$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/4AA75AF77EC48924696455B9F02192353D9C4014.cer File: 4AA75AF77EC48924696455B9F02192353D9C4014.cer (raw, json) Hash identifier: X+IHM1UIX0/073c4KN48E4XHxHv5ivxKCPyP6ng7Q4w= Subject key identifier: 4A:A7:5A:F7:7E:C4:89:24:69:64:55:B9:F0:21:92:35:3D:9C:40:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0A295ACA24E2F9B8CAA36A3E50F5C11BB4695094 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0/4AA75AF77EC48924696455B9F02192353D9C4014.mft caRepository: rsync://repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 17 Jun 2025 21:14:46 +0000 Certificate not after: Tue 16 Jun 2026 21:19:46 +0000 Subordinate resources: IP: 103.162.72.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 02 Jul 2025 07:23:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:29:5a:ca:24:e2:f9:b8:ca:a3:6a:3e:50:f5:c1:1b:b4:69:50:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 17 21:14:46 2025 GMT Not After : Jun 16 21:19:46 2026 GMT Subject: CN=4AA75AF77EC48924696455B9F02192353D9C4014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:11:43:92:6e:b5:13:f1:38:f5:36:f2:84:c4: 37:c0:7b:8a:27:ad:99:16:10:f8:6b:65:9e:3c:df: 0e:68:ba:0b:8e:f7:d5:64:6c:c7:77:eb:41:85:de: 8c:22:e5:95:86:7e:50:a5:36:63:44:c5:27:50:e1: 74:55:0d:9a:39:33:6e:bc:06:d1:c4:b6:5f:87:55: e4:3e:41:ed:d5:de:f5:3f:fe:68:c1:aa:49:30:69: 39:c1:dd:0d:cf:8c:cd:96:bb:e3:1d:bd:f3:da:f6: fc:ce:d6:27:c2:ae:fc:a5:e6:48:1a:99:07:0e:bf: f3:93:5b:e3:1a:66:45:ab:23:81:0f:17:20:1c:e7: 5a:bc:91:d0:d4:9a:78:4f:df:64:fe:1d:a0:c4:c3: 33:c2:79:8e:73:23:99:73:c5:d2:6b:41:7a:c9:7e: cd:14:ab:c2:7c:03:31:6b:ad:82:cf:10:4d:00:5f: e6:24:48:e7:1f:b1:6b:f1:95:29:25:5d:09:a8:fc: 1d:b3:d8:53:b9:15:d7:fe:9a:f8:bb:d5:d0:b7:39: bd:c9:0e:a5:75:04:1f:72:f2:76:3e:b6:14:5b:ee: 64:63:4a:f3:a8:8a:5a:43:5f:16:08:48:d2:d6:9a: 9c:23:8a:21:58:ad:df:f9:03:46:db:82:a6:1f:35: 91:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4A:A7:5A:F7:7E:C4:89:24:69:64:55:B9:F0:21:92:35:3D:9C:40:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e1f29aba-6d7c-4435-953c-604988731596/0/4AA75AF77EC48924696455B9F02192353D9C4014.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.72.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:f6:cc:41:9b:23:c8:0a:c0:39:c6:07:5d:83:ba:34:44:46: 0f:aa:61:2e:5b:6f:ef:56:96:6b:49:f3:44:65:1d:b4:61:bd: d7:7b:9b:e5:cc:aa:f9:fa:72:f4:f5:92:5b:c3:eb:ea:3d:19: 10:9c:dc:ce:ad:01:e5:6c:9a:5e:bd:d3:4b:71:85:18:9f:ea: 0f:b5:6c:25:29:cc:bd:1b:32:54:e9:31:07:a9:57:8f:10:fb: 62:17:85:5b:34:dd:d0:88:bd:86:47:bf:31:8c:b6:dd:bb:27: 09:c2:2a:21:fc:d1:5f:d9:8f:fe:02:18:15:06:ae:33:24:bb: 24:9c:f5:fa:c8:37:02:98:f4:09:c9:73:0a:34:35:21:0f:53: 82:98:6f:9b:5c:1b:84:be:4c:98:f4:7d:de:b5:25:46:68:32: 9a:2a:48:6f:93:19:7b:60:7b:af:bd:8e:d1:54:e1:3b:76:36: 77:5b:75:3e:e5:16:ac:d6:1a:07:63:21:1a:a1:d6:7e:93:09: bf:27:e8:e1:e0:80:a0:a4:e6:9d:f2:04:17:0e:49:f1:81:10: 5d:91:fa:e8:66:3a:f7:af:93:91:cf:aa:da:eb:1a:df:96:5f: ee:a8:fb:4e:85:ea:69:2b:67:22:23:9c:f9:38:a5:74:05:85: 9b:ff:34:42 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCilayiTi+bjKo2o+UPXBG7RpUJQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxNzIxMTQ0NloX DTI2MDYxNjIxMTk0NlowMzExMC8GA1UEAxMoNEFBNzVBRjc3RUM0ODkyNDY5NjQ1 NUI5RjAyMTkyMzUzRDlDNDAxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKoRQ5JutRPxOPU28oTEN8B7iietmRYQ+GtlnjzfDmi6C4731WRsx3frQYXe jCLllYZ+UKU2Y0TFJ1DhdFUNmjkzbrwG0cS2X4dV5D5B7dXe9T/+aMGqSTBpOcHd Dc+MzZa74x2989r2/M7WJ8Ku/KXmSBqZBw6/85Nb4xpmRasjgQ8XIBznWryR0NSa eE/fZP4doMTDM8J5jnMjmXPF0mtBesl+zRSrwnwDMWutgs8QTQBf5iRI5x+xa/GV KSVdCaj8HbPYU7kV1/6a+LvV0Lc5vckOpXUEH3Lydj62FFvuZGNK86iKWkNfFghI 0taanCOKIVit3/kDRtuCph81kSsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEqnWvd+xIkkaWRVufAhkjU9nEAUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lMWYyOWFiYS02ZDdjLTQ0MzUtOTUzYy02MDQ5ODg3MzE1OTYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UxZjI5YWJh LTZkN2MtNDQzNS05NTNjLTYwNDk4ODczMTU5Ni8wLzRBQTc1QUY3N0VDNDg5MjQ2 OTY0NTVCOUYwMjE5MjM1M0Q5QzQwMTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnokgwDQYJKoZIhvcNAQELBQADggEBADv2zEGbI8gKwDnGB12DujRERg+qYS5b b+9WlmtJ80RlHbRhvdd7m+XMqvn6cvT1klvD6+o9GRCc3M6tAeVsml6900txhRif 6g+1bCUpzL0bMlTpMQepV48Q+2IXhVs03dCIvYZHvzGMtt27JwnCKiH80V/Zj/4C GBUGrjMkuySc9frINwKY9AnJcwo0NSEPU4KYb5tcG4S+TJj0fd61JUZoMpoqSG+T GXtge6+9jtFU4Tt2NndbdT7lFqzWGgdjIRqh1n6TCb8n6OHggKCk5p3yBBcOSfGB EF2R+uhmOvevk5HPqtrrGt+WX+6o+06F6mkrZyIjnPk4pXQFhZv/NEI= -----END CERTIFICATE-----Generated at Sun Jun 29 12:21:39 2025 by rpki-client