$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/348D53D52081AB75C21BE292C2A5077DF4B75308.cer File: 348D53D52081AB75C21BE292C2A5077DF4B75308.cer (raw, json) Hash identifier: 8T2LmchGn46a5l92yxO/3thVn/7qiUwctrGTPqV7JlE= Subject key identifier: 34:8D:53:D5:20:81:AB:75:C2:1B:E2:92:C2:A5:07:7D:F4:B7:53:08 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3AEA4A068926166542DE3AF3B87AAE8E33A67873 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/348D53D52081AB75C21BE292C2A5077DF4B75308.mft caRepository: rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 09:28:46 +0000 Certificate not after: Tue 02 Jun 2026 09:33:46 +0000 Subordinate resources: IP: 175.111.88.0/22 IP: 202.43.92.0/22 IP: 2405:2c40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Nov 2025 23:38:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ea:4a:06:89:26:16:65:42:de:3a:f3:b8:7a:ae:8e:33:a6:78:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 09:28:46 2025 GMT Not After : Jun 2 09:33:46 2026 GMT Subject: CN=348D53D52081AB75C21BE292C2A5077DF4B75308 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d5:a0:cf:66:6f:63:60:ce:8e:26:1f:9f:0e: 59:70:04:b8:98:db:01:43:fd:02:61:a9:66:38:9b: ec:68:3f:03:52:0b:22:89:56:75:f5:91:df:7d:6d: f5:40:e1:4c:c5:be:5d:3d:a6:68:b8:3f:f3:7a:0e: 7f:0d:54:53:c4:38:b2:ef:2c:6b:b1:12:ee:f5:1f: 9e:36:6e:d9:60:86:a9:3b:3e:8c:0d:d4:71:1b:45: fd:78:ff:09:d3:87:c0:dc:67:5f:73:f3:fb:ae:f2: f1:4f:01:9b:12:ce:72:f6:96:e6:cc:c2:2a:c0:1d: 6b:fc:57:fb:83:a7:57:af:12:14:6b:55:84:a6:2e: 1b:11:33:60:ee:db:74:ff:8f:70:f2:01:57:8c:17: 7a:db:33:cd:78:f9:0e:97:3f:a3:a7:8d:59:cf:c9: 1d:e4:d9:3a:e3:43:bc:cb:89:92:41:6a:f1:fd:76: e6:4e:a6:e5:57:79:28:a7:bd:f4:63:28:1f:55:b3: ed:c4:67:80:7f:4d:90:a1:d4:f3:d0:58:ba:49:4c: 9f:fc:2a:b4:74:bc:a6:70:a4:16:04:31:b4:bf:c8: 4b:d1:c9:90:55:0e:8c:c1:ee:8e:1f:74:07:27:ae: 55:59:13:70:17:e5:20:cb:70:ba:69:58:45:34:c6: 16:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 34:8D:53:D5:20:81:AB:75:C2:1B:E2:92:C2:A5:07:7D:F4:B7:53:08 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/337506c5-5ef1-4294-8902-a4114fdf3b00/0/348D53D52081AB75C21BE292C2A5077DF4B75308.