$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/7ABD31DD828DD58C9D91180021903EA04D8EB58E.cer File: 7ABD31DD828DD58C9D91180021903EA04D8EB58E.cer (raw, json) Hash identifier: 8bzb9bjgOdTivhi8aeaTILC5dqw9KwvKDH6YgVXpxSA= Subject key identifier: 7A:BD:31:DD:82:8D:D5:8C:9D:91:18:00:21:90:3E:A0:4D:8E:B5:8E Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 25A956248523C51A05BEB8672E31FF44900822E9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Manifest: rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/7ABD31DD828DD58C9D91180021903EA04D8EB58E.mft caRepository: rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 20 Jun 2025 15:07:52 +0000 Certificate not after: Fri 19 Jun 2026 15:12:52 +0000 Subordinate resources: IP: 157.66.20.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 24 Jul 2025 08:33:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:a9:56:24:85:23:c5:1a:05:be:b8:67:2e:31:ff:44:90:08:22:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jun 20 15:07:52 2025 GMT Not After : Jun 19 15:12:52 2026 GMT Subject: CN=7ABD31DD828DD58C9D91180021903EA04D8EB58E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:02:26:98:08:6f:e7:a7:02:17:7e:9e:2d:00: 19:ff:df:6c:57:66:e1:7d:a0:5e:14:d5:02:0a:13: 7e:26:ad:2d:3a:12:61:42:bc:80:2b:cb:11:cd:84: 5b:c3:5e:20:51:af:c5:40:2e:2b:54:52:18:9f:3e: 12:de:08:95:53:3a:d0:f9:62:53:81:e3:4a:0c:76: 2d:24:7b:7b:23:cc:5b:ea:b5:ad:e9:8a:70:b3:a6: 56:a2:72:d7:ff:e0:60:a7:ac:f4:53:20:5e:0d:48: 84:3e:91:71:0d:a7:52:46:4b:e4:e4:9a:b9:a2:83: 29:6a:4c:28:c0:37:2a:53:69:b4:24:9f:f7:94:43: 74:e5:62:0e:fb:c1:e8:4a:54:da:73:bd:6e:b1:2f: 53:2e:42:01:2a:05:c0:04:43:c0:8d:e8:1e:b4:40: eb:c0:32:95:15:e2:a9:50:0f:71:fa:a4:cd:22:9b: d0:39:9b:c2:bd:ae:e3:0b:eb:d5:83:a0:be:ad:ee: 74:8c:98:11:59:d6:eb:ed:70:57:8a:85:aa:52:b5: d6:58:40:8d:92:79:69:56:8f:14:88:b5:10:99:36: 09:46:de:8a:4d:33:6b:c5:44:a6:32:0a:98:58:68: a5:57:7d:7e:f3:11:70:88:b9:48:c8:fa:92:cd:e0: 65:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 7A:BD:31:DD:82:8D:D5:8C:9D:91:18:00:21:90:3E:A0:4D:8E:B5:8E X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f5f5ef18-6ffa-4d69-8c0c-3518cfa8758e/0/7ABD31DD828DD58C9D91180021903EA04D8EB58E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.66.20.0/23 Signature Algorithm: sha256WithRSAEncryption 1b:d7:f0:1b:66:66:c5:ab:ea:a6:76:2c:f6:70:92:e3:83:17: dd:a1:2a:a0:e6:6e:ee:47:e1:94:a9:95:2a:f7:62:79:fc:3f: 