This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2A2780233BF2E06D533EC6B05F500206FBB06D6D.cer File: 2A2780233BF2E06D533EC6B05F500206FBB06D6D.cer (raw, json) Hash identifier: icYFthYH2v+h8wbzCQWFpS3VCADyNQMg2L80k51luvA= Subject key identifier: 2A:27:80:23:3B:F2:E0:6D:53:3E:C6:B0:5F:50:02:06:FB:B0:6D:6D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 32AB25073A5135979D5953A1C03357DA05A885D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/2A2780233BF2E06D533EC6B05F500206FBB06D6D.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 04 Nov 2025 04:39:33 +0000 Certificate not after: Tue 03 Nov 2026 04:44:33 +0000 Subordinate resources: IP: 103.141.170.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 03 Dec 2025 03:44:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ab:25:07:3a:51:35:97:9d:59:53:a1:c0:33:57:da:05:a8:85:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 4 04:39:33 2025 GMT Not After : Nov 3 04:44:33 2026 GMT Subject: CN=2A2780233BF2E06D533EC6B05F500206FBB06D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:25:54:51:be:18:59:0a:e7:e9:99:91:94:e5: ae:cd:ee:79:f6:0a:55:bb:e5:38:b8:f6:f0:34:42: 6b:a3:dd:54:94:22:3f:ec:a6:a4:06:7c:19:f1:c7: c1:21:c1:5b:cc:73:50:d9:d8:30:3e:b6:0a:0f:de: bf:97:ad:cc:7a:5c:01:ff:5d:72:21:37:87:c9:19: 41:50:49:93:60:20:22:10:22:bf:b2:7f:fd:22:9e: 2d:89:04:7a:16:15:79:09:a0:24:b8:18:b6:33:c5: c2:6f:72:8d:2f:8a:1a:d7:c7:a0:50:48:42:ac:f0: fa:c2:ee:0a:e4:0e:80:2d:e9:94:fc:db:47:41:6d: de:56:1a:18:05:c7:3e:f9:17:f0:62:a9:8f:3b:79: e5:1b:2b:87:42:e9:12:ed:cb:82:5f:b8:d1:cc:29: 2a:9b:87:2f:68:13:a4:bc:ff:7e:08:ed:03:ba:78: a5:96:f7:15:1d:ca:ce:46:97:e4:f0:45:17:a9:7c: 0e:27:92:8a:12:c9:4c:75:94:70:58:fe:e1:e0:c5: c9:fe:99:e2:6c:44:16:18:63:ad:ca:56:83:c7:2d: dd:cf:74:a4:7b:19:8e:64:b1:7b:ca:07:fc:22:6a: 07:8e:e7:56:99:13:8a:30:ab:0a:2d:9b:b4:51:a8: a7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2A:27:80:23:3B:F2:E0:6D:53:3E:C6:B0:5F:50:02:06:FB:B0:6D:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/2A2780233BF2E06D533EC6B05F500206FBB06D6D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.170.0/24 Signature Algorithm: sha256WithRSAEncryption 38:6f:86:06:de:02:7c:70:3b:80:1f:fc:2c:fc:b9:01:e7:84: c8:9f:60:32:ec:f9:fc:65:e2:f0:4d:26:e1:81:28:c0:66:0c: 25:00:6b:ea:25:b3:28:a8:1c:4a:b0:5f:89:ba:6a:5e:d9:c8: 73:cf:d4:94:5f:40:f2:61:44:8a:77:d6:f6:ed:62:22:ec:5a: f1:78:55:44:4d:c5:e9:c6:c3:13:d6:de:20:90:f6:92:1d:f3: b1:a4:6f:17:f8:19:89:43:e1:9b:43:d6:86:1e:b3:62:92:d2: 8c:dd:05:f8:bb:c1:58:a4:66:db:99:c9:72:26:b5:6c:8a:54: b1:c3:7b:48:0a:ff:2d:aa:b5:79:71:25:42:81:c2:87:71:24: d1:7d:8a:b3:85:da:7c:e1:d4:11:b2:1b:62:b2:e0:d6:40:a0: 09:85:5d:8b:e8:6f:d9:4d:51:34:6a:2c:dc:18:e5:01:f0:e8: 4a:58:f8:dc:a9:5d:97:9c:2b:80:a9:cd:2e:6e:55:48:70:3a: 1e:5c:45:b1:40:c4:8c:d0:83:2c:2f:13:bd:7a:ed:89:11:67: 66:b7:88:a9:bb:c6:08:d8:cc:19:06:f7:50:67:cc:d4:b6:e4: c6:a9:f2:ee:cc:e2:4d:23:6b:c6:71:5f:94:b5:90:a0:54:1d: cd:60:60:cf -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUMqslBzpRNZedWVOhwDNX2gWohdIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MTEwNDA0MzkzM1oX DTI2MTEwMzA0NDQzM1owMzExMC8GA1UEAxMoMkEyNzgwMjMzQkYyRTA2RDUzM0VD NkIwNUY1MDAyMDZGQkIwNkQ2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPQlVFG+GFkK5+mZkZTlrs3uefYKVbvlOLj28DRCa6PdVJQiP+ympAZ8GfHH wSHBW8xzUNnYMD62Cg/ev5etzHpcAf9dciE3h8kZQVBJk2AgIhAiv7J//SKeLYkE ehYVeQmgJLgYtjPFwm9yjS+KGtfHoFBIQqzw+sLuCuQOgC3plPzbR0Ft3lYaGAXH PvkX8GKpjzt55Rsrh0LpEu3Lgl+40cwpKpuHL2gTpLz/fgjtA7p4pZb3FR3KzkaX 5PBFF6l8DieSihLJTHWUcFj+4eDFyf6Z4mxEFhhjrcpWg8ct3c90pHsZjmSxe8oH /CJqB47nVpkTijCrCi2btFGop+0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCongCM78uBtUz7GsF9QAgb7sG1tMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzZmOGMwYS1lMDNmLTQxNDAtYmExNi04MzNhYzIyNDFhZmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNmY4YzBh LWUwM2YtNDE0MC1iYTE2LTgzM2FjMjI0MWFmYi8wLzJBMjc4MDIzM0JGMkUwNkQ1 MzNFQzZCMDVGNTAwMjA2RkJCMDZENkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnjaowDQYJKoZIhvcNAQELBQADggEBADhvhgbeAnxwO4Af/Cz8uQHnhMifYDLs +fxl4vBNJuGBKMBmDCUAa+olsyioHEqwX4m6al7ZyHPP1JRfQPJhRIp31vbtYiLs WvF4VURNxenGwxPW3iCQ9pId87Gkbxf4GYlD4ZtD1oYes2KS0ozdBfi7wVikZtuZ yXImtWyKVLHDe0gK/y2qtXlxJUKBwodxJNF9irOF2nzh1BGyG2Ky4NZAoAmFXYvo b9lNUTRqLNwY5QHw6EpY+NypXZecK4CpzS5uVUhwOh5cRbFAxIzQgywvE7167YkR Z2a3iKm7xgjYzBkG91BnzNS25Map8u7M4k0ja8ZxX5S1kKBUHc1gYM8= -----END CERTIFICATE-----Generated at Sun Nov 30 06:41:42 2025 by rpki-client