$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer File: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer (raw, json) Hash identifier: MoTBQR6GpchkdAgGIM5gqcOcng+yoOjF2uFJtz4iVIY= Subject key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53C0535B833668C775025BAD8EABD7B4C8F2C339 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft caRepository: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 07:40:15 +0000 Certificate not after: Tue 02 Jun 2026 07:45:15 +0000 Subordinate resources: IP: 60.253.96.0/19 IP: 202.51.224.0/20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:c0:53:5b:83:36:68:c7:75:02:5b:ad:8e:ab:d7:b4:c8:f2:c3:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 07:40:15 2025 GMT Not After : Jun 2 07:45:15 2026 GMT Subject: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:65:7d:2a:45:96:37:51:3a:1b:87:67:51:a5: c3:d1:b4:65:46:9d:45:f4:a7:b6:cb:c6:b5:5d:60: 14:c6:bc:6b:dd:94:91:0e:a1:a8:87:05:97:61:e3: ac:5d:c7:10:ce:90:ee:c9:8a:d5:e6:82:45:49:0a: 8b:43:89:7a:1a:6f:32:2a:02:71:f8:ea:2d:80:31: 47:99:fa:b3:d9:69:1b:bf:fd:cc:4c:83:fe:d7:34: 47:bf:02:ed:82:06:a4:73:28:b0:2f:64:38:7c:a7: df:ed:58:02:d8:b3:ce:21:27:d8:ea:f6:06:21:51: be:d4:3b:94:40:cc:ae:37:2d:65:83:1f:a4:6b:fd: 9d:3d:77:f0:f2:79:58:f3:33:85:dd:1e:87:14:44: 9c:77:3b:a5:0a:01:9c:8d:21:57:d4:a3:ac:3b:21: 6d:81:6c:85:bf:e5:eb:ed:31:cd:d2:e4:bd:e6:77: 8c:51:62:dd:14:98:6a:af:f5:5c:d4:e9:3e:51:33: 37:a2:d4:23:00:b2:92:97:51:fa:43:b8:27:f2:81: 65:41:09:00:23:9f:d5:50:14:5b:e5:70:a7:bb:68: 3d:57:ba:d7:e4:99:35:8e:b8:16:2f:62:ea:78:56: 05:54:b3:be:87:bd:f6:42:33:69:4a:71:be:5a:6d: 85:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 60.253.96.0/19 202.51.224.0/20 Signature Algorithm: sha256WithRSAEncryption 45:e0:8d:87:19:0d:39:44:ca:f1:d1:e0:e2:c4:6d:94:82:21: 6d:64:74:2a:6d:19:80:f6:e4:eb:29:d7:6a:29:c5:f0:8f:77: 31:81:2a:91:56:c0:d4:4a:14:5e:85:e5:c1:57:80:63:55:26: 7d:60:47:a9:55:ae:b5:6b:fa:7e:76:46:0f:4f:39:58:ac:9e: f1:59:30:14:75:8b:f2:84:48:92:f5:3f:be:c1:e5:70:ce:64: f3:c3:2d:99:8a:7e:d4:54:f2:d4:e9:57:43:c8:6a:5e:f5:ca: bd:71:3b:ba:bc:ce:b5:79:34:f0:3e:4f:37:07:90:5a:14:9f: a9:71:4f:c8:6e:c6:ae:95:a8:56:c9:d8:46:14:65:88:02:8b: d3:7a:a1:e1:37:57:90:0a:f7:c0:a4:24:86:10:01:08:b2:62: 90:56:ba:c5:3e:37:14:a7:1f:b9:36:de:c8:af:2c:34:a3:31: 48:42:0a:46:cf:a3:6c:0e:1e:37:2f:f9:aa:50:a1:29:d1:72: b3:28:e9:bc:47:7b:15:35:9b:bc:d0:74:68:4c:1d:6e:e6:77: e8:fe:77:dd:bc:31:e4:70:12:91:90:b6:d9:4c:b6:88:49:78: a1:61:01:f5:73:af:b8:ea:9e:77:4e:03:a4:b4:92:a8:fb:04: 66:78:72:12 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUU8BTW4M2aMd1AlutjqvXtMjywzkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzA3NDAxNVoX DTI2MDYwMjA3NDUxNVowMzExMC8GA1UEAxMoMjUzRTJCQjRERTQ2N0FGMDhGMTkx QUY3NjMyRUUzQkQwNThEQTEwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNlfSpFljdROhuHZ1Glw9G0ZUadRfSntsvGtV1gFMa8a92UkQ6hqIcFl2Hj rF3HEM6Q7smK1eaCRUkKi0OJehpvMioCcfjqLYAxR5n6s9lpG7/9zEyD/tc0R78C 7YIGpHMosC9kOHyn3+1YAtizziEn2Or2BiFRvtQ7lEDMrjctZYMfpGv9nT138PJ5 WPMzhd0ehxREnHc7pQoBnI0hV9SjrDshbYFshb/l6+0xzdLkveZ3jFFi3RSYaq/1 XNTpPlEzN6LUIwCykpdR+kO4J/KBZUEJACOf1VAUW+Vwp7toPVe61+SZNY64Fi9i 6nhWBVSzvoe99kIzaUpxvlpthd0CAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCU+K7TeRnrwjxka92Mu470FjaEBMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yY2Q3NTM2ZC05ZTEwLTRkNDktYjZjYS0wNDFjYzlhNTkxNGUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjZDc1MzZk LTllMTAtNGQ0OS1iNmNhLTA0MWNjOWE1OTE0ZS8wLzI1M0UyQkI0REU0NjdBRjA4 RjE5MUFGNzYzMkVFM0JEMDU4REExMDEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAU8/WADBATKM+AwDQYJKoZIhvcNAQELBQADggEBAEXgjYcZDTlEyvHR4OLEbZSC IW1kdCptGYD25Osp12opxfCPdzGBKpFWwNRKFF6F5cFXgGNVJn1gR6lVrrVr+n52 Rg9POVisnvFZMBR1i/KESJL1P77B5XDOZPPDLZmKftRU8tTpV0PIal71yr1xO7q8 zrV5NPA+TzcHkFoUn6lxT8huxq6VqFbJ2EYUZYgCi9N6oeE3V5AK98CkJIYQAQiy YpBWusU+NxSnH7k23sivLDSjMUhCCkbPo2wOHjcv+apQoSnRcrMo6bxHexU1m7zQ dGhMHW7md+j+d928MeRwEpGQttlMtohJeKFhAfVzr7jqnndOA6S0kqj7BGZ4chI= -----END CERTIFICATE-----Generated at Tue Jun 3 23:18:05 2025 by rpki-client