$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/407919FF69A512DDAE7CCD48BE288F17073A5512.cer File: 407919FF69A512DDAE7CCD48BE288F17073A5512.cer (raw, json) Hash identifier: cU3AXnWf7nEIe7YNHlG2JdUXjn1KdOjrcEZhkH6p1KE= Subject key identifier: 40:79:19:FF:69:A5:12:DD:AE:7C:CD:48:BE:28:8F:17:07:3A:55:12 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0335AFEF189EC8688C63FB8EFB225A20C26E9208 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/72c00f79-49eb-4525-9026-a238ff448070/0/407919FF69A512DDAE7CCD48BE288F17073A5512.mft caRepository: rsync://repo-rpki.idnic.net/repo/72c00f79-49eb-4525-9026-a238ff448070/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 16 Jul 2025 07:53:48 +0000 Certificate not after: Wed 15 Jul 2026 07:58:48 +0000 Subordinate resources: IP: 103.120.232.0/24 IP: 2001:df6:2700::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 00:11:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:35:af:ef:18:9e:c8:68:8c:63:fb:8e:fb:22:5a:20:c2:6e:92:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 16 07:53:48 2025 GMT Not After : Jul 15 07:58:48 2026 GMT Subject: CN=407919FF69A512DDAE7CCD48BE288F17073A5512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:79:1a:8e:bc:25:e1:d3:85:e6:0d:d0:28:b9: 67:c8:21:52:e8:0c:0d:9b:e1:89:d9:c3:66:3b:c8: ac:35:fd:5f:ff:95:da:ac:0c:cf:af:2a:9f:11:26: 11:d7:69:1a:9a:86:e3:8f:d5:3a:75:c4:2d:a8:3b: f2:fb:a2:c3:3f:12:8b:54:c3:a8:1d:df:f8:d1:1b: 89:31:f0:4c:cc:04:9e:b9:22:52:a6:13:0f:81:9b: b9:bf:72:0f:41:49:5b:d1:c8:cb:80:2a:52:7e:48: 9a:79:dc:8f:ea:2d:20:c3:06:c0:b6:90:f3:4e:7b: 3f:51:1b:4e:61:1d:c8:f9:6f:9e:ff:63:43:df:fb: 72:e8:f4:72:17:79:bb:78:4f:dc:c0:19:1b:b1:6a: ff:d6:18:fc:6f:6f:bd:17:7e:ee:04:8e:21:d4:b2: fb:8d:a8:fe:f7:e2:f8:4c:41:5f:6b:f6:3c:7c:06: 95:e9:a6:c7:c2:9c:93:cf:fe:a8:71:30:79:42:7c: bd:d8:01:74:31:9f:3e:08:dc:bd:42:90:76:97:12: 9d:c3:d3:59:17:a5:1b:78:d1:6d:ca:87:a7:3f:ea: c3:40:80:17:89:32:39:8b:7e:54:d3:e7:19:70:05: d7:47:a7:d7:f1:ed:1a:e8:c8:79:7f:d1:ee:33:c9: a8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 40:79:19:FF:69:A5:12:DD:AE:7C:CD:48:BE:28:8F:17:07:3A:55:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/72c00f79-49eb-4525-9026-a238ff448070/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/72c00f79-49eb-4525-9026-a238ff448070/0/407919FF69A512DDAE7CCD48BE288F17073A5512.