Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zjYLTnsJkrq2QfQ5Yx0XvtHZvwk.cer
File: zjYLTnsJkrq2QfQ5Yx0XvtHZvwk.cer (raw, json)
Hash identifier: QYt+jk1JgqbtufUQ8QVFqAA+K4ulyfvijL6jnA84T5Y=
Subject key identifier: CE:36:0B:4E:7B:09:92:BA:B6:41:F4:39:63:1D:17:BE:D1:D9:BF:09
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01C13F
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91C9470/65633DFAE23C11E8BF3F8330C4F9AE02/zjYLTnsJkrq2QfQ5Yx0XvtHZvwk.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91C9470/65633DFAE23C11E8BF3F8330C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Sun 01 Oct 2023 21:46:45 +0000
Certificate not after: Wed 31 Jan 2024 00:00:00 +0000
Subordinate resources: AS: 24117
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 115007 (0x1c13f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 1 21:46:45 2023 GMT
Not After : Jan 31 00:00:00 2024 GMT
Subject: CN=A91C9470/serialNumber=CE360B4E7B0992BAB641F439631D17BED1D9BF09
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:dc:2f:31:56:37:16:f1:fa:79:f1:d0:de:20:25:
37:dd:f6:be:cb:ed:92:71:7d:23:af:88:de:70:3c:
51:da:47:c8:9e:12:f9:e4:73:5e:45:e1:5e:55:19:
6a:eb:a9:e4:2d:0f:82:72:6d:3f:57:70:57:c1:b7:
29:be:77:b7:45:22:6d:e0:a1:e8:25:fe:ec:1f:f8:
c4:a5:a7:91:92:df:21:b4:e2:b7:ed:38:9e:05:69:
af:e2:9f:d1:23:8f:e0:9f:72:e1:83:ef:6d:19:97:
c5:79:a9:e6:df:af:7c:93:96:3b:f4:3a:a0:b2:65:
2d:6e:88:8b:44:a9:ad:d6:50:61:4b:e0:79:2f:e8:
61:0d:4d:09:81:f4:19:70:12:00:18:d0:10:bf:88:
56:b3:10:2d:0c:16:9a:8f:8e:5e:9d:d1:c4:53:db:
56:fa:5b:a4:73:44:dd:6a:d8:9f:41:63:91:65:7e:
20:89:d0:3b:76:96:53:82:00:6f:59:c5:b0:5b:9e:
be:84:7b:ba:ac:5d:2a:b0:69:07:07:58:b8:c4:5d:
41:69:55:49:84:47:67:d2:fe:56:70:70:2c:5a:55:
09:b4:36:55:3d:8e:39:da:04:0f:14:dd:6e:1b:44:
1d:20:4f:74:21:57:a8:ba:57:0a:a6:1d:77:31:61:
59:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:36:0B:4E:7B:09:92:BA:B6:41:F4:39:63:1D:17:BE:D1:D9:BF:09
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91C9470/65633DFAE23C11E8BF3F8330C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91C9470/65633DFAE23C11E8BF3F8330C4F9AE02/zjYLTnsJkrq2QfQ5Yx0XvtHZvwk.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
24117
Signature Algorithm: sha256WithRSAEncryption
4b:1e:0d:45:9e:60:fc:0e:f7:7b:85:04:b7:9f:61:3e:57:62:
77:cd:f2:f5:29:96:03:04:3a:62:40:91:4c:41:40:d8:58:82:
fd:36:49:e6:56:8a:c1:b7:1f:d2:58:5e:82:1e:1b:36:e9:5a:
f3:5a:6d:f9:4d:fb:8f:75:75:37:02:fe:3e:35:8f:d1:d7:0f:
da:d8:46:10:34:30:e2:fa:30:4c:26:7b:99:15:4f:bc:82:74:
33:a1:2f:09:82:4c:63:79:1d:12:9d:35:70:46:9d:1c:a6:f0:
11:f1:d5:3f:87:4c:ea:05:31:16:bc:b9:90:41:fb:e8:e6:17:
cb:fa:4a:60:c6:fa:7a:c1:f2:fa:50:3f:bc:59:01:a5:9d:49:
c4:c6:87:85:79:72:b8:6f:4a:74:6b:60:e0:46:a5:8c:81:f7:
b1:e9:d0:15:af:5b:17:8e:fc:5a:a3:0d:df:d0:6f:56:a4:12:
c4:e2:7a:81:a3:53:8b:b9:25:7d:f3:ab:39:9f:cd:30:09:30:
bb:a1:cf:5c:0c:74:e2:3d:80:cb:be:21:4e:f3:8f:cc:27:ce:
63:95:60:e2:3c:0c:6c:34:ab:de:c5:4a:11:69:4b:1c:40:57:
12:2a:bb:20:03:f3:96:b9:55:56:2a:41:ae:14:f2:ac:3b:68:
61:dc:f9:13
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:06:45 2024 by rpki-client on console-ams.rpki-client.org