$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B21EB18A21CA5136A04F43EC18E1AA867B348052.cer File: B21EB18A21CA5136A04F43EC18E1AA867B348052.cer (raw, json) Hash identifier: Uh3IRGAPODgevhsz4ijTSOGT7ktXJp3XfXlJWTEH1pE= Subject key identifier: B2:1E:B1:8A:21:CA:51:36:A0:4F:43:EC:18:E1:AA:86:7B:34:80:52 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 017245C0F52CA15C913452FA847609CC96DCF790 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0/B21EB18A21CA5136A04F43EC18E1AA867B348052.mft caRepository: rsync://repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 19 Jun 2025 23:39:50 +0000 Certificate not after: Thu 18 Jun 2026 23:44:50 +0000 Subordinate resources: IP: 103.186.200.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 04 Jul 2025 15:45:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:72:45:c0:f5:2c:a1:5c:91:34:52:fa:84:76:09:cc:96:dc:f7:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 19 23:39:50 2025 GMT Not After : Jun 18 23:44:50 2026 GMT Subject: CN=B21EB18A21CA5136A04F43EC18E1AA867B348052 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:46:ee:77:2c:eb:cb:a0:c4:f3:d7:43:6e:2a: bb:21:93:9c:c2:ae:99:3c:9c:50:c4:5b:99:e9:8d: 57:a5:a7:7f:d0:b0:ce:cf:51:92:0e:a2:73:1e:af: 3f:8b:38:7a:93:80:36:61:68:0d:b6:42:79:9e:13: 47:33:f6:8b:73:44:5f:8e:da:c1:c2:0c:65:41:83: e9:06:fe:4c:80:08:ab:f1:af:55:1a:3f:b6:9c:dc: 8f:9d:f2:f1:04:95:c2:7b:4a:8b:68:65:52:77:10: a0:85:a5:f0:ba:95:30:a1:8e:a1:31:b3:59:21:c5: 4b:1d:a0:d0:f8:3e:c3:8c:6b:60:2f:d1:8c:be:a2: e5:b5:32:e9:77:12:70:bb:b5:ab:51:65:1e:69:df: e0:b2:34:5a:2b:69:22:46:36:dc:d1:e6:6f:96:08: 0a:91:d4:e1:0e:fb:fd:ce:a5:c3:1d:13:4e:93:16: 0b:b5:0b:92:f6:19:b8:7c:0e:05:0d:71:1c:e8:a7: 7e:73:ce:42:87:a7:5a:ab:cc:db:81:55:92:b1:1e: 14:dc:24:11:25:7e:88:84:f8:ae:14:17:58:aa:e5: ea:bd:6e:d3:5b:74:a9:d7:e6:61:a2:4f:cf:ca:32: 51:54:b4:54:19:e0:5a:15:43:6b:de:bf:71:d5:99: 98:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B2:1E:B1:8A:21:CA:51:36:A0:4F:43:EC:18:E1:AA:86:7B:34:80:52 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c9577c3c-66cd-40a4-afc5-6c6f8b664a51/0/B21EB18A21CA5136A04F43EC18E1AA867B348052.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.200.0/23 Signature Algorithm: sha256WithRSAEncryption 7a:ee:32:49:62:2a:12:9c:a2:b2:10:07:d4:02:0a:9c:40:73: 10:b9:e5:5c:ed:6d:f6:32:33:40:b6:f9:f0:1c:0b:59:08:2f: a5:fc:1e:83:30:f3:f9:cd:26:de:8d:3a:09:f6:3d:99:86:2b: 4c:9b:c8:0e:2f:c1:c9:d6:b1:b7:1b:0c:68:e6:ab:29:d2:fb: a4:60:17:0a:b4:67:28:75:00:a8:28:40:8c:e5:75:03:e2:ca: c2:0f:94:94:11:a4:43:76:d6:8e:03:5d:90:f1:8d:4e:88:78: 46:81:19:db:b0:34:45:65:c5:2f:d5:cf:2f:61:c5:34:a2:40: e1:78:64:59:29:87:eb:50:c9:bf:d4:0b:56:d5:63:8e:ba:51: d1:a3:f1:87:ba:57:f5:6e:c5:58:25:39:8d:42:4d:55:65:da: 08:b2:aa:39:25:d7:6b:7d:7c:b4:3a:62:c2:b9:a9:23:b1:d5: ae:98:04:03:f1:e5:81:fe:14:76:08:83:28:a1:03:7e:c2:ba: aa:7a:1f:5b:f1:f4:c8:e6:29:a9:27:4e:c0:26:d3:41:c5:8e: e1:76:c3:2f:07:03:18:b8:e3:83:0a:20:e5:9d:f6:5a:80:11: 9e:a7:c9:82:10:9d:aa:0d:6f:7e:19:d3:de:ce:0b:1b:bf:54: 39:6b:39:af -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAXJFwPUsoVyRNFL6hHYJzJbc95AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYxOTIzMzk1MFoX DTI2MDYxODIzNDQ1MFowMzExMC8GA1UEAxMoQjIxRUIxOEEyMUNBNTEzNkEwNEY0 M0VDMThFMUFBODY3QjM0ODA1MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL5G7ncs68ugxPPXQ24quyGTnMKumTycUMRbmemNV6Wnf9Cwzs9Rkg6icx6v P4s4epOANmFoDbZCeZ4TRzP2i3NEX47awcIMZUGD6Qb+TIAIq/GvVRo/tpzcj53y 8QSVwntKi2hlUncQoIWl8LqVMKGOoTGzWSHFSx2g0Pg+w4xrYC/RjL6i5bUy6XcS cLu1q1FlHmnf4LI0WitpIkY23NHmb5YICpHU4Q77/c6lwx0TTpMWC7ULkvYZuHwO BQ1xHOinfnPOQoenWqvM24FVkrEeFNwkESV+iIT4rhQXWKrl6r1u01t0qdfmYaJP z8oyUVS0VBngWhVDa96/cdWZmBUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLIesYohylE2oE9D7BjhqoZ7NIBSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jOTU3N2MzYy02NmNkLTQwYTQtYWZjNS02YzZmOGI2NjRhNTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NTc3YzNj LTY2Y2QtNDBhNC1hZmM1LTZjNmY4YjY2NGE1MS8wL0IyMUVCMThBMjFDQTUxMzZB MDRGNDNFQzE4RTFBQTg2N0IzNDgwNTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnusgwDQYJKoZIhvcNAQELBQADggEBAHruMkliKhKcorIQB9QCCpxAcxC55Vzt bfYyM0C2+fAcC1kIL6X8HoMw8/nNJt6NOgn2PZmGK0ybyA4vwcnWsbcbDGjmqynS +6RgFwq0Zyh1AKgoQIzldQPiysIPlJQRpEN21o4DXZDxjU6IeEaBGduwNEVlxS/V zy9hxTSiQOF4ZFkph+tQyb/UC1bVY466UdGj8Ye6V/VuxVglOY1CTVVl2giyqjkl 12t9fLQ6YsK5qSOx1a6YBAPx5YH+FHYIgyihA37Cuqp6H1vx9MjmKaknTsAm00HF juF2wy8HAxi444MKIOWd9lqAEZ6nyYIQnaoNb34Z097OCxu/VDlrOa8= -----END CERTIFICATE-----Generated at Tue Jul 1 10:45:12 2025 by rpki-client