$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer File: 1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer (raw, json) Hash identifier: GybDVSS1xq+8h7avUpWg2/qQyUw2bmH4TFGJVs1qHR8= Subject key identifier: 1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6CBBCAEB1A86AE614E3FE7CD500998D4B210E057 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.mft caRepository: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 06 May 2025 11:15:52 +0000 Certificate not after: Tue 05 May 2026 11:20:52 +0000 Subordinate resources: IP: 103.14.74.0/23 IP: 2001:df7:5400::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 May 2025 15:40:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:bb:ca:eb:1a:86:ae:61:4e:3f:e7:cd:50:09:98:d4:b2:10:e0:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 6 11:15:52 2025 GMT Not After : May 5 11:20:52 2026 GMT Subject: CN=1EEA71B4C70A47D53BE3204FE2C48CEF927EC731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:a7:13:2a:5e:58:0f:1f:e4:ab:97:ee:88: 29:3f:25:e3:05:a8:7b:12:a3:32:ab:e5:2f:1c:77: 96:59:b3:42:51:08:7f:30:ae:f1:45:2b:9c:5f:54: 04:24:0c:47:ba:53:39:27:3f:67:74:6e:da:70:a0: cf:a2:3b:13:7c:72:85:be:be:cc:44:5e:63:c4:27: 9e:49:b3:c1:0a:b0:dd:56:95:d4:84:41:ac:9e:3e: 8f:68:56:3d:07:d8:85:69:4f:dc:dd:4b:3b:bc:6f: cb:c4:49:35:12:77:aa:64:ae:81:2a:a3:8c:ca:d3: 07:49:55:49:7f:9a:c4:da:57:b1:63:0f:ab:15:aa: a3:4b:7a:bd:2a:35:97:96:b0:a6:ae:50:28:91:f7: 1e:be:e9:58:b9:0d:dc:f6:97:c4:53:84:fa:9e:e3: 56:ed:1c:04:4a:fd:d9:b6:37:d8:20:c8:70:30:01: 96:cf:36:f5:af:b0:ef:b9:79:a1:35:87:57:7b:e3: 98:b4:5a:47:70:82:bd:a3:98:a4:c4:45:4d:6f:06: f3:e5:63:21:e9:77:ca:4e:62:10:2f:ee:37:a5:7c: 68:e7:7a:f0:3a:e5:14:a0:76:e3:8c:a3:d4:2c:aa: da:79:0c:49:9d:72:d8:bf:e1:04:a0:1a:47:80:8f: df:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.74.0/23 IPv6: 2001:df7:5400::/48 Signature Algorithm: sha256WithRSAEncryption 3e:c3:25:13:eb:c2:f5:2a:4f:17:f4:fd:9e:55:ef:ef:27:54: 4d:9d:ea:38:d6:b0:73:46:ac:94:17:40:de:0a:66:1f:86:27: 3c:f0:48:59:db:50:da:6e:0d:24:2d:ad:77:40:60:56:76:87: 01:35:9d:d1:36:38:e6:e9:94:f7:9a:bf:c9:5f:dd:59:66:d7: 50:1b:ec:0c:04:a0:0a:ad:e7:c5:51:38:d9:08:7b:05:44:22: 92:d5:ea:08:33:a0:05:bb:15:36:ab:17:e6:33:a7:f8:e2:60: 59:4c:26:1c:92:6d:b5:8a:e6:66:2a:97:53:91:21:0c:72:0e: 3c:81:ee:86:52:a3:2d:60:f0:5c:ce:4a:44:1e:1a:6b:95:1a: db:95:1a:61:a4:44:b4:2f:9b:f8:d5:35:2f:71:c8:8d:0d:c4: 82:1e:77:d5:0d:de:e0:4b:99:46:c4:32:2d:7d:82:56:ef:65: 58:05:49:10:b9:9e:44:8b:bb:b7:5a:89:f0:61:01:b0:21:8c: 8d:b9:78:b6:60:9a:2f:1e:4f:56:10:b8:09:87:70:6d:70:96: 58:27:a1:d2:68:e3:7d:ef:07:78:47:27:53:9c:71:25:60:92: f5:99:d9:17:6c:58:cb:d8:13:52:83:89:0e:b7:2c:b2:ef:80: 09:0e:ce:0a -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUbLvK6xqGrmFOP+fNUAmY1LIQ4FcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwNjExMTU1MloX DTI2MDUwNTExMjA1MlowMzExMC8GA1UEAxMoMUVFQTcxQjRDNzBBNDdENTNCRTMy MDRGRTJDNDhDRUY5MjdFQzczMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBSpxMqXlgPH+Srl+6IKT8l4wWoexKjMqvlLxx3llmzQlEIfzCu8UUrnF9U BCQMR7pTOSc/Z3Ru2nCgz6I7E3xyhb6+zEReY8QnnkmzwQqw3VaV1IRBrJ4+j2hW PQfYhWlP3N1LO7xvy8RJNRJ3qmSugSqjjMrTB0lVSX+axNpXsWMPqxWqo0t6vSo1 l5awpq5QKJH3Hr7pWLkN3PaXxFOE+p7jVu0cBEr92bY32CDIcDABls829a+w77l5 oTWHV3vjmLRaR3CCvaOYpMRFTW8G8+VjIel3yk5iEC/uN6V8aOd68DrlFKB244yj 1Cyq2nkMSZ1y2L/hBKAaR4CP3y8CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFB7qcbTHCkfVO+MgT+LEjO+SfscxMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xMDAwZTIzZS1mNDRhLTRjZmMtYmY1Ni1kOTlhMDkyZDczMTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwMDBlMjNl LWY0NGEtNGNmYy1iZjU2LWQ5OWEwOTJkNzMxNC8wLzFFRUE3MUI0QzcwQTQ3RDUz QkUzMjA0RkUyQzQ4Q0VGOTI3RUM3MzEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnDkowDwQCAAIwCQMHACABDfdUADANBgkqhkiG9w0BAQsFAAOCAQEAPsMlE+vC 9SpPF/T9nlXv7ydUTZ3qONawc0aslBdA3gpmH4YnPPBIWdtQ2m4NJC2td0BgVnaH ATWd0TY45umU95q/yV/dWWbXUBvsDASgCq3nxVE42Qh7BUQiktXqCDOgBbsVNqsX 5jOn+OJgWUwmHJJttYrmZiqXU5EhDHIOPIHuhlKjLWDwXM5KRB4aa5Ua25UaYaRE tC+b+NU1L3HIjQ3Egh531Q3e4EuZRsQyLX2CVu9lWAVJELmeRIu7t1qJ8GEBsCGM jbl4tmCaLx5PVhC4CYdwbXCWWCeh0mjjfe8HeEcnU5xxJWCS9ZnZF2xYy9gTUoOJ Drcssu+ACQ7OCg== -----END CERTIFICATE-----Generated at Thu May 8 12:34:25 2025 by rpki-client