Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/yk4HUSi1N46tOjNLzp3hFXc1nNo.cer
File: yk4HUSi1N46tOjNLzp3hFXc1nNo.cer (raw, json)
Hash identifier: pmG4W1QeLq+yCpSH4su54YucnSyS53VA/kS600i0WQY=
Subject key identifier: CA:4E:07:51:28:B5:37:8E:AD:3A:33:4B:CE:9D:E1:15:77:35:9C:DA
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02177E
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/yk4HUSi1N46tOjNLzp3hFXc1nNo.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 31 Oct 2024 20:54:44 +0000
Certificate not after: Sat 01 Mar 2025 00:00:00 +0000
Subordinate resources: AS: 7699
Validation: Failed, certificate revoked on Tue 12 Nov 2024 17:01:13 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 137086 (0x2177e)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 31 20:54:44 2024 GMT
Not After : Mar 1 00:00:00 2025 GMT
Subject: CN=A91CB5F3/serialNumber=CA4E075128B5378EAD3A334BCE9DE11577359CDA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:4c:dd:f1:f1:df:29:b2:9d:85:a3:47:ca:d7:
88:fb:99:7d:4c:b6:c5:15:a1:1e:01:d8:a0:b8:40:
17:7b:d9:20:26:bd:3f:c5:ea:ac:c7:2d:fc:d4:86:
ed:f6:51:9b:a4:ac:58:78:91:e5:c7:6a:9e:9a:5c:
bc:0f:a1:1e:96:69:08:8f:cb:0e:90:53:bc:37:42:
fd:61:c0:25:c6:45:55:c8:11:d7:af:d6:b3:77:e9:
1a:1c:6a:9f:bc:09:fb:21:4d:5d:23:ab:27:75:06:
ee:a7:3a:3d:4e:8f:cc:40:42:ed:16:ab:c7:8b:ff:
a5:81:9f:5b:e6:0b:49:86:03:2f:a1:d2:7b:7c:89:
30:da:80:c8:81:7f:81:98:2e:b8:b0:73:b5:0d:82:
d6:24:4d:43:92:79:8a:cc:22:32:b4:0e:16:d1:ee:
1d:d6:fb:46:34:6c:8f:05:bb:9d:f3:2a:52:fb:1f:
e6:6b:49:f0:e5:3b:a5:ee:12:8a:a0:fe:86:99:63:
4e:22:e3:1c:9b:43:d9:64:8f:1e:0f:a5:c9:da:d4:
c2:69:9a:e5:ac:73:2c:28:fb:6b:a5:a2:0b:45:fa:
b5:c3:8c:a6:ea:19:18:00:11:e7:92:f0:93:2b:cb:
a8:b1:af:e5:87:6a:8b:8e:e2:1a:77:14:5d:9c:4b:
d0:1b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CA:4E:07:51:28:B5:37:8E:AD:3A:33:4B:CE:9D:E1:15:77:35:9C:DA
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91CB5F3/73AFED862D2111EB83D99079C4F9AE02/yk4HUSi1N46tOjNLzp3hFXc1nNo.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
7699
Signature Algorithm: sha256WithRSAEncryption
23:53:d2:97:f3:9b:42:13:5c:fa:d6:e0:dd:ea:e9:ad:ee:a9:
ca:65:de:b8:b5:3e:30:6d:9b:c4:c8:3b:78:f2:85:5e:e0:cb:
37:00:0f:25:7e:8a:74:09:b2:5c:68:a1:8e:aa:7a:fd:b3:68:
26:db:d0:bf:e0:dd:d9:7e:e3:ac:b8:c7:70:2c:6e:be:11:11:
de:82:c8:d6:a8:b3:3a:77:0d:59:d3:86:ab:f5:99:e6:0f:77:
ec:a9:b0:e1:81:1d:02:02:f1:cc:27:41:e9:30:c3:82:a0:fc:
d7:b2:fe:0a:42:7d:a5:99:6f:4c:32:a8:38:cf:57:d8:af:b4:
6c:8d:f1:07:a6:a8:df:4e:1f:25:48:30:e6:cb:92:bd:95:74:
