Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/zk7LoVsEO3TLJFkre1LZ0-RLr5U.cer
File: zk7LoVsEO3TLJFkre1LZ0-RLr5U.cer (raw, json)
Hash identifier: PBPaGwpVmeHQyKKTCo+kmO9pGLgxM+svua3w1tXIsPI=
Subject key identifier: CE:4E:CB:A1:5B:04:3B:74:CB:24:59:2B:7B:52:D9:D3:E4:4B:AF:95
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 01D933
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A913ED02/12B16D5054E611E79ADC2518C4F9AE02/zk7LoVsEO3TLJFkre1LZ0-RLr5U.mft
caRepository: rsync://rpki.apnic.net/member_repository/A913ED02/12B16D5054E611E79ADC2518C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Thu 18 Jan 2024 16:51:32 +0000
Certificate not after: Wed 01 May 2024 00:00:00 +0000
Subordinate resources: IP: 103.197.160.0/22
IP: 220.158.216.0/22
IP: 2403:1480::/32
Validation: Failed, certificate revoked on Thu 18 Jan 2024 22:56:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 121139 (0x1d933)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Jan 18 16:51:32 2024 GMT
Not After : May 1 00:00:00 2024 GMT
Subject: CN=A913ED02/serialNumber=CE4ECBA15B043B74CB24592B7B52D9D3E44BAF95
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:e4:ad:a9:1f:50:08:40:cf:ae:6a:37:fc:23:09:
84:14:71:90:df:7f:d0:b6:20:97:92:50:5f:45:fb:
3a:28:36:6b:a7:6b:30:5e:bf:cc:0f:77:45:7c:b2:
02:6a:c8:69:17:72:3d:ce:7f:59:62:42:dc:8d:2d:
35:20:70:65:9b:ff:2d:c7:04:68:85:4a:73:c6:4c:
c9:10:90:9a:20:6a:c4:e6:8b:52:38:58:d9:42:7e:
5e:12:8f:53:3e:77:ed:3b:5f:3a:5b:20:ce:50:f9:
da:c9:91:88:4c:78:58:b8:c2:10:2a:c6:21:91:7f:
8e:9f:40:2a:d0:e5:90:ff:8a:17:c9:e3:80:ee:f6:
a9:78:e0:8b:f1:ee:31:d8:cc:30:64:78:76:01:d4:
29:07:d1:68:56:d5:1a:71:38:81:46:24:b1:de:d3:
d8:a0:67:66:69:96:d7:ed:f1:94:36:04:67:4d:9b:
72:1e:18:89:7a:06:d8:ac:98:47:4a:11:c1:ed:63:
e0:87:17:31:00:76:db:ef:22:71:9c:59:79:c9:b0:
ba:a8:f6:c5:ca:a4:88:ac:1c:a6:79:4d:fb:18:ba:
dc:46:32:8f:4c:7e:d7:12:5a:13:f0:af:b8:c7:f1:
cd:a5:a2:10:35:44:34:ce:51:73:39:2d:79:60:5a:
b3:8b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CE:4E:CB:A1:5B:04:3B:74:CB:24:59:2B:7B:52:D9:D3:E4:4B:AF:95
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A913ED02/12B16D5054E611E79ADC2518C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A913ED02/12B16D5054E611E79ADC2518C4F9AE02/zk7LoVsEO3TLJFkre1LZ0-RLr5U.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.197.160.0/22
220.158.216.0/22
IPv6:
2403:1480::/32
Signature Algorithm: sha256WithRSAEncryption
b4:84:41:d4:31:69:f1:40:b5:8b:df:10:75:f1:76:da:ba:87:
23:54:b3:43:e2:41:17:7c:79:a2:01:52:6c:e2:6b:0e:4d:51:
1f:f1:a2:34:03:6b:c1:ab:21:7e:14:ca:5a:e4:8b:52:5a:27:
3d:19:95:3d:cf:67:58:3b:26:e0:7f:9d:47:5b:e8:3e:e8:97:
a5:32:89:42:f0:f2:2c:d0:b7:c6:f3:ed:2e:2e:bf:fe:82:11:
24:26:d8:15:0a:ee:c1:cb:93:89:73:76:f4:1a:2a:e7:a1:f6:
c2:44:2c:40:ed:c7:bd:6d:92:2f:8e:53:8b:31:31:07:8c:06:
21:6f:e6:0d:14:79:16:2a:6d:23:e0:a1:27:b2:f5:7f:49:55:
70:a6:e7:0b:eb:47:fc:2c:47:ac:84:b0:d0:f2:c9:39:4e:7b:
8d:d4:d3:30:73:74:8d:31:13:6a:cc:aa:d4:c4:d4:16:33:18:
ce:af:c1:4b:17:d0:80:98:b9:13:7a:0d:ec:40:a1:e4:fa:b2:
ff:63:31:a2:46:e0:f3:c6:b6:00:a0:0c:cd:7c:8b:05:93:a8:
fd:90:64:26:b7:6a:54:8a:06:10:ea:69:9f:b7:d8:21:6b:61:
28:61:0e:b3:c1:31:76:b3:49:02:81:db:ad:f5:b2:23:79:03:
14:d0:1c:b8
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Jan 19 01:49:38 2024 by rpki-client on console-ams.rpki-client.org