Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/q3AvtFlsCHJ4jrAYWMum-L5MJ5k.cer
File: q3AvtFlsCHJ4jrAYWMum-L5MJ5k.cer (raw, json)
Hash identifier: rnuyOUFnfIFHU6AfX8Mpg+0Fd8ys/QvxvGpkY5sj+4g=
Subject key identifier: AB:70:2F:B4:59:6C:08:72:78:8E:B0:18:58:CB:A6:F8:BE:4C:27:99
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C8BE
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91FBCFD/F4860492726911ED90BB3359C4F9AE02/q3AvtFlsCHJ4jrAYWMum-L5MJ5k.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91FBCFD/F4860492726911ED90BB3359C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Fri 03 Nov 2023 02:18:56 +0000
Certificate not after: Fri 01 Mar 2024 00:00:00 +0000
Subordinate resources: AS: 150339
IP: 103.16.162.0/23
IP: 2400:b2a0::/32
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 116926 (0x1c8be)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Nov 3 02:18:56 2023 GMT
Not After : Mar 1 00:00:00 2024 GMT
Subject: CN=A91FBCFD/serialNumber=AB702FB4596C0872788EB01858CBA6F8BE4C2799
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c1:0a:f2:72:65:7d:aa:08:c7:bb:81:ab:a2:2a:
7a:c4:28:c4:53:dd:ea:5c:1c:50:39:c3:4f:78:36:
19:3a:af:33:da:c3:32:98:66:8b:be:4d:ab:75:8d:
cf:a5:69:bf:9d:8d:59:d3:8d:79:c7:29:d4:d1:cc:
96:34:a9:78:c5:23:70:28:27:28:a8:93:ff:62:8d:
1d:01:26:fd:ba:87:ca:df:0f:99:85:f5:20:b7:de:
95:4d:17:63:d1:e8:a8:b2:19:ff:ff:02:85:b9:07:
c1:bf:65:51:cd:4e:73:0d:d7:be:dd:5d:5d:f4:85:
d7:43:0b:6f:d9:c8:63:1f:26:8f:11:19:58:dc:3b:
50:8f:ff:96:d9:0c:a0:67:58:d6:b3:6a:58:e2:d0:
27:03:9b:bc:81:9e:93:bc:67:4e:62:f0:9a:d2:bd:
82:fb:fa:05:1d:52:a1:65:a8:d1:19:28:9a:31:ad:
0d:64:9a:95:71:3d:8d:b2:79:2d:4f:97:71:30:5a:
3a:79:9f:9e:65:04:36:4a:d5:a6:2d:67:90:b4:f2:
97:3c:8a:0d:43:87:6b:ec:7e:df:d8:62:de:0e:05:
d3:a2:3d:91:c7:2c:51:dc:97:c4:08:e5:26:76:be:
ce:cf:62:60:63:53:34:92:5b:a6:ac:84:1a:74:79:
a2:e9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AB:70:2F:B4:59:6C:08:72:78:8E:B0:18:58:CB:A6:F8:BE:4C:27:99
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91FBCFD/F4860492726911ED90BB3359C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91FBCFD/F4860492726911ED90BB3359C4F9AE02/q3AvtFlsCHJ4jrAYWMum-L5MJ5k.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
150339
sbgp-ipAddrBlock: critical
IPv4:
103.16.162.0/23
IPv6:
2400:b2a0::/32
Signature Algorithm: sha256WithRSAEncryption