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.232.0/24 IPv6: 2001:df6:2700::/48 Signature Algorithm: sha256WithRSAEncryption 4b:9b:56:66:4a:ab:2f:30:50:a8:54:6c:04:03:80:db:6c:65: 05:eb:2e:93:f8:3e:88:b6:34:ed:ef:1e:cc:86:59:eb:2e:04: 52:af:ca:1f:74:d3:88:8d:23:2f:13:a3:8a:0d:ad:17:f6:c9: f1:3e:ff:f5:e8:80:51:dc:0e:5e:f6:33:e9:b2:6a:8c:96:33: 37:de:c9:d3:08:94:d6:e2:08:be:f8:67:95:30:25:ce:7e:8d: 9e:42:2b:4b:54:0b:e4:8c:88:1d:0f:60:36:4c:96:4c:30:a1: 81:f7:55:b2:01:37:c7:09:d3:b3:d3:a5:44:e8:18:5c:c6:86: 8a:51:f4:1d:f7:43:c2:15:6f:3a:e4:a2:f8:f1:17:c1:68:04: ec:b7:ab:c7:c9:92:12:af:30:17:9c:14:6d:fb:e7:dc:f6:78: bc:da:13:99:72:3b:c4:77:ed:a4:d3:2f:a2:cf:37:e6:88:8e: 25:18:59:3b:ae:40:85:3c:ec:6f:88:60:14:9b:4c:cb:07:da: b6:17:e0:b4:10:c7:4f:08:ef:c9:2b:18:58:66:cb:52:aa:f7: c3:d1:cd:b4:25:69:a3:16:ca:f3:8f:25:bd:83:ea:c6:a0:89: c8:f8:e3:b2:67:b2:4e:43:05:78:9c:81:fc:de:58:33:2c:03: ad:53:95:cc -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUAzWv7xieyGiMY/uO+yJaIMJukggwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDcxNjA3NTM0OFoX DTI2MDcxNTA3NTg0OFowMzExMC8GA1UEAxMoNDA3OTE5RkY2OUE1MTJEREFFN0ND RDQ4QkUyODhGMTcwNzNBNTUxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK95Go68JeHTheYN0Ci5Z8ghUugMDZvhidnDZjvIrDX9X/+V2qwMz68qnxEm EddpGpqG44/VOnXELag78vuiwz8Si1TDqB3f+NEbiTHwTMwEnrkiUqYTD4Gbub9y D0FJW9HIy4AqUn5Imnncj+otIMMGwLaQ8057P1EbTmEdyPlvnv9jQ9/7cuj0chd5 u3hP3MAZG7Fq/9YY/G9vvRd+7gSOIdSy+42o/vfi+ExBX2v2PHwGlemmx8Kck8/+ qHEweUJ8vdgBdDGfPgjcvUKQdpcSncPTWRelG3jRbcqHpz/qw0CAF4kyOYt+VNPn GXAF10en1/HtGujIeX/R7jPJqAkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEB5Gf9ppRLdrnzNSL4ojxcHOlUSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83MmMwMGY3OS00OWViLTQ1MjUtOTAyNi1hMjM4ZmY0NDgwNzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyYzAwZjc5 LTQ5ZWItNDUyNS05MDI2LWEyMzhmZjQ0ODA3MC8wLzQwNzkxOUZGNjlBNTEyRERB RTdDQ0Q0OEJFMjg4RjE3MDczQTU1MTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABneOgwDwQCAAIwCQMHACABDfYnADANBgkqhkiG9w0BAQsFAAOCAQEAS5tWZkqr LzBQqFRsBAOA22xlBesuk/g+iLY07e8ezIZZ6y4EUq/KH3TTiI0jLxOjig2tF/bJ 8T7/9eiAUdwOXvYz6bJqjJYzN97J0wiU1uIIvvhnlTAlzn6NnkIrS1QL5IyIHQ9g NkyWTDChgfdVsgE3xwnTs9OlROgYXMaGilH0HfdDwhVvOuSi+PEXwWgE7Lerx8mS Eq8wF5wUbfvn3PZ4vNoTmXI7xHftpNMvos835oiOJRhZO65AhTzsb4hgFJtMywfa thfgtBDHTwjvySsYWGbLUqr3w9HNtCVpoxbK848lvYPqxqCJyPjjsmeyTkMFeJyB /N5YMywDrVOVzA== -----END CERTIFICATE-----Generated at Mon Jul 21 02:24:03 2025 by rpki-client