Certificate
$ rpki-client -vvf rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/bgopAGEwM5uDbSj3ABgC9xpaTkI.cer
File: bgopAGEwM5uDbSj3ABgC9xpaTkI.cer (raw, json)
Hash identifier: lrOved4GOj2q+KczozFHRQjewlOeMOM+qr1sVRoKZlA=
Subject key identifier: 6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42
Authority key identifier: 0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
Certificate issuer: /CN=A90DC5BE/serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Certificate serial: 02476D
Authority info access: rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
Manifest: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft
caRepository: rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/
Notify URL: https://rrdp.apnic.net/notification.xml
Certificate not before: Tue 20 May 2025 12:29:17 +0000
Certificate not after: Thu 30 Jul 2026 00:00:00 +0000
Subordinate resources: AS: 149819
IP: 103.187.12.0/23
IP: 2001:df0:b440::/48
Validation: OK
Signature path: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Tue 03 Jun 2025 07:19:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 149357 (0x2476d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A90DC5BE, serialNumber=0E65A4F5FD36B5BD68EB3C923408978C907AA79F
Validity
Not Before: May 20 12:29:17 2025 GMT
Not After : Jul 30 00:00:00 2026 GMT
Subject: CN=A91166D1, serialNumber=6E0A29006130339B836D28F7001802F71A5A4E42
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d7:95:d1:8a:a8:22:ed:85:fb:fa:c4:f1:31:14:
9a:48:88:d1:da:be:0b:a4:bb:1c:42:65:4b:63:99:
6d:3a:25:47:da:42:cb:2a:cb:13:34:3b:81:92:00:
fa:fb:5e:30:d6:73:43:3d:73:be:ea:a9:64:0a:9e:
b2:c9:57:3b:45:77:27:0f:9c:10:bb:c0:ab:6e:22:
75:c8:05:8e:18:27:8f:cd:41:ce:c6:d8:cf:b5:f2:
37:b1:46:da:2f:c4:e5:59:a9:74:4d:4f:bd:46:da:
85:bb:41:f9:fa:f0:df:9d:b0:7a:ba:c1:c6:02:be:
79:9b:fc:7c:13:68:c8:a7:32:32:38:4e:85:a4:3c:
f0:fd:8f:a6:5f:24:57:22:ab:7c:e3:68:4b:50:f7:
85:44:e0:0b:ec:68:90:48:bb:a3:1a:23:42:7b:a9:
ee:4d:a6:2a:9b:10:1e:73:ba:a9:11:13:b5:db:d9:
42:18:c3:9f:5e:62:a3:ab:63:3b:75:5f:18:ce:94:
d9:61:2a:f6:a1:3e:13:73:bb:96:9a:5e:83:ec:72:
67:1c:e5:86:ab:1f:a4:39:f0:67:2d:62:74:0b:d1:
22:78:43:b6:a9:db:b5:13:ea:54:6f:8b:1c:fb:ef:
38:1b:c8:79:57:60:23:e2:00:25:7e:b6:0a:f6:17:
27:ab
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:0A:29:00:61:30:33:9B:83:6D:28:F7:00:18:02:F7:1A:5A:4E:42
X509v3 Authority Key Identifier:
keyid:0E:65:A4:F5:FD:36:B5:BD:68:EB:3C:92:34:08:97:8C:90:7A:A7:9F
X509v3 Key Usage: critical
Certificate Sign, CRL Sign
X509v3 Basic Constraints: critical
CA:TRUE
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
CA Repository - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/
RPKI Manifest - URI:rsync://rpki.apnic.net/member_repository/A91166D1/ABDA5142E71511ECB82CB06EC4F9AE02/bgopAGEwM5uDbSj3ABgC9xpaTkI.mft
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
149819
sbgp-ipAddrBlock: critical
IPv4:
103.187.12.0/23
IPv6:
2001:df0:b440::/48
Signature Algorithm: sha256WithRSAEncryption
d4:03:e3:00:9f:d4:8d:38:6c:5d:10:44:67:41:9c:91:89:3c:
01:b7:e4:8d:d0:3c:7d:2c:dc:f9:b8:89:da:c5:13:ff:f7:c8:
4e:d4:0a:06:85:93:28:2c:e8:05:cb:35:ef:f8:60:ac:af:17:
7f:38:da:a7:92:8d:ee:01:9b:04:b4:8b:78:8e:d1:68:63:81:
82:62:24:81:fa:0b:d9:d5:53:98:f4:b4:ad:00:b3:05:b8:77:
c3:b9:69:c5:90:3f:bb:b9:1d:f7:54:71:b3:12:ba:1f:4d:8d:
7f:d2:96:c9:18:ba:23:be:8b:62:7f:dc:85:63:61:1a:bd:20:
c7:7a:4d:11:4e:da:7b:34:60:ce:45:db:c1:f8:65:26:e3:96:
ab:d7:94:f4:f9:13:be:80:36:b3:5d:70:2c:55:c5:90:ee:f4:
9b:29:2f:45:5a:92:14:6c:b9:02:7c:21:98:95:33:56:77:ea:
30:72:17:70:aa:cb:82:35:4a:bb:fd:8a:f7:a2:ef:45:ce:59:
0c:07:d6:ea:f8:c5:0f:5e:e0:c3:b2:a8:ab:f3:d0:85:c2:fe:
01:9c:2d:11:78:52:fc:e2:31:90:0b:0d:09:e2:4e:f3:0d:4c:
d1:7c:34:d0:a3:ff:3e:06:a3:b7:80:1f:08:fe:69:de:83:5c:
d9:48:af:79
-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----
Generated at Fri May 30 09:04:38 2025 by rpki-client