Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/p__qGOCaOaCqbzdaCoO1cI7CLYo.cer
File: p__qGOCaOaCqbzdaCoO1cI7CLYo.cer (raw, json)
Hash identifier: W72nfRtA48HPUFCCTy/8mLnvtjzSTHFOm3RAcR0ap/M=
Subject key identifier: A7:FF:EA:18:E0:9A:39:A0:AA:6F:37:5A:0A:83:B5:70:8E:C2:2D:8A
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 018ECD
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A9155A58/63FE33EABB2D11EA82F84669C4F9AE02/p__qGOCaOaCqbzdaCoO1cI7CLYo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A9155A58/63FE33EABB2D11EA82F84669C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 02 Mar 2023 02:46:33 +0000
Certificate not after: Wed 01 May 2024 00:00:00 +0000
Subordinate resources: AS: 10143
IP: 58.96.0.0/17
IP: 103.237.16.0/22
IP: 115.70.0.0/16
IP: 163.53.144.0/22
IP: 220.233.0.0/16
IP: 2406:3400::/32
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 102093 (0x18ecd)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Mar 2 02:46:33 2023 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=A9155A58/serialNumber=A7FFEA18E09A39A0AA6F375A0A83B5708EC22D8A
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e2:87:9f:0e:16:91:5c:43:3f:de:26:6f:95:f0:
cd:19:15:c1:89:4b:ed:97:51:67:fe:95:72:45:21:
5e:16:36:5e:5d:a1:85:60:ae:58:62:99:b5:b0:f3:
8b:7a:71:c4:58:24:c1:89:16:83:77:c5:b3:6c:f5:
46:da:84:63:cc:e5:5d:de:84:6b:b7:f2:b5:39:50:
74:93:c6:9a:25:cb:2a:3a:84:db:48:dd:cd:95:26:
c2:e8:26:66:66:08:75:94:69:cd:8c:52:6d:24:fc:
e3:01:0d:ac:4e:a5:90:cd:97:19:78:9f:5c:1f:f5:
ae:10:5c:8c:5b:73:b3:e6:64:23:13:ff:1a:26:4d:
df:c9:e2:7c:16:31:0f:95:75:b4:4a:ad:17:bd:59:
65:e4:a2:de:14:85:4b:fe:18:ad:c5:fd:58:38:6f:
a2:cc:a9:d4:03:65:d6:c0:a7:ed:dd:1e:89:ad:12:
76:ee:1a:de:e0:66:33:61:6f:23:0e:d4:b6:08:3d:
cd:af:1e:49:00:35:32:67:77:98:89:8a:1a:63:e7:
50:97:70:56:6a:73:b4:2f:dd:8d:0c:e5:f4:82:56:
85:eb:dc:67:8a:d4:c3:42:c2:c0:fb:65:21:bc:a1:
58:72:63:e9:40:6d:d9:08:a6:d6:94:a9:aa:bb:05:
be:6b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A7:FF:EA:18:E0:9A:39:A0:AA:6F:37:5A:0A:83:B5:70:8E:C2:2D:8A
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A9155A58/63FE33EABB2D11EA82F84669C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A9155A58/63FE33EABB2D11EA82F84669C4F9AE02/p__qGOCaOaCqbzdaCoO1cI7CLYo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10143
sbgp-ipAddrBlock: critical
IPv4:
58.96.0.0/17
103.237.16.0/22
115.70.0.0/16
163.53.144.0/22
220.233.0.0/16
IPv6:
2406:3400::/32
Signature Algorithm: sha256WithRSAEncryption
06:2c:d4:65:ef:1c:ae:05:ea:ac:24:4d:98:df:12:92:60:ec:
6e:d1:bc:9f:8f:a7:6a:12:60:70:50:4f:13:02:8a:e4:e9:56:
fc:41:c5:ea:38:d4:35:7b:79:7f:f0:c5:54:39:33:1d:05:9c:
a2:8a:76:d9:ce:d9:79:d2:35:6c:4d:9f:45:32:2b:d4:78:30:
25:01:4b:bb:e6:f5:f2:e3:1d:d7:9d:b4:ce:d0:39:b8:e1:ff:
33:c1:34:b0:8d:89:f4:bf:82:83:15:77:68:a6:8a:e1:dd:70:
6f:a3:90:3f:30:57:4a:be:04:89:22:df:cb:6e:09:5c:4e:09:
bb:e7:03:b6:20:cf:72:69:63:a0:64:cc:af:94:48:7d:dd:dc:
1f:a6:51:23:e5:8b:6e:be:4c:31:e7:31:7d:8d:72:c8:1b:92:
f5:39:c8:2b:6b:84:a2:37:6e:42:65:7b:7d:d7:57:cc:9c:15:
3d:80:c8:b7:1b:21:6f:47:04:74:23:51:d4:46:fd:45:dc:9e:
a7:92:8f:d2:b0:8d:5b:28:80:69:2b:0b:98:72:da:1e:3a:d5:
59:c2:d0:e5:74:33:d0:66:b7:6c:8c:ad:7e:ea:a9:9e:93:c0:
8b:92:94:b1:40:8b:17:2a:83:59:37:e5:e9:ff:5e:5c:84:0f:
12:b8:0f:dc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:44 2024 by rpki-client on console-ams.rpki-client.org