$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AA90F6A6378710CD695B4CC742651F235E503C5B.cer File: AA90F6A6378710CD695B4CC742651F235E503C5B.cer (raw, json) Hash identifier: sqs71r9L1ujqs3vnoX7tvsa2z9LkAmBM9ZvaurBO/MY= Subject key identifier: AA:90:F6:A6:37:87:10:CD:69:5B:4C:C7:42:65:1F:23:5E:50:3C:5B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 360D0E172D32921609138180E410132C11AC1A13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/AA90F6A6378710CD695B4CC742651F235E503C5B.mft caRepository: rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 30 Sep 2025 01:36:23 +0000 Certificate not after: Tue 29 Sep 2026 01:41:23 +0000 Subordinate resources: IP: 180.131.128.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 23 Oct 2025 14:07:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:0d:0e:17:2d:32:92:16:09:13:81:80:e4:10:13:2c:11:ac:1a:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 30 01:36:23 2025 GMT Not After : Sep 29 01:41:23 2026 GMT Subject: CN=AA90F6A6378710CD695B4CC742651F235E503C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:de:9e:7b:ce:82:78:d8:1e:64:0f:51:a9:1b: ea:52:75:0e:5a:2e:d6:74:41:ca:04:ab:b0:55:6b: 0f:c9:ae:f9:8b:1e:db:2f:dd:dc:9f:40:33:00:7c: 7c:be:89:4c:ab:0e:d2:40:ec:e1:96:6e:dd:9a:83: 1b:45:0b:ea:e4:14:2a:7b:d3:83:be:63:89:05:9c: 7f:9e:73:62:10:49:df:ca:49:7f:18:a0:49:ad:dd: bb:9d:c7:fe:85:01:35:fa:c6:80:62:6f:ba:df:62: 7e:85:be:b8:7b:be:41:a5:59:d7:43:a6:f0:8e:42: b3:f7:d7:9e:1d:29:d3:bd:3f:dc:08:88:9a:ef:14: 3a:03:60:15:08:cb:ec:c0:ed:9e:11:d5:5e:87:df: 2e:2f:4f:f1:e8:9c:81:3d:93:48:f6:4c:c6:eb:2d: ae:4d:77:fe:56:6a:92:29:45:d8:35:35:54:54:96: 65:1e:7a:8b:eb:4c:e9:46:32:08:1e:d7:b2:8a:12: 0f:04:a0:c8:c5:b1:d5:9b:89:39:be:4b:53:e9:42: 94:25:77:5d:40:c4:79:7a:91:b7:03:64:96:b8:1f: 5e:46:a3:a1:8c:92:df:77:46:f7:5c:cf:8f:78:47: 2b:0f:d8:87:3c:b3:1e:1c:17:9d:ca:24:1c:1a:32: 06:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AA:90:F6:A6:37:87:10:CD:69:5B:4C:C7:42:65:1F:23:5E:50:3C:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/AA90F6A6378710CD695B4CC742651F235E503C5B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.128.0/24 Signature Algorithm: sha256WithRSAEncryption 32:21:82:ea:c7:93:37:18:f6:f2:bf:7d:ab:df:42:60:28:72: 2e:bf:b9:38:b1:9e:e1:7a:84:10:27:ac:2c:3e:b4:62:e1:02: 70:64:ab:61:68:16:48:8e:1e:12:1e:ce:ef:31:53:c4:9c:3e: bc:6d:33:92:9a:86:e9:0d:63:2f:54:56:46:85:f2:09:23:fb: d5:cc:8e:c2:74:bc:6e:66:d4:b5:03:7e:3a:df:5f:b8:be:19: 00:3d:b5:0b:ef:45:67:58:24:19:11:b7:84:de:85:4d:f5:89: b0:81:ae:81:b0:7a:1d:7b:34:cc:0a:e2:89:4d:fe:0d:ff:aa: c0:63:22:76:6f:fd:ab:f2:b0:9f:cf:08:10:a6:59:2f:87:22: f8:73:7e:4a:39:2d:ff:62:64:85:5b:2b:8d:86:75:68:72:41: 11:21:ed:cf:44:65:18:22:18:a7:93:ab:ee:39:cd:42:e8:99: 4a:8c:8e:a2:c8:60:d2:c7:a5:e8:f2:17:3a:ce:48:bf:7e:a1: 8b:88:80:3b:fe:8c:35:6a:1f:82:7d:a8:b3:2e:4e:84:94:53: 3f:54:9c:8e:7a:69:07:95:42:24:cd:05:40:9f:16:95:18:05: 4d:97:6d:17:d6:54:10:63:9b:28:59:5a:d9:df:b0:b9:2a:f6: 09:c7:2a:ac -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUNg0OFy0ykhYJE4GA5BATLBGsGhMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkzMDAxMzYyM1oX DTI2MDkyOTAxNDEyM1owMzExMC8GA1UEAxMoQUE5MEY2QTYzNzg3MTBDRDY5NUI0 Q0M3NDI2NTFGMjM1RTUwM0M1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJnennvOgnjYHmQPUakb6lJ1Dlou1nRBygSrsFVrD8mu+Yse2y/d3J9AMwB8 fL6JTKsO0kDs4ZZu3ZqDG0UL6uQUKnvTg75jiQWcf55zYhBJ38pJfxigSa3du53H /oUBNfrGgGJvut9ifoW+uHu+QaVZ10Om8I5Cs/fXnh0p070/3AiImu8UOgNgFQjL 7MDtnhHVXoffLi9P8eicgT2TSPZMxustrk13/lZqkilF2DU1VFSWZR56i+tM6UYy CB7XsooSDwSgyMWx1ZuJOb5LU+lClCV3XUDEeXqRtwNklrgfXkajoYyS33dG91zP j3hHKw/YhzyzHhwXncokHBoyBnMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKqQ9qY3hxDNaVtMx0JlHyNeUDxbMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZDAyYTU4ZC1iOTU4LTQyMTktODZkMy02MWU0M2NlZTMxOWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMDJhNThk LWI5NTgtNDIxOS04NmQzLTYxZTQzY2VlMzE5YS8wL0FBOTBGNkE2Mzc4NzEwQ0Q2 OTVCNENDNzQyNjUxRjIzNUU1MDNDNUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC0g4AwDQYJKoZIhvcNAQELBQADggEBADIhgurHkzcY9vK/favfQmAoci6/uTix nuF6hBAnrCw+tGLhAnBkq2FoFkiOHhIezu8xU8ScPrxtM5KahukNYy9UVkaF8gkj +9XMjsJ0vG5m1LUDfjrfX7i+GQA9tQvvRWdYJBkRt4TehU31ibCBroGweh17NMwK 4olN/g3/qsBjInZv/avysJ/PCBCmWS+HIvhzfko5Lf9iZIVbK42GdWhyQREh7c9E ZRgiGKeTq+45zULomUqMjqLIYNLHpejyFzrOSL9+oYuIgDv+jDVqH4J9qLMuToSU Uz9UnI56aQeVQiTNBUCfFpUYBU2XbRfWVBBjmyhZWtnfsLkq9gnHKqw= -----END CERTIFICATE-----Generated at Mon Oct 20 11:36:29 2025 by rpki-client