$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51.cer File: 1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51.cer (raw, json) Hash identifier: WSG6RQOs9ONknnsvqPMUxSj/dQA2Vpa6pSm8f5o8VK8= Subject key identifier: 1A:7E:52:5B:56:9E:9C:AE:03:35:BF:F6:6C:FA:1B:D4:A5:C1:2C:51 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0DC14B2FB0BEFF55414B6C07D3DA5FF92CC663F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dd6cacd4-4e08-4dd8-a5ae-9a5a63a8d2fa/0/1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51.mft caRepository: rsync://repo-rpki.idnic.net/repo/dd6cacd4-4e08-4dd8-a5ae-9a5a63a8d2fa/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 21 Feb 2025 14:49:52 +0000 Certificate not after: Fri 20 Feb 2026 14:54:52 +0000 Subordinate resources: IP: 103.185.27.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:c1:4b:2f:b0:be:ff:55:41:4b:6c:07:d3:da:5f:f9:2c:c6:63:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 21 14:49:52 2025 GMT Not After : Feb 20 14:54:52 2026 GMT Subject: CN=1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:02:32:17:7c:f8:01:a5:3c:e9:ec:f6:25:8d: e6:b7:9d:25:ca:91:a9:a4:17:10:52:2c:1e:70:cf: 08:6d:fe:31:5e:23:fc:1a:cb:a6:01:b4:7e:75:56: 84:e2:f5:b6:57:1a:cb:15:16:86:16:28:75:30:8f: 06:54:21:bf:ce:4a:33:89:51:9e:86:ec:b3:48:83: 91:cd:a0:2e:12:90:b7:62:9a:04:f4:11:bb:60:59: 38:d5:64:15:51:a9:97:07:0f:54:8b:e9:e5:6f:94: 36:ff:21:79:2a:23:6c:85:70:7f:3e:0e:ac:eb:38: 1b:a6:db:4e:53:4a:9f:b0:9d:61:9b:af:37:5d:59: 29:1a:3f:84:0a:1d:3b:f6:5e:11:9a:8f:2f:61:df: 91:ab:65:70:5f:96:65:72:82:4b:3e:f1:b2:59:2e: f3:c6:e6:31:ca:81:49:4a:cb:58:e8:89:58:fe:c7: 28:14:f3:98:10:2b:16:59:52:0f:30:bc:03:62:cf: 31:a0:b0:4a:68:bf:20:16:dc:b8:9b:76:6e:33:91: 50:74:13:64:dd:87:11:12:a3:13:7f:d7:ef:80:72: 82:6c:ed:c1:23:d0:d3:f3:9e:96:29:cc:ec:a1:3c: 89:a0:3b:7d:78:f7:14:c0:72:17:ef:28:c2:4d:a0: e4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1A:7E:52:5B:56:9E:9C:AE:03:35:BF:F6:6C:FA:1B:D4:A5:C1:2C:51 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dd6cacd4-4e08-4dd8-a5ae-9a5a63a8d2fa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dd6cacd4-4e08-4dd8-a5ae-9a5a63a8d2fa/0/1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.27.0/24 Signature Algorithm: sha256WithRSAEncryption 90:81:45:77:7d:9e:3a:7c:0c:de:b4:68:30:36:a2:1b:e3:a2: 17:77:a7:f6:30:81:2b:f7:67:b2:7b:5f:1e:c6:86:ae:53:29: 24:e1:d4:94:dd:75:41:55:8c:4a:48:8b:a5:0e:de:2c:ab:db: 6d:cc:61:25:e4:a7:24:fa:09:fa:c6:68:2c:77:dc:6e:d8:7b: 56:98:ee:a3:11:c3:14:c2:48:a6:5a:68:55:91:9c:94:ec:94: 49:6c:ac:42:d7:42:8f:a7:84:ee:fc:83:61:ac:91:af:59:a8: 55:f8:50:0c:cc:84:38:4f:73:90:eb:43:f3:71:41:cf:3e:51: df:e6:64:a2:ae:a8:0a:29:3e:5d:1e:5c:88:1a:bc:01:c4:e5: a5:e6:30:23:e3:26:33:77:b5:1b:be:d8:aa:67:4d:d5:d1:2f: 81:45:6a:8a:42:fa:8b:e4:c1:35:bb:73:8d:4a:db:35:f9:e0: 04:95:14:ed:58:0e:6f:ed:a2:68:c0:e0:ea:d1:62:a3:b0:1a: 29:b7:0c:30:09:f6:ab:45:bf:42:80:62:d3:54:cc:39:b9:bf: 29:91:6d:3d:a7:76:43:c1:b2:41:d2:fd:94:22:5d:42:89:a5: 90:da:6a:73:1b:08:aa:ad:6f:57:f9:84:ee:fe:97:e8:61:b1: 7a:54:f2:95 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDcFLL7C+/1VBS2wH09pf+SzGY/UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIyMTE0NDk1MloX DTI2MDIyMDE0NTQ1MlowMzExMC8GA1UEAxMoMUE3RTUyNUI1NjlFOUNBRTAzMzVC RkY2NkNGQTFCRDRBNUMxMkM1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANcCMhd8+AGlPOns9iWN5redJcqRqaQXEFIsHnDPCG3+MV4j/BrLpgG0fnVW hOL1tlcayxUWhhYodTCPBlQhv85KM4lRnobss0iDkc2gLhKQt2KaBPQRu2BZONVk FVGplwcPVIvp5W+UNv8heSojbIVwfz4OrOs4G6bbTlNKn7CdYZuvN11ZKRo/hAod O/ZeEZqPL2HfkatlcF+WZXKCSz7xslku88bmMcqBSUrLWOiJWP7HKBTzmBArFllS DzC8A2LPMaCwSmi/IBbcuJt2bjORUHQTZN2HERKjE3/X74BygmztwSPQ0/OelinM 7KE8iaA7fXj3FMByF+8owk2g5CUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBp+UltWnpyuAzW/9mz6G9SlwSxRMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZDZjYWNkNC00ZTA4LTRkZDgtYTVhZS05YTVhNjNhOGQyZmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkNmNhY2Q0 LTRlMDgtNGRkOC1hNWFlLTlhNWE2M2E4ZDJmYS8wLzFBN0U1MjVCNTY5RTlDQUUw MzM1QkZGNjZDRkExQkQ0QTVDMTJDNTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnuRswDQYJKoZIhvcNAQELBQADggEBAJCBRXd9njp8DN60aDA2ohvjohd3p/Yw gSv3Z7J7Xx7Ghq5TKSTh1JTddUFVjEpIi6UO3iyr223MYSXkpyT6CfrGaCx33G7Y e1aY7qMRwxTCSKZaaFWRnJTslElsrELXQo+nhO78g2Gska9ZqFX4UAzMhDhPc5Dr Q/NxQc8+Ud/mZKKuqAopPl0eXIgavAHE5aXmMCPjJjN3tRu+2KpnTdXRL4FFaopC +ovkwTW7c41K2zX54ASVFO1YDm/tomjA4OrRYqOwGim3DDAJ9qtFv0KAYtNUzDm5 vymRbT2ndkPBskHS/ZQiXUKJpZDaanMbCKqtb1f5hO7+l+hhsXpU8pU= -----END CERTIFICATE-----Generated at Sat Apr 5 07:10:42 2025 by rpki-client