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 175.111.88.0/22 202.43.92.0/22 IPv6: 2405:2c40::/32 Signature Algorithm: sha256WithRSAEncryption 1b:3f:c1:88:5d:ea:cb:7d:e7:4b:d2:4f:61:5d:a2:5c:21:6d: 88:5d:9c:d2:fd:22:d8:64:da:73:f8:b5:39:01:9e:70:57:78: 30:33:be:23:77:dd:b1:b3:96:9a:5f:f7:d6:d6:4f:34:f9:19: 4e:81:b0:9f:e0:2a:50:d6:41:d8:82:52:36:70:ce:10:a3:eb: 27:e4:f4:5e:45:8a:76:5b:ca:ca:75:08:3b:68:35:39:97:13: 4f:44:d4:7b:c5:b0:ef:2d:4d:7f:7c:89:3c:b1:7d:73:25:db: d5:b5:27:b8:75:3b:3f:c9:18:f1:a5:29:5b:c0:1f:a4:3a:22: a3:10:1b:87:70:10:e5:08:07:07:97:ae:95:bb:77:4e:7e:ac: 9f:4c:89:90:53:a4:4b:0b:e9:ca:14:2f:ac:0b:23:09:99:37: 08:48:01:b3:8b:cf:1c:fd:c1:d1:44:6e:82:20:58:f7:78:97: ea:a7:bd:52:83:b2:21:8a:40:91:6a:84:9d:3e:d8:29:36:db: b0:9f:39:e9:7a:df:a4:0c:90:93:8f:3a:c7:2b:94:9a:f0:13: df:76:b9:4e:57:ff:d6:c9:d6:76:b8:5c:04:5e:10:7c:ba:be: 99:ad:c4:40:9c:5c:16:f1:f0:d2:e3:c2:da:ae:1a:a9:45:44: 84:6f:81:a8 -----BEGIN CERTIFICATE----- MIIF2jCCBMKgAwIBAgIUOupKBokmFmVC3jrzuHqujjOmeHMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzA5Mjg0NloX DTI2MDYwMjA5MzM0NlowMzExMC8GA1UEAxMoMzQ4RDUzRDUyMDgxQUI3NUMyMUJF MjkyQzJBNTA3N0RGNEI3NTMwODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLVoM9mb2Ngzo4mH58OWXAEuJjbAUP9AmGpZjib7Gg/A1ILIolWdfWR331t 9UDhTMW+XT2maLg/83oOfw1UU8Q4su8sa7ES7vUfnjZu2WCGqTs+jA3UcRtF/Xj/ CdOHwNxnX3Pz+67y8U8BmxLOcvaW5szCKsAda/xX+4OnV68SFGtVhKYuGxEzYO7b dP+PcPIBV4wXetszzXj5Dpc/o6eNWc/JHeTZOuNDvMuJkkFq8f125k6m5Vd5KKe9 9GMoH1Wz7cRngH9NkKHU89BYuklMn/wqtHS8pnCkFgQxtL/IS9HJkFUOjMHujh90 ByeuVVkTcBflIMtwumlYRTTGFssCAwEAAaOCAs0wggLJMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDSNU9Uggat1whviksKlB330t1MIMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zMzc1MDZjNS01ZWYxLTQyOTQtODkwMi1hNDExNGZkZjNiMDAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMzNzUwNmM1 LTVlZjEtNDI5NC04OTAyLWE0MTE0ZmRmM2IwMC8wLzM0OEQ1M0Q1MjA4MUFCNzVD MjFCRTI5MkMyQTUwNzdERjRCNzUzMDgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwD BAKvb1gDBALKK1wwDQQCAAIwBwMFACQFLEAwDQYJKoZIhvcNAQELBQADggEBABs/ wYhd6st950vST2FdolwhbYhdnNL9Ithk2nP4tTkBnnBXeDAzviN33bGzlppf99bW TzT5GU6BsJ/gKlDWQdiCUjZwzhCj6yfk9F5FinZbysp1CDtoNTmXE09E1HvFsO8t TX98iTyxfXMl29W1J7h1Oz/JGPGlKVvAH6Q6IqMQG4dwEOUIBweXrpW7d05+rJ9M iZBTpEsL6coUL6wLIwmZNwhIAbOLzxz9wdFEboIgWPd4l+qnvVKDsiGKQJFqhJ0+ 2Ck227CfOel636QMkJOPOscrlJrwE992uU5X/9bJ1na4XAReEHy6vpmtxECcXBbx 8NLjwtquGqlFRIRvgag= -----END CERTIFICATE-----Generated at Mon Nov 17 02:32:11 2025 by rpki-client