$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer File: 18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer (raw, json) Hash identifier: NZSBUg02QP5r7/FnYlfXtW+A0xD8/M9rD63ebMu7q4Q= Subject key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1B84577157BEB81269AC2F695C4B5869164672CD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft caRepository: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 05:31:49 +0000 Certificate not after: Tue 02 Jun 2026 05:36:49 +0000 Subordinate resources: IP: 103.102.148.0/22 IP: 2001:df2:dd00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:84:57:71:57:be:b8:12:69:ac:2f:69:5c:4b:58:69:16:46:72:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 05:31:49 2025 GMT Not After : Jun 2 05:36:49 2026 GMT Subject: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:48:36:c8:ba:cc:be:11:e7:df:3d:6b:39:f2: 0d:dc:7e:8e:f1:62:1d:97:7a:7b:8a:fc:43:57:2b: b7:8c:06:bb:07:55:6f:22:51:dd:1c:e6:8e:dc:3a: 97:af:5c:f2:14:ea:22:4b:95:20:42:d8:7c:ed:3d: 02:fb:fc:2e:b7:b2:5f:2a:52:d9:cb:bd:7f:4d:bd: 8b:78:03:f4:2d:09:e9:bc:a4:a6:d9:ee:03:c8:5d: 8a:f8:20:4b:3f:df:d7:4e:f7:68:8b:55:ab:2d:ae: df:80:92:27:27:5a:c2:3a:05:6b:40:f9:e7:d5:4a: 50:1c:46:6e:73:1e:26:19:b4:fc:32:f3:92:ba:3c: 63:94:17:03:6a:7f:75:4b:c3:63:6d:c0:f4:e2:d7: e3:67:bf:fe:51:4e:1a:57:a6:e9:49:b8:7f:78:f8: 54:a8:1a:07:13:f1:e4:d1:12:1d:f1:4a:73:9b:c2: 51:ee:40:17:93:df:48:22:f9:ea:c0:fb:17:a4:36: 97:03:58:f5:95:11:6b:b2:f6:07:36:53:17:aa:29: 9f:6b:8d:d6:ce:a9:be:2c:11:92:b4:bd:26:ac:7f: 2d:94:2c:5d:f1:08:17:11:a2:b4:f6:65:73:05:f6: aa:ef:b7:e1:cf:26:d7:ee:b4:5b:7d:11:dd:93:7b: 59:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.148.0/22 IPv6: 2001:df2:dd00::/48 Signature Algorithm: sha256WithRSAEncryption 79:15:d6:17:de:5b:ef:4b:f5:b8:31:17:81:db:68:91:d2:d1: 35:86:0c:9e:40:73:17:11:bb:58:21:b3:ef:47:02:ce:8c:72: e6:2d:5b:94:ee:0d:42:9d:89:ac:f1:60:2d:d8:4b:1d:39:a6: 16:6e:05:e4:30:62:74:df:aa:d0:a3:bc:e4:08:f8:dc:b7:f5: eb:5e:a0:fb:4a:2f:a9:ed:90:fa:f6:4a:e3:7e:17:23:27:05: 40:85:4d:01:ed:70:06:e8:3f:1a:c4:02:ac:fb:5c:3f:2b:64: f9:49:c6:c1:2b:2f:3e:c5:78:75:e6:90:75:a2:18:56:ba:cf: ef:5b:3c:e8:8e:84:87:53:3e:c0:78:f6:00:bf:73:a5:2f:bd: 65:33:cc:55:ad:c3:e7:f2:a4:f9:d8:e8:65:a4:7b:10:8c:c7: cb:a2:bf:71:f0:b4:21:8c:ce:39:98:d8:9e:73:bb:31:31:29: d5:6d:b2:dc:34:fa:f5:ea:4f:78:c7:d6:69:93:62:30:81:f2: a8:d8:6b:d4:ae:a3:88:5e:b5:c8:fe:51:bb:32:3d:10:bb:be: da:3d:e6:19:f0:24:38:86:86:48:0f:b7:20:59:12:9f:72:2c: b3:21:42:61:5a:df:a9:a1:51:9a:43:6b:4b:0d:56:ed:50:17: e4:0b:4a:af -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUG4RXcVe+uBJprC9pXEtYaRZGcs0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzA1MzE0OVoX DTI2MDYwMjA1MzY0OVowMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1 MDY5ODI1NkUwRURFRjlBNTE2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZINsi6zL4R5989aznyDdx+jvFiHZd6e4r8Q1crt4wGuwdVbyJR3Rzmjtw6 l69c8hTqIkuVIELYfO09Avv8LreyXypS2cu9f029i3gD9C0J6bykptnuA8hdivgg Sz/f1073aItVqy2u34CSJydawjoFa0D559VKUBxGbnMeJhm0/DLzkro8Y5QXA2p/ dUvDY23A9OLX42e//lFOGlem6Um4f3j4VKgaBxPx5NESHfFKc5vCUe5AF5PfSCL5 6sD7F6Q2lwNY9ZURa7L2BzZTF6opn2uN1s6pviwRkrS9Jqx/LZQsXfEIFxGitPZl cwX2qu+34c8m1+60W30R3ZN7WbECAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBjp3FusquaNHJ9QaYJW4O3vmlFpMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iYTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNi LTVhNTktNDBmMy04NmEwLWNkZTViOTRjZWY4Ni8wLzE4RTlEQzVCQUNBQUU2OEQx QzlGNTA2OTgyNTZFMEVERUY5QTUxNjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnZpQwDwQCAAIwCQMHACABDfLdADANBgkqhkiG9w0BAQsFAAOCAQEAeRXWF95b 70v1uDEXgdtokdLRNYYMnkBzFxG7WCGz70cCzoxy5i1blO4NQp2JrPFgLdhLHTmm Fm4F5DBidN+q0KO85Aj43Lf1616g+0ovqe2Q+vZK434XIycFQIVNAe1wBug/GsQC rPtcPytk+UnGwSsvPsV4deaQdaIYVrrP71s86I6Eh1M+wHj2AL9zpS+9ZTPMVa3D 5/Kk+djoZaR7EIzHy6K/cfC0IYzOOZjYnnO7MTEp1W2y3DT69epPeMfWaZNiMIHy qNhr1K6jiF61yP5RuzI9ELu+2j3mGfAkOIaGSA+3IFkSn3IssyFCYVrfqaFRmkNr Sw1W7VAX5AtKrw== -----END CERTIFICATE-----Generated at Tue Jun 3 23:58:51 2025 by rpki-client