Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/EMapar_laJvHveWr6KZtlSRT-xg.cer
File: EMapar_laJvHveWr6KZtlSRT-xg.cer (raw, json)
Hash identifier: 5Tdqw36yP7rX/ApRBlGtANVprf5rPMBr+mseOEYthZU=
Subject key identifier: 10:C6:A9:6A:BF:E5:68:9B:C7:BD:E5:AB:E8:A6:6D:95:24:53:FB:18
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 021436
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/EMapar_laJvHveWr6KZtlSRT-xg.mft
caRepository: rsync://rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Wed 16 Oct 2024 04:39:59 +0000
Certificate not after: Mon 30 Dec 2024 00:00:00 +0000
Subordinate resources: AS: 10075
AS: 153370
IP: 103.131.156.0/22
IP: 2403:cd40::/32
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Mon 28 Oct 2024 02:50:14 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 136246 (0x21436)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: Oct 16 04:39:59 2024 GMT
Not After : Dec 30 00:00:00 2024 GMT
Subject: CN=A912C6FA/serialNumber=10C6A96ABFE5689BC7BDE5ABE8A66D952453FB18
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f0:18:33:9b:cc:5f:9e:e7:3b:de:72:1e:d7:48:
38:19:3a:ed:17:79:88:a7:59:74:b6:94:bb:22:d6:
6e:ea:3e:d4:2e:05:ea:ea:97:4b:f9:50:0c:62:8b:
7f:1c:e8:bd:9e:d7:6f:03:37:14:d8:d8:d3:bc:ed:
d1:4f:d0:8d:d7:cc:4b:ca:e3:73:3a:0f:d6:b8:27:
da:ab:9c:18:15:64:4c:bf:4b:5f:b5:ab:3c:50:98:
6f:18:dc:c6:08:8c:ca:a1:dd:c1:a3:1c:09:bb:53:
17:7e:70:a6:b9:6c:36:4f:7f:2d:7d:31:c0:3b:3d:
a5:d9:0f:d5:5d:58:db:61:db:32:cc:50:3d:2e:b6:
11:8f:ae:82:cb:ff:3c:b6:8e:62:51:dc:f0:a7:63:
2b:2e:5f:4b:a0:45:ed:ac:6a:3f:d4:62:5a:4a:ed:
65:88:6d:34:43:03:c6:b1:1a:35:0e:a0:58:1f:44:
57:39:a1:e7:00:b1:5d:72:ad:40:d3:df:a1:de:a1:
28:8d:4c:fa:68:1c:5a:41:0a:3a:de:43:ca:f3:39:
95:7b:2f:0b:07:02:55:8f:80:b5:26:4f:ae:56:af:
2b:85:8d:96:da:76:70:7a:d1:08:f2:26:ca:80:de:
a1:99:cc:01:f0:0b:08:33:7c:5a:38:99:97:58:3a:
85:cf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
10:C6:A9:6A:BF:E5:68:9B:C7:BD:E5:AB:E8:A6:6D:95:24:53:FB:18
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A912C6FA/A17B33C2D5AF11E88FF05228C4F9AE02/EMapar_laJvHveWr6KZtlSRT-xg.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
10075
153370
sbgp-ipAddrBlock: critical
IPv4:
103.131.156.0/22
IPv6:
2403:cd40::/32
Signature Algorithm: sha256WithRSAEncryption
0d:ef:11:a6:aa:da:a1:bc:fc:47:e0:19:b6:4d:fa:81:74:71:
43:a2:8b:ad:42:1a:e7:03:14:1d:e1:f5:49:19:a6:f2:86:73:
b8:94:81:1a:dc:48:8b:f3:b5:01:0f:7b:78:13:ef:09:4e:ed:
e2:f5:8e:56:66:f7:36:9a:88:93:42:de:9b:11:0c:58:3a:33:
66:b9:b8:81:ce:c3:45:7f:34:9a:d1:c9:fa:e9:13:a0:32:24:
c3:d9:0b:0a:91:22:95:48:43:05:fc:cf:ad:a3:31:e3:d0:f5:
88:f8:e7:96:f1:84:2b:4f:2f:bc:27:b5:23:b4:3d:bc:2b:4b:
c9:1a:ef:6d:b4:74:cf:90:d4:06:ef:13:db:8d:66:41:d2:82:
70:26:e0:57:91:9d:1e:53:f8:de:85:66:3f:df:07:82:4f:97:
43:fb:e7:ec:44:62:5a:70:74:64:3b:e0:74:05:2f:37:33:c9:
a4:54:e7:3f:e4:a7:e0:fe:df:0d:7f:47:68:d1:7a:55:3d:4e:
b9:e4:f4:77:e3:64:5b:95:9e:ae:2b:5b:7b:88:1a:b2:2c:c4:
7c:69:cd:c9:e7:17:de:dd:14:ab:40:1f:b3:af:38:43:ba:46:
39:4d:0b:ba:1f:75:03:e6:8e:f5:cd:25:1e:7a:cf:53:a4:24:
65:71:29:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Oct 21 04:28:42 2024 by rpki-client on console.sobornost.net