$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/6592459773B9BF90E892EF4DE9361A991482809F.cer File: 6592459773B9BF90E892EF4DE9361A991482809F.cer (raw, json) Hash identifier: n17YrpEOrOyemHp5ZMjtYx9fIS0cPdevGTgF8F4x6rY= Subject key identifier: 65:92:45:97:73:B9:BF:90:E8:92:EF:4D:E9:36:1A:99:14:82:80:9F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 550B40CAB341BA581C9ED657E69BA82E92CB7128 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/6592459773B9BF90E892EF4DE9361A991482809F.mft caRepository: rsync://repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 09 May 2025 17:47:37 +0000 Certificate not after: Fri 08 May 2026 17:52:37 +0000 Subordinate resources: IP: 103.211.106.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 17 May 2025 11:48:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:0b:40:ca:b3:41:ba:58:1c:9e:d6:57:e6:9b:a8:2e:92:cb:71:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 9 17:47:37 2025 GMT Not After : May 8 17:52:37 2026 GMT Subject: CN=6592459773B9BF90E892EF4DE9361A991482809F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:15:b2:94:3b:58:c9:58:3f:94:f4:4e:44:04: 78:07:91:ab:f0:0a:2f:87:dd:b5:2c:cf:d7:8a:07: 9c:87:62:bf:ae:b2:ac:72:dc:35:45:11:f8:64:7d: 7f:75:e7:75:3d:b2:de:1c:4c:d7:06:76:fa:80:60: a7:89:0e:dd:ed:9b:3a:42:75:d0:1f:c4:59:f1:8a: 65:6e:9f:94:b6:d0:9a:c4:12:05:37:13:1d:dc:19: 06:2f:8e:58:f4:ae:52:d7:45:d1:0e:b9:cb:6a:b5: 76:01:1a:59:de:b5:8e:cf:0a:b1:ff:49:c6:f3:d4: 02:f1:cd:0f:54:c3:47:09:6a:47:78:bc:24:78:eb: c2:ee:4f:f3:fe:41:35:de:28:09:5c:e5:c2:ee:6f: 09:fd:55:fa:44:93:82:f4:63:03:3c:13:17:fc:55: 4f:c1:44:42:e0:ac:bd:a8:59:24:bf:87:d1:20:bc: 2b:86:36:87:18:0c:3a:0e:9c:d1:5d:36:9f:20:01: ee:76:e8:d5:9d:c5:98:ec:44:28:31:4e:60:da:98: a6:83:d6:19:b9:07:27:99:c1:fa:27:d0:54:9d:6c: db:1d:8d:cf:c4:f5:dd:d9:20:37:07:5b:4c:df:9b: b7:6d:5c:02:4b:d8:4a:20:2b:53:d2:c9:dd:fa:b5: 82:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 65:92:45:97:73:B9:BF:90:E8:92:EF:4D:E9:36:1A:99:14:82:80:9F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a878c062-b092-4025-9b68-bfeb9b65a5a0/0/6592459773B9BF90E892EF4DE9361A991482809F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.211.106.0/23 Signature Algorithm: sha256WithRSAEncryption 89:b2:2d:71:55:cf:d2:86:e3:e8:fc:c5:cb:b8:bc:7b:88:f0: 72:51:6d:39:4a:02:5a:7b:72:54:5e:22:00:3a:95:e5:c1:3c: 72:1b:68:34:0f:10:1c:e2:b0:bd:0f:81:cd:e0:2e:2f:b8:f3: 55:37:51:09:17:2c:8c:cb:00:e1:f3:e2:5a:3c:33:1e:44:96: bd:54:b8:05:5e:9f:a1:35:b2:df:83:25:97:ec:2c:6e:83:b6: 5a:dc:df:cc:5e:ce:39:52:02:7c:d1:69:86:f9:9a:5c:83:71: 78:bd:a7:a9:2e:47:a2:1b:5b:9b:3c:e4:5a:09:00:ff:52:7c: ee:98:6b:3e:41:a5:94:43:72:f1:76:c8:89:08:bb:14:b9:cc: 46:62:50:8f:08:ea:75:32:d8:3b:55:8c:7b:63:8d:52:a6:46: 8b:90:6f:01:ea:8e:91:4a:24:99:cd:c2:8d:45:7e:8b:d4:9c: 93:e2:30:f5:cc:51:31:55:1a:43:cb:12:1e:c8:10:f1:8b:77: 6c:f6:d2:47:99:17:85:d3:81:27:ff:6e:83:0e:1a:c4:5b:67: 33:32:ca:c6:78:65:57:29:0c:d0:33:79:63:84:52:0e:9c:55: 82:1b:bf:5d:27:51:fe:71:c0:6b:cc:02:0b:6a:4d:d3:ba:5c: e2:83:2c:e0 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVQtAyrNBulgcntZX5puoLpLLcSgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUwOTE3NDczN1oX DTI2MDUwODE3NTIzN1owMzExMC8GA1UEAxMoNjU5MjQ1OTc3M0I5QkY5MEU4OTJF RjRERTkzNjFBOTkxNDgyODA5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMcVspQ7WMlYP5T0TkQEeAeRq/AKL4fdtSzP14oHnIdiv66yrHLcNUUR+GR9 f3XndT2y3hxM1wZ2+oBgp4kO3e2bOkJ10B/EWfGKZW6flLbQmsQSBTcTHdwZBi+O WPSuUtdF0Q65y2q1dgEaWd61js8Ksf9JxvPUAvHND1TDRwlqR3i8JHjrwu5P8/5B Nd4oCVzlwu5vCf1V+kSTgvRjAzwTF/xVT8FEQuCsvahZJL+H0SC8K4Y2hxgMOg6c 0V02nyAB7nbo1Z3FmOxEKDFOYNqYpoPWGbkHJ5nB+ifQVJ1s2x2Nz8T13dkgNwdb TN+bt21cAkvYSiArU9LJ3fq1gqMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGWSRZdzub+Q6JLvTek2GpkUgoCfMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hODc4YzA2Mi1iMDkyLTQwMjUtOWI2OC1iZmViOWI2NWE1YTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NzhjMDYy LWIwOTItNDAyNS05YjY4LWJmZWI5YjY1YTVhMC8wLzY1OTI0NTk3NzNCOUJGOTBF ODkyRUY0REU5MzYxQTk5MTQ4MjgwOUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFn02owDQYJKoZIhvcNAQELBQADggEBAImyLXFVz9KG4+j8xcu4vHuI8HJRbTlK Alp7clReIgA6leXBPHIbaDQPEBzisL0Pgc3gLi+481U3UQkXLIzLAOHz4lo8Mx5E lr1UuAVen6E1st+DJZfsLG6Dtlrc38xezjlSAnzRaYb5mlyDcXi9p6kuR6IbW5s8 5FoJAP9SfO6Yaz5BpZRDcvF2yIkIuxS5zEZiUI8I6nUy2DtVjHtjjVKmRouQbwHq jpFKJJnNwo1FfovUnJPiMPXMUTFVGkPLEh7IEPGLd2z20keZF4XTgSf/boMOGsRb ZzMyysZ4ZVcpDNAzeWOEUg6cVYIbv10nUf5xwGvMAgtqTdO6XOKDLOA= -----END CERTIFICATE-----Generated at Wed May 14 10:36:14 2025 by rpki-client