d8:87:1c:ab:eb:e4:84:d4:da:03:b8:00:f2:53:e6:11:78:71:
0d:bf:c3:9d:61:a9:40:19:0a:cf:c8:32:c5:4b:ad:eb:fb:80:
62:53:1e:85:e7:5b:49:9e:f3:a8:70:f3:25:33:72:2b:c3:c3:
d2:b2:58:0b:9f:5f:d5:84:ce:86:f0:a0:25:ca:a0:d8:6e:4a:
ab:0b:6a:f3:47:f5:0c:e0:37:45:57:ec:9f:1b:43:e5:6f:ef:
28:74:e4:93:e0:d1:a1:44:6b:dd:ae:19:3d:cf:3f:17:38:55:
aa:a5:66:aa:bc:cc:27:b6:34:28:ae:4c:43:d1:12:a3:2b:ac:
09:29:bf:3f:3d:79:92:61:cc:33:0c:16:d2:62:00:5b:e5:95:
a3:ac:15:6d:28:55:27:d1:42:6d:7d:98:8b:d2:2d:e5:c6:e0:
4c:af:b2:26:34:95:a4:0a:63:b8:cd:44:05:b2:cc:70:75:cc:
2a:7c:bf:f4:85:70:9a:e4:36:e5:49:29:79:bd:59:ed:c4:2e:
31:16:c5:e1:14:73:c2:e4:e5:ec:85:11:35:f4:99:ea:a5:f7:
ce:48:d5:c1:27:84:f0:0a:3b:c1:d7:7a:59:d4:de:1f:58:f3:
17:91:40:e3:aa:cd:73:2f:a9:2a:1d:c7:e3:b2:67:83:fd:86:
28:3f:82:74
-----BEGIN CERTIFICATE-----
MIIGKTCCBRGgAwIBAgIDAci+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTIzMTEwMzAyMTg1NloXDTI0MDMwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxRkJDRkQxMTAvBgNVBAUTKEFCNzAyRkI0NTk2QzA4NzI3ODhFQjAx
ODU4Q0JBNkY4QkU0QzI3OTkwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDBCvJyZX2qCMe7gauiKnrEKMRT3epcHFA5w094Nhk6rzPawzKYZou+Tat1jc+l
ab+djVnTjXnHKdTRzJY0qXjFI3AoJyiok/9ijR0BJv26h8rfD5mF9SC33pVNF2PR
6KiyGf//AoW5B8G/ZVHNTnMN177dXV30hddDC2/ZyGMfJo8RGVjcO1CP/5bZDKBn
WNazalji0CcDm7yBnpO8Z05i8JrSvYL7+gUdUqFlqNEZKJoxrQ1kmpVxPY2yeS1P
l3EwWjp5n55lBDZK1aYtZ5C08pc8ig1Dh2vsft/YYt4OBdOiPZHHLFHcl8QI5SZ2
vs7PYmBjUzSSW6ashBp0eaLpAgMBAAGjggMeMIIDGjAdBgNVHQ4EFgQUq3AvtFls
CHJ4jrAYWMum+L5MJ5kwHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUZCQ0ZEL0Y0ODYwNDkyNzI2OTExRUQ5MEJCMzM1OUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFGQkNGRC9GNDg2MDQ5MjcyNjkxMUVEOTBCQjMzNTlDNEY5QUUwMi9xM0F2dEZs
c0NISjRqckFZV011bS1MNU1KNWsubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGgYIKwYBBQUHAQgBAf8ECzAJ
oAcwBQIDAktDMC4GCCsGAQUFBwEHAQH/BB8wHTAMBAIAATAGAwQBZxCiMA0EAgAC
MAcDBQAkALKgMA0GCSqGSIb3DQEBCwUAA4IBAQDYhxyr6+SE1NoDuADyU+YReHEN
v8OdYalAGQrPyDLFS63r+4BiUx6F51tJnvOocPMlM3Irw8PSslgLn1/VhM6G8KAl
yqDYbkqrC2rzR/UM4DdFV+yfG0Plb+8odOST4NGhRGvdrhk9zz8XOFWqpWaqvMwn
tjQorkxD0RKjK6wJKb8/PXmSYcwzDBbSYgBb5ZWjrBVtKFUn0UJtfZiL0i3lxuBM
r7ImNJWkCmO4zUQFssxwdcwqfL/0hXCa5DblSSl5vVntxC4xFsXhFHPC5OXshRE1
9JnqpffOSNXBJ4TwCjvB13pZ1N4fWPMXkUDjqs1zL6kqHcfjsmeD/YYoP4J0
-----END CERTIFICATE-----
Generated at Wed Dec 13 02:29:26 2023 by rpki-client on console-ams.rpki-client.org