$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer File: 394BCC5C0310DB0117DDC1DC1A176026DB421D88.cer (raw, json) Hash identifier: iH1OXMCQ6FXejtvooUoLVXnR66PD2wMca1UqaIMzoAA= Subject key identifier: 39:4B:CC:5C:03:10:DB:01:17:DD:C1:DC:1A:17:60:26:DB:42:1D:88 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 0B885061A88127B80CE46430FFB3DE110C18356E Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.mft caRepository: rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 01 May 2025 19:40:20 +0000 Certificate not after: Thu 30 Apr 2026 19:45:20 +0000 Subordinate resources: IP: 157.66.190.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 May 2025 11:26:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:88:50:61:a8:81:27:b8:0c:e4:64:30:ff:b3:de:11:0c:18:35:6e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: May 1 19:40:20 2025 GMT Not After : Apr 30 19:45:20 2026 GMT Subject: CN=394BCC5C0310DB0117DDC1DC1A176026DB421D88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:21:c3:f3:25:f7:70:54:22:30:c7:3c:e6:b6: c9:31:34:57:de:ed:bd:f6:d0:3e:98:09:8e:dd:7d: b4:67:f0:ed:f6:9a:c8:0b:90:9f:38:4c:a4:b2:bc: 6d:40:2c:b0:e7:4e:ea:b0:f4:03:62:f0:8e:9f:15: 9d:79:a0:e1:db:89:e9:32:0a:99:a5:e2:52:23:61: fa:24:a0:4c:be:4c:20:a8:60:c7:32:71:00:bb:74: 27:fd:69:19:e3:87:4e:40:04:62:05:44:f9:c4:c7: d5:0d:f3:56:b2:5e:cb:5e:de:9c:1b:a6:94:cb:54: d0:69:3e:9b:ea:73:9f:55:e0:b0:c5:82:af:d0:04: 4f:88:0e:ad:e0:8e:72:86:cb:31:79:ec:e8:1a:d9: a1:cf:1b:5e:ed:07:2d:7a:d9:f5:6b:ba:c3:1a:3a: 7f:46:9c:ee:af:e9:97:4e:e8:54:b1:87:fe:a6:5f: 6f:38:75:c9:12:6b:ae:77:08:8f:50:b5:d6:88:24: 0e:56:96:a3:4e:8b:94:08:d6:8b:3f:fe:11:b7:70: 8c:c2:cd:1d:02:52:69:94:f5:83:ed:e1:93:54:44: 30:fd:c2:96:57:a9:26:dc:95:7b:de:f5:f0:49:11: 37:c1:5e:d9:76:00:82:fb:29:40:02:31:c9:76:ec: ef:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 39:4B:CC:5C:03:10:DB:01:17:DD:C1:DC:1A:17:60:26:DB:42:1D:88 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/97134f18-11e1-41ae-bb05-9fbf48212b7d/0/394BCC5C0310DB0117DDC1DC1A176026DB421D88.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.190.0/24 Signature Algorithm: sha256WithRSAEncryption 64:10:25:1e:8b:85:c3:73:fb:ab:d3:85:9e:c6:2e:df:60:b8: 97:6e:2d:69:05:a4:0c:84:71:3f:ad:92:77:d0:49:c8:8a:ae: ae:9b:af:12:e5:5a:87:13:08:48:33:40:d6:76:ca:10:e8:89: 62:77:bb:04:a9:8b:fb:90:18:d5:96:a5:31:dd:ec:1d:34:1d: 78:c8:52:4c:4f:99:89:cf:33:ad:45:27:1d:48:91:95:10:42: da:b1:5f:8d:07:51:f0:8a:d2:d1:ee:b6:84:36:b7:67:96:75: a7:51:ac:56:87:1d:d9:26:e2:c4:10:c9:88:ab:26:b5:95:44: 05:eb:3e:5b:d3:57:06:1c:ad:33:18:3f:da:62:a3:26:04:43: 39:c3:84:76:ad:c9:01:47:93:28:fd:71:3d:07:93:c1:52:27: aa:a4:d3:bf:04:89:08:86:10:eb:da:10:47:c7:f0:ef:b1:b1: 04:15:55:6e:92:7a:d5:23:e1:98:70:e0:2f:4a:a0:2d:ef:00: 49:35:f8:2a:df:5b:84:72:20:f6:70:61:36:86:5d:f9:1e:7f: 7a:c7:7f:7c:56:7b:24:43:55:ac:26:13:29:8c:6b:25:ad:ac: 1b:c3:2c:85:8f:4e:64:49:ac:12:8d:f0:c3:63:f7:f0:ef:67: ea:75:0b:2c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUC4hQYaiBJ7gM5GQw/7PeEQwYNW4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDUwMTE5NDAyMFoX DTI2MDQzMDE5NDUyMFowMzExMC8GA1UEAxMoMzk0QkNDNUMwMzEwREIwMTE3RERD MURDMUExNzYwMjZEQjQyMUQ4ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKQhw/Ml93BUIjDHPOa2yTE0V97tvfbQPpgJjt19tGfw7faayAuQnzhMpLK8 bUAssOdO6rD0A2Lwjp8VnXmg4duJ6TIKmaXiUiNh+iSgTL5MIKhgxzJxALt0J/1p GeOHTkAEYgVE+cTH1Q3zVrJey17enBumlMtU0Gk+m+pzn1XgsMWCr9AET4gOreCO cobLMXns6BrZoc8bXu0HLXrZ9Wu6wxo6f0ac7q/pl07oVLGH/qZfbzh1yRJrrncI j1C11ogkDlaWo06LlAjWiz/+EbdwjMLNHQJSaZT1g+3hk1REMP3CllepJtyVe971 8EkRN8Fe2XYAgvspQAIxyXbs7zsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDlLzFwDENsBF93B3BoXYCbbQh2IMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85NzEzNGYxOC0xMWUxLTQxYWUtYmIwNS05ZmJmNDgyMTJiN2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk3MTM0ZjE4 LTExZTEtNDFhZS1iYjA1LTlmYmY0ODIxMmI3ZC8wLzM5NEJDQzVDMDMxMERCMDEx N0REQzFEQzFBMTc2MDI2REI0MjFEODgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BACdQr4wDQYJKoZIhvcNAQELBQADggEBAGQQJR6LhcNz+6vThZ7GLt9guJduLWkF pAyEcT+tknfQSciKrq6brxLlWocTCEgzQNZ2yhDoiWJ3uwSpi/uQGNWWpTHd7B00 HXjIUkxPmYnPM61FJx1IkZUQQtqxX40HUfCK0tHutoQ2t2eWdadRrFaHHdkm4sQQ yYirJrWVRAXrPlvTVwYcrTMYP9pioyYEQznDhHatyQFHkyj9cT0Hk8FSJ6qk078E iQiGEOvaEEfH8O+xsQQVVW6SetUj4Zhw4C9KoC3vAEk1+CrfW4RyIPZwYTaGXfke f3rHf3xWeyRDVawmEymMayWtrBvDLIWPTmRJrBKN8MNj9/DvZ+p1Cyw= -----END CERTIFICATE-----Generated at Sun May 11 08:28:41 2025 by rpki-client