Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tmwXJQzwfm2ZlYhT7j9RPi17b5U.cer
File: tmwXJQzwfm2ZlYhT7j9RPi17b5U.cer (raw, json)
Hash identifier: 33W+n9Tz7FfCLcfhJExTt2/YvDvE1qzR303djcsUZ+g=
Subject key identifier: B6:6C:17:25:0C:F0:7E:6D:99:95:88:53:EE:3F:51:3E:2D:7B:6F:95
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 0166C5
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2410520f-a6ff-46b5-91e9-abd919dd2d6e/manifest.mft
caRepository: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2410520f-a6ff-46b5-91e9-abd919dd2d6e/
Notify URL: https://rpki-rrdp.us-east-2.amazonaws.com/rrdp/2410520f-a6ff-46b5-91e9-abd919dd2d6e/notification.xml
Certificate not before: Fri 05 Aug 2022 12:32:48 +0000
Certificate not after: Fri 31 Mar 2023 00:00:00 +0000
Subordinate resources: AS: 17493
IP: 43.250.192.0/22
IP: 122.248.192.0/18
IP: 175.41.128.0/18
IP: 2400:6500:4000::/48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 91845 (0x166c5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Aug 5 12:32:48 2022 GMT
Not After : Mar 31 00:00:00 2023 GMT
Subject: CN=A91609040000/serialNumber=B66C17250CF07E6D99958853EE3F513E2D7B6F95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:15:d6:b5:c4:c4:4b:a6:34:94:b9:c9:f2:cd:
60:c8:64:a0:00:e7:bb:3f:5b:09:1f:6d:7c:cd:f7:
c5:5d:4d:17:0a:83:c9:ae:5c:4a:f0:d4:ab:31:c7:
90:35:9f:70:14:ee:a0:d7:4c:b7:52:6e:d1:7f:a5:
a7:3e:26:67:b2:e3:ed:d1:df:80:ff:a9:39:ca:63:
02:bd:ea:35:9e:b9:d7:7e:06:43:c5:11:33:b7:ba:
d1:e5:74:3e:77:0e:5c:e3:dd:69:e1:7f:aa:61:59:
46:1f:a3:11:a7:ed:02:6e:78:16:3c:bb:bd:6d:fa:
c5:08:96:21:b7:e7:7c:9f:05:70:df:2a:b4:fc:f6:
aa:8a:ee:ab:e6:82:9b:8e:34:c7:ec:0b:27:e8:ef:
d1:69:36:93:b1:1b:b0:bb:3b:6a:af:4a:76:91:39:
e7:ce:66:93:8c:6c:2a:1b:4e:68:cf:11:39:7a:20:
07:20:0f:ec:00:60:03:44:04:aa:1c:4d:6d:7a:d3:
14:ed:c6:db:4c:72:fd:5c:e8:4c:91:0e:e2:94:0b:
34:33:65:fc:d3:a0:06:32:3c:a3:20:40:06:df:87:
12:85:cb:7b:d6:9a:74:16:1d:96:b8:70:bb:84:db:
ed:27:38:ce:25:87:d4:4e:78:11:b0:ec:6f:4f:8f:
34:a9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
B6:6C:17:25:0C:F0:7E:6D:99:95:88:53:EE:3F:51:3E:2D:7B:6F:95
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2410520f-a6ff-46b5-91e9-abd919dd2d6e/
RPKI Manifest - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/2410520f-a6ff-46b5-91e9-abd919dd2d6e/manifest.mft
RPKI Notify - URI:https://rpki-rrdp.us-east-2.amazonaws.com/rrdp/2410520f-a6ff-46b5-91e9-abd919dd2d6e/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
17493
sbgp-ipAddrBlock: critical
IPv4:
43.250.192.0/22
122.248.192.0/18
175.41.128.0/18
IPv6:
2400:6500:4000::/48
Signature Algorithm: sha256WithRSAEncryption
a1:1b:e6:ec:a1:e4:14:a2:e7:ab:37:fc:ed:ca:84:5e:6e:bf:
ae:bf:ca:d1:b2:78:77:9b:6d:f2:30:c3:82:39:10:12:2a:c5:
dd:f0:3e:7b:34:51:7c:01:24:23:f9:c1:20:73:78:b7:38:c8:
c5:6a:36:b6:7a:32:3c:55:94:33:95:01:41:0d:11:d7:01:dd:
fa:ed:70:31:71:dc:ad:ee:37:2c:10:3e:84:39:f0:ec:84:ba:
b9:99:5e:aa:2b:ca:d9:66:2b:e8:a9:df:02:cc:79:aa:1d:5a:
2f:d9:50:08:a5:98:6c:12:75:39:c4:07:e8:1f:c4:4e:e0:5d:
d4:7f:87:66:78:68:d6:1c:b7:e8:3b:ef:85:49:c4:ef:11:26:
d1:d1:0f:4b:33:ca:ed:8b:03:31:ab:52:3e:83:1e:49:48:48:
13:a9:fd:27:7b:17:88:e4:bb:4b:0a:c5:d5:38:b2:ef:1d:73:
20:2f:2c:47:ec:a8:5c:4b:0f:10:2b:6e:e3:75:ab:38:87:d1:
14:19:af:7e:3d:12:49:65:59:02:d0:f6:24:4a:6b:eb:ad:3b:
4d:d0:d1:89:b3:70:46:84:dd:a9:3d:0f:e3:0d:1a:60:54:dc:
f1:4b:00:bc:9a:1c:83:88:1b:39:09:b6:f1:9e:ee:6d:1c:55:
24:5a:59:c1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 16:51:55 2024 by rpki-client on console-fra.rpki-client.org