB8C
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9168250/04E7193E422011EABCF54214C4F9AE02/pFoDXWVftHWjT0N_nAqlMhHrs3Y.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9168250/04E7193E422011EABCF54214C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 30 Jan 2024 19:23:51 +0000
Certificate not after: Sat 01 Jun 2024 00:00:00 +0000
Subordinate resources: AS: 24459
IP: 202.37.129.0/24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121740 (0x1db8c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 30 19:23:51 2024 GMT
Not After : Jun 1 00:00:00 2024 GMT
Subject: CN=A9168250/serialNumber=A45A035D655FB475A34F437F9C0AA53211EBB376
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:8a:f3:b9:3d:34:64:46:69:a6:6d:1a:30:58:
4f:cd:60:e2:dd:09:b8:26:5d:a8:c5:e5:db:be:ac:
7c:13:61:9c:96:67:7a:3e:92:31:11:f7:7b:ac:8a:
d3:0e:53:f0:45:92:a3:48:ae:ff:c6:52:39:92:f2:
77:e9:5e:27:cc:e1:df:3f:ef:08:a4:1f:75:e8:ac:
7d:f0:b1:5f:1e:07:74:b8:79:7a:39:1a:b1:cd:46:
24:c1:cf:2f:92:b3:d3:2c:55:d4:9c:80:85:f7:15:
0c:b1:a1:d8:48:2c:de:53:d9:a3:c5:25:74:fe:3e:
c8:2b:eb:b2:65:db:29:82:f3:56:ca:e9:6e:4f:34:
21:f3:3f:bb:89:32:54:25:30:6c:b9:4e:de:25:fa:
4b:ed:59:6a:86:db:08:4f:28:19:4e:99:08:5a:00:
dc:a2:5c:83:55:f2:cd:22:ab:d9:32:46:1b:63:a1:
3e:52:28:5c:ed:86:fc:e1:da:b5:0d:14:9e:97:4a:
f2:ef:99:ec:45:d5:b4:b0:7e:11:9b:a0:63:26:51:
10:d3:bc:5a:73:53:14:c7:e6:b7:de:5f:f6:a0:10:
53:c7:c5:aa:68:ea:be:a8:e1:48:62:d0:77:a8:96:
e7:d3:ca:70:6a:62:f4:48:01:d9:6e:68:18:ed:27:
85:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A4:5A:03:5D:65:5F:B4:75:A3:4F:43:7F:9C:0A:A5:32:11:EB:B3:76
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9168250/04E7193E422011EABCF54214C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9168250/04E7193E422011EABCF54214C4F9AE02/pFoDXWVftHWjT0N_nAqlMhHrs3Y.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24459
sbgp-ipAddrBlock: critical
IPv4:
202.37.129.0/24
Signature Algorithm: sha256WithRSAEncryption
bc:a6:6c:ed:d0:19:4d:fe:95:25:0d:07:47:37:ff:e9:e1:a4:
28:11:26:db:a8:cb:8e:c7:5a:cf:45:6a:9f:5f:4c:62:32:00:
27:be:86:09:df:59:75:36:89:84:ae:df:a9:3d:23:34:f9:84:
ec:e1:2c:39:7e:80:bc:43:4c:c9:77:77:54:d6:5d:9b:76:97:
23:8c:33:66:b0:89:b4:e6:6b:d8:26:47:5d:61:b5:94:b3:aa:
99:fc:c6:01:c3:a4:c3:a3:2d:e8:a1:f0:04:dc:5e:6f:45:ec:
a0:98:0b:b0:16:64:54:3f:59:6a:d5:ea:7d:d9:dc:4a:8f:aa:
f0:d1:2e:44:ad:f0:c9:fc:b4:58:21:3e:11:c3:52:94:28:e1:
36:50:4b:5e:27:6d:c3:44:10:34:10:48:a9:85:a5:c3:26:71:
0d:98:f1:9f:c5:20:6c:a8:bd:0d:07:e1:20:5c:b9:75:90:ac:
fc:8f:69:41:d4:49:2b:dc:b3:d9:d8:fb:46:6b:6c:78:1d:bc:
07:c3:6f:36:6b:7d:f9:f7:7e:9f:fb:43:d4:49:7d:a9:61:8d:
75:0e:1f:9d:63:dc:87:9c:8f:f4:5d:b6:1b:4b:d4:24:ad:81:
08:58:a4:84:71:f1:a5:2f:72:db:d1:09:1f:6b:42:d5:14:f7:
6f:8b:61:58
-----BEGIN CERTIFICATE-----
MIIGGTCCBQGgAwIBAgIDAduMMA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MDEzMDE5MjM1MVoXDTI0MDYwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxNjgyNTAxMTAvBgNVBAUTKEE0NUEwMzVENjU1RkI0NzVBMzRGNDM3
RjlDMEFBNTMyMTFFQkIzNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDFivO5PTRkRmmmbRowWE/NYOLdCbgmXajF5du+rHwTYZyWZ3o+kjER93usitMO
U/BFkqNIrv/GUjmS8nfpXifM4d8/7wikH3XorH3wsV8eB3S4eXo5GrHNRiTBzy+S
s9MsVdScgIX3FQyxodhILN5T2aPFJXT+Psgr67Jl2ymC81bK6W5PNCHzP7uJMlQl
MGy5Tt4l+kvtWWqG2whPKBlOmQhaANyiXINV8s0iq9kyRhtjoT5SKFzthvzh2rUN
FJ6XSvLvmexF1bSwfhGboGMmURDTvFpzUxTH5rfeX/agEFPHxapo6r6o4Uhi0Heo
lufTynBqYvRIAdluaBjtJ4UjAgMBAAGjggMOMIIDCjAdBgNVHQ4EFgQUpFoDXWVf
tHWjT0N/nAqlMhHrs3YwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MTY4MjUwLzA0RTcxOTNFNDIyMDExRUFCQ0Y1NDIxNEM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTE2ODI1MC8wNEU3MTkzRTQyMjAxMUVBQkNGNTQyMTRDNEY5QUUwMi9wRm9EWFdW
ZnRIV2pUME5fbkFxbE1oSHJzM1kubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICX4swHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADKJYEwDQYJKoZI
hvcNAQELBQADggEBALymbO3QGU3+lSUNB0c3/+nhpCgRJtuoy47HWs9Fap9fTGIy
ACe+hgnfWXU2iYSu36k9IzT5hOzhLDl+gLxDTMl3d1TWXZt2lyOMM2awibTma9gm
R11htZSzqpn8xgHDpMOjLeih8ATcXm9F7KCYC7AWZFQ/WWrV6n3Z3EqPqvDRLkSt
8Mn8tFghPhHDUpQo4TZQS14nbcNEEDQQSKmFpcMmcQ2Y8Z/FIGyovQ0H4SBcuXWQ
rPyPaUHUSSvcs9nY+0ZrbHgdvAfDbzZrffn3fp/7Q9RJfalhjXUOH51j3Iecj/Rd
thtL1CStgQhYpIRx8aUvctvRCR9rQtUU92+LYVg=
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:44 2024 by rpki-client on console-ams.rpki-client.org