59:e7:79:c0:8d:c6:ba:6b:a9:6b:ff:51:05:84:e6:63:a1:70:
c6:e5:2a:ae:24:77:78:29:2c:30:b8:bb:f4:72:d3:5c:d9:d6:
bb:ef:b1:2c:85:8e:1d:d3:bf:a5:69:0f:01:b7:32:fc:b9:65:
39:e2:25:0f:8c:c3:d1:a4:42:d9:bb:17:4a:d1:80:ac:a2:6b:
ed:e6:b6:78:2a:11:c6:79:d3:84:62:2d:d7:9d:41:6b:42:c7:
14:55:a7:28:ff:6a:ea:80:d7:10:47:61:b4:66:6f:65:99:e8:
b2:41:b9:6b
-----BEGIN CERTIFICATE-----
MIIF+DCCBOCgAwIBAgIDAhd+MA0GCSqGSIb3DQEBCwUAMEYxETAPBgNVBAMTCEE5
MERDNUJFMTEwLwYDVQQFEygwRTY1QTRGNUZEMzZCNUJENjhFQjNDOTIzNDA4OTc4
QzkwN0FBNzlGMB4XDTI0MTAzMTIwNTQ0NFoXDTI1MDMwMTAwMDAwMFowRjERMA8G
A1UEAxMIQTkxQ0I1RjMxMTAvBgNVBAUTKENBNEUwNzUxMjhCNTM3OEVBRDNBMzM0
QkNFOURFMTE1NzczNTlDREEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB
AQDDTN3x8d8psp2Fo0fK14j7mX1MtsUVoR4B2KC4QBd72SAmvT/F6qzHLfzUhu32
UZukrFh4keXHap6aXLwPoR6WaQiPyw6QU7w3Qv1hwCXGRVXIEdev1rN36Rocap+8
CfshTV0jqyd1Bu6nOj1Oj8xAQu0Wq8eL/6WBn1vmC0mGAy+h0nt8iTDagMiBf4GY
Lriwc7UNgtYkTUOSeYrMIjK0DhbR7h3W+0Y0bI8Fu53zKlL7H+ZrSfDlO6XuEoqg
/oaZY04i4xybQ9lkjx4Ppcna1MJpmuWscywo+2ulogtF+rXDjKbqGRgAEeeS8JMr
y6ixr+WHaouO4hp3FF2cS9AbAgMBAAGjggLtMIIC6TAdBgNVHQ4EFgQUyk4HUSi1
N46tOjNLzp3hFXc1nNowHwYDVR0jBBgwFoAUDmWk9f02tb1o6zySNAiXjJB6p58w
DgYDVR0PAQH/BAQDAgEGMA8GA1UdEwEB/wQFMAMBAf8wcwYDVR0fBGwwajBooGag
ZIZicnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2
NjExRTJCQjQ2OEY3QzcyRkQxRkYyL0RtV2s5ZjAydGIxbzZ6eVNOQWlYakpCNnA1
OC5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku
YXBuaWMubmV0L3JlcG9zaXRvcnkvOTgwNjUyRTBCNzdFMTFFN0E5NkEzOTUyMUE0
RjRGQjQvRG1XazlmMDJ0YjFvNnp5U05BaVhqSkI2cDU4LmNlcjBKBgNVHSABAf8E
QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj
Lm5ldC9SUEtJL0NQUy5wZGYwggEoBggrBgEFBQcBCwSCARowggEWMF8GCCsGAQUF
BzAFhlNyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5
MUNCNUYzLzczQUZFRDg2MkQyMTExRUI4M0Q5OTA3OUM0RjlBRTAyLzB+BggrBgEF
BQcwCoZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9B
OTFDQjVGMy83M0FGRUQ4NjJEMjExMUVCODNEOTkwNzlDNEY5QUUwMi95azRIVVNp
MU40NnRPak5MenAzaEZYYzFuTm8ubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3Jy
ZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwGQYIKwYBBQUHAQgBAf8ECjAI
oAYwBAICHhMwDQYJKoZIhvcNAQELBQADggEBACNT0pfzm0ITXPrW4N3q6a3uqcpl
3ri1PjBtm8TIO3jyhV7gyzcADyV+inQJslxooY6qev2zaCbb0L/g3dl+46y4x3As
br4REd6CyNaoszp3DVnThqv1meYPd+ypsOGBHQIC8cwnQekww4Kg/Ney/gpCfaWZ
b0wyqDjPV9ivtGyN8QemqN9OHyVIMObLkr2VdFnnecCNxrprqWv/UQWE5mOhcMbl
Kq4kd3gpLDC4u/Ry01zZ1rvvsSyFjh3Tv6VpDwG3Mvy5ZTniJQ+Mw9GkQtm7F0rR
gKyia+3mtngqEcZ504RiLdedQWtCxxRVpyj/auqA1xBHYbRmb2WZ6LJBuWs=
-----END CERTIFICATE-----
Generated at Tue Nov 12 21:17:14 2024 by rpki-client on console-ams.rpki-client.org