61:3f:31:e0:f1:29:e9:be:56:ea:ee:9c:c8:95:34:23:47:c4: d7:8f:f5:6e:ac:dd:48:b0:cc:7a:b4:88:50:6f:d1:99:ae:90: 0c:c6:39:0f:95:6a:04:1c:53:81:3f:5b:01:3b:ea:f7:e3:5d: 42:d6:e1:03:3b:a0:07:c3:c7:6d:b8:9b:af:4d:b4:34:b9:0b: f3:31:60:c4:13:2b:a5:c0:2b:d8:d3:1c:47:11:b4:08:6c:7d: 96:94:e8:c2:08:f5:cc:19:b5:6a:7a:b9:72:da:0f:ad:26:68: 26:f1:3b:62:cd:8d:f2:1b:5b:b1:58:f5:46:a7:06:5b:3b:69: ce:ac:dd:57:9f:55:3b:5b:b5:d0:3d:d8:fa:6a:37:47:30:12: 54:37:dc:ee:eb:fb:4d:28:d5:6b:8a:a2:ed:8f:be:c5:cc:89: c5:b3:70:fa:95:d2:6d:f8:fa:34:47:2d:52:2f:c2:90:d9:ee: ba:1d:23:2c:47:4d:b0:27:c7:fd:0c:c9:c7:f7:2d:4b:b5:0f: b2:6d:99:c6:b3:78:ee:bb:f2:11:34:02:3a:9d:31:58:f8:3a: 81:20:d5:08 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJalWJIUjxRoFvrhnLjH/RJAIIukwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI1MDYyMDE1MDc1MloX DTI2MDYxOTE1MTI1MlowMzExMC8GA1UEAxMoN0FCRDMxREQ4MjhERDU4QzlEOTEx ODAwMjE5MDNFQTA0RDhFQjU4RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMgCJpgIb+enAhd+ni0AGf/fbFdm4X2gXhTVAgoTfiatLToSYUK8gCvLEc2E W8NeIFGvxUAuK1RSGJ8+Et4IlVM60PliU4HjSgx2LSR7eyPMW+q1remKcLOmVqJy 1//gYKes9FMgXg1IhD6RcQ2nUkZL5OSauaKDKWpMKMA3KlNptCSf95RDdOViDvvB 6EpU2nO9brEvUy5CASoFwARDwI3oHrRA68AylRXiqVAPcfqkzSKb0Dmbwr2u4wvr 1YOgvq3udIyYEVnW6+1wV4qFqlK11lhAjZJ5aVaPFIi1EJk2CUbeik0za8VEpjIK mFhopVd9fvMRcIi5SMj6ks3gZSsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHq9Md2CjdWMnZEYACGQPqBNjrWOMB8GA1UdIwQYMBaAFGD4 vpwWYlxCSyae4GxkqDurhQbUMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8x LzYwRjhCRTlDMTY2MjVDNDI0QjI2OUVFMDZDNjRBODNCQUI4NTA2RDQuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYyL1lQ aS1uQlppWEVKTEpwN2diR1NvTzZ1RkJ0US5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mNWY1ZWYxOC02ZmZhLTRkNjktOGMwYy0zNTE4Y2ZhODc1OGUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1ZjVlZjE4 LTZmZmEtNGQ2OS04YzBjLTM1MThjZmE4NzU4ZS8wLzdBQkQzMUREODI4REQ1OEM5 RDkxMTgwMDIxOTAzRUEwNEQ4RUI1OEUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAGdQhQwDQYJKoZIhvcNAQELBQADggEBABvX8BtmZsWr6qZ2LPZwkuODF92hKqDm bu5H4ZSplSr3Ynn8P2E/MeDxKem+VurunMiVNCNHxNeP9W6s3UiwzHq0iFBv0Zmu kAzGOQ+VagQcU4E/WwE76vfjXULW4QM7oAfDx224m69NtDS5C/MxYMQTK6XAK9jT HEcRtAhsfZaU6MII9cwZtWp6uXLaD60maCbxO2LNjfIbW7FY9UanBls7ac6s3Vef VTtbtdA92PpqN0cwElQ33O7r+00o1WuKou2PvsXMicWzcPqV0m34+jRHLVIvwpDZ 7rodIyxHTbAnx/0Mycf3LUu1D7JtmcazeO678hE0AjqdMVj4OoEg1Qg= -----END CERTIFICATE-----Generated at Mon Jul 21 03:17:17 2025 by rpki-client