$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer File: 0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer (raw, json) Hash identifier: vuRKlwEnBW3c5P5jnu5wHz3pQWOO93ECKvquuXqlhH0= Subject key identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2215F22BE6D06B8C8CC2B7D37BD8D9F66A0C7B47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.mft caRepository: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 14 Feb 2025 06:36:18 +0000 Certificate not after: Fri 13 Feb 2026 06:41:18 +0000 Subordinate resources: IP: 103.167.136.0/23 IP: 2407:6d40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Nov 2025 09:50:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:15:f2:2b:e6:d0:6b:8c:8c:c2:b7:d3:7b:d8:d9:f6:6a:0c:7b:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 14 06:36:18 2025 GMT Not After : Feb 13 06:41:18 2026 GMT Subject: CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ce:9f:f0:3f:40:71:71:09:60:2d:27:15:48: 3f:5a:ef:79:60:4d:96:54:de:12:b4:de:fd:72:aa: 25:01:76:1a:ce:da:f5:52:aa:a4:7c:d6:99:e4:07: 45:89:96:6a:78:01:50:d1:98:cf:3e:9c:ad:b6:da: ef:9b:c3:53:d9:99:13:53:19:ce:06:c7:c8:b4:b4: cc:ac:ad:14:15:4f:f2:5b:5b:9e:0d:fe:f6:a1:14: 2e:2f:9d:7d:44:03:1e:b1:b3:bb:79:42:cc:b9:f3: 1d:99:57:d6:7b:b4:eb:22:23:36:60:ef:46:c1:e9: 98:9a:bd:72:8a:0b:37:6d:25:f9:53:96:65:c5:bf: 5f:67:f2:26:58:97:d3:16:87:f9:1e:9c:90:db:36: 86:32:49:40:fc:d4:51:10:d4:88:38:fb:d5:8d:ef: 3a:62:dd:83:67:d2:c6:a5:f3:12:85:4c:f6:cc:b1: 57:c5:7b:f0:63:bc:f6:38:c9:28:7c:72:55:1e:1d: fa:42:6f:f9:1e:41:e7:b3:d4:80:59:b5:40:7d:b3: 9d:c6:93:37:9c:15:46:37:85:b4:d9:d2:e0:8d:47: 9f:92:6d:f0:40:5d:ac:95:e3:96:86:58:d2:03:b5: aa:d4:48:df:5f:6f:9c:ca:9c:f4:b0:12:a6:50:44: a3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.136.0/23 IPv6: 2407:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 80:30:0c:05:5a:a6:b9:cc:b4:2f:99:43:69:33:25:37:60:9b: 18:48:57:90:b1:da:ab:1f:6d:9e:80:50:1f:5a:c8:66:0c:ed: 91:f1:70:31:74:64:67:b5:c2:ee:6a:f3:72:99:e4:ee:3b:86: 4c:51:d4:d5:4e:00:40:cb:47:d1:49:5e:7e:05:d8:bb:3d:d4: d6:c3:74:ec:cb:ff:7a:59:d5:38:32:21:8a:e9:55:ce:44:79: 5b:cb:d7:30:37:46:1c:43:b8:ff:db:11:d7:96:43:9e:6d:34: 3b:64:aa:1e:ae:9d:5f:0a:2c:d0:66:2a:59:eb:5d:03:3c:f3: a1:ab:85:33:93:6b:dc:d8:fb:c5:88:f1:8d:b7:76:bb:19:6d: f5:f5:ec:fc:fc:96:10:ec:4e:a1:74:5d:de:35:5c:79:4d:1c: 66:01:43:72:54:8e:c3:31:f6:d0:eb:a7:08:84:67:22:28:5d: 44:ef:6f:f5:1e:62:ca:25:c2:ed:3a:9f:61:b0:aa:10:f9:30: 61:77:1a:4a:43:f6:b2:3c:4a:d8:04:ca:45:ac:73:54:e6:f3: 6f:02:f7:ca:8b:6d:a4:04:48:d7:97:74:61:a6:6f:2d:cd:c1: b8:73:4f:e3:07:a3:00:2b:61:15:5c:73:79:c7:93:8b:99:aa: 44:32:0f:5d -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUIhXyK+bQa4yMwrfTe9jZ9moMe0cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxNDA2MzYxOFoX DTI2MDIxMzA2NDExOFowMzExMC8GA1UEAxMoMDI0NkREMTRBRjY4RjVFNTUxMkFC RDg4RDFEQjc1MDdFNjkxM0M5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbOn/A/QHFxCWAtJxVIP1rveWBNllTeErTe/XKqJQF2Gs7a9VKqpHzWmeQH RYmWangBUNGYzz6crbba75vDU9mZE1MZzgbHyLS0zKytFBVP8ltbng3+9qEULi+d fUQDHrGzu3lCzLnzHZlX1nu06yIjNmDvRsHpmJq9cooLN20l+VOWZcW/X2fyJliX 0xaH+R6ckNs2hjJJQPzUURDUiDj71Y3vOmLdg2fSxqXzEoVM9syxV8V78GO89jjJ KHxyVR4d+kJv+R5B57PUgFm1QH2zncaTN5wVRjeFtNnS4I1Hn5Jt8EBdrJXjloZY 0gO1qtRI319vnMqc9LASplBEo3kCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAJG3RSvaPXlUSq9iNHbdQfmkTyWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85ZGZiMzk5Mi0xZDJmLTQ2Y2UtODg2YS04ZTIyYTMyNjExZjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkZmIzOTky LTFkMmYtNDZjZS04ODZhLThlMjJhMzI2MTFmOC8wLzAyNDZERDE0QUY2OEY1RTU1 MTJBQkQ4OEQxREI3NTA3RTY5MTNDOTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnp4gwDQQCAAIwBwMFACQHbUAwDQYJKoZIhvcNAQELBQADggEBAIAwDAVaprnM tC+ZQ2kzJTdgmxhIV5Cx2qsfbZ6AUB9ayGYM7ZHxcDF0ZGe1wu5q83KZ5O47hkxR 1NVOAEDLR9FJXn4F2Ls91NbDdOzL/3pZ1TgyIYrpVc5EeVvL1zA3RhxDuP/bEdeW Q55tNDtkqh6unV8KLNBmKlnrXQM886GrhTOTa9zY+8WI8Y23drsZbfX17Pz8lhDs TqF0Xd41XHlNHGYBQ3JUjsMx9tDrpwiEZyIoXUTvb/UeYsolwu06n2GwqhD5MGF3 GkpD9rI8StgEykWsc1Tm828C98qLbaQESNeXdGGmby3NwbhzT+MHowArYRVcc3nH k4uZqkQyD10= -----END CERTIFICATE-----Generated at Sun Nov 2 06:18:12 2025 by rpki-client