$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/50D9825940B483F044841C179E5B7712607CAB2A.cer File: 50D9825940B483F044841C179E5B7712607CAB2A.cer (raw, json) Hash identifier: GAxzLAPkShEz67mE7dsvdXIfOa4BaJJQoW1We/cJTHI= Subject key identifier: 50:D9:82:59:40:B4:83:F0:44:84:1C:17:9E:5B:77:12:60:7C:AB:2A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 158B20F8A1BDDB8DFE39F33BF2C9EB2FD54331BA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0/50D9825940B483F044841C179E5B7712607CAB2A.mft caRepository: rsync://repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 05 Mar 2025 11:39:42 +0000 Certificate not after: Wed 04 Mar 2026 11:44:42 +0000 Subordinate resources: IP: 103.157.76.0/23 IP: 2406:9a40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:8b:20:f8:a1:bd:db:8d:fe:39:f3:3b:f2:c9:eb:2f:d5:43:31:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 5 11:39:42 2025 GMT Not After : Mar 4 11:44:42 2026 GMT Subject: CN=50D9825940B483F044841C179E5B7712607CAB2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4b:4a:2f:18:b6:47:48:6d:2f:2d:bd:05:30: f4:a9:47:72:a7:22:9f:e0:cc:b3:89:3a:da:94:b4: f2:47:d7:0e:ef:46:d3:d4:8f:e5:ff:56:6e:b9:93: a9:65:e1:e0:33:bf:81:87:13:ba:6f:6f:ce:3b:4e: a4:e2:85:95:93:3d:be:0b:6f:d5:5f:06:fb:a3:79: 1e:d3:7f:ff:e3:71:51:f0:97:44:60:9e:e1:b8:d7: 4e:f8:9e:52:29:7f:76:f8:f2:97:a5:19:3a:0c:52: e4:c9:b1:41:cb:0f:8f:b6:ea:71:c2:cb:ce:8f:21: 6f:a7:7b:c2:52:aa:39:e8:c0:d5:03:9a:d2:48:8c: f9:16:c7:82:c3:1a:47:02:dd:e3:4a:89:66:96:a7: f0:ae:ad:e1:74:7f:ec:28:4a:ee:2c:8a:7f:2f:6b: e2:78:b5:4b:b4:7f:07:35:8b:4e:82:53:73:43:91: 8a:d0:18:c6:f5:66:a7:5e:4a:d2:98:75:25:d1:27: ab:f0:b5:5f:2b:db:25:2d:89:9d:a6:5f:c3:70:7f: 64:96:2b:02:3e:fa:b1:78:26:a1:a7:49:f8:b3:d4: 4f:b6:83:2d:03:cc:b8:1e:a3:51:ad:9b:26:a0:ba: bb:e1:3c:fc:0e:f8:53:10:07:4a:4c:1a:0f:59:51: e3:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 50:D9:82:59:40:B4:83:F0:44:84:1C:17:9E:5B:77:12:60:7C:AB:2A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4d46a564-6347-40ef-bad3-4daae306d421/0/50D9825940B483F044841C179E5B7712607CAB2A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.76.0/23 IPv6: 2406:9a40::/32 Signature Algorithm: sha256WithRSAEncryption 12:d8:d5:01:71:cd:45:0a:63:27:b5:2f:22:83:8a:5c:b5:ca: 02:4a:6a:e3:49:17:4e:02:d0:d6:d8:c5:15:be:5b:65:c9:17: 3e:65:a0:45:03:5c:db:af:65:32:1a:89:e8:a3:3c:e9:02:b7: 16:f4:28:70:6d:0d:f5:b0:e0:01:21:e8:8d:98:2c:0e:af:10: 36:48:03:b8:84:ae:1b:f6:83:96:d2:f7:5d:df:72:21:e8:82: 1d:dd:2b:83:dd:73:f2:1d:b2:2e:28:57:20:df:a4:9c:4b:98: 8c:0c:22:85:02:03:4f:09:10:f3:8e:bc:c8:66:85:87:bb:ee: c7:3c:95:cc:5b:18:2f:2c:13:f9:e1:f6:e5:81:85:02:7d:37: 39:b3:40:87:1f:96:56:96:62:42:20:d4:14:4b:55:66:01:68: bd:94:77:cc:95:e6:dd:ec:e1:29:ac:64:98:4e:95:e8:30:55: 23:fe:80:3b:22:3f:84:cf:98:56:3b:6f:1a:bd:f8:5d:db:c4: 03:c1:e9:ec:68:74:09:90:8a:e4:56:61:63:a7:00:bf:b5:70: c9:a8:49:ef:13:cc:bc:0d:75:4b:d0:10:ee:6c:86:0f:1e:02: ec:74:b1:59:54:24:95:38:b2:7d:f1:34:91:ed:13:be:3b:fc: 4c:c7:7c:05 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUFYsg+KG9243+OfM78snrL9VDMbowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMwNTExMzk0MloX DTI2MDMwNDExNDQ0MlowMzExMC8GA1UEAxMoNTBEOTgyNTk0MEI0ODNGMDQ0ODQx QzE3OUU1Qjc3MTI2MDdDQUIyQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVLSi8YtkdIbS8tvQUw9KlHcqcin+DMs4k62pS08kfXDu9G09SP5f9WbrmT qWXh4DO/gYcTum9vzjtOpOKFlZM9vgtv1V8G+6N5HtN//+NxUfCXRGCe4bjXTvie Uil/dvjyl6UZOgxS5MmxQcsPj7bqccLLzo8hb6d7wlKqOejA1QOa0kiM+RbHgsMa RwLd40qJZpan8K6t4XR/7ChK7iyKfy9r4ni1S7R/BzWLToJTc0ORitAYxvVmp15K 0ph1JdEnq/C1XyvbJS2JnaZfw3B/ZJYrAj76sXgmoadJ+LPUT7aDLQPMuB6jUa2b JqC6u+E8/A74UxAHSkwaD1lR46sCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFDZgllAtIPwRIQcF55bdxJgfKsqMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZDQ2YTU2NC02MzQ3LTQwZWYtYmFkMy00ZGFhZTMwNmQ0MjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNDZhNTY0 LTYzNDctNDBlZi1iYWQzLTRkYWFlMzA2ZDQyMS8wLzUwRDk4MjU5NDBCNDgzRjA0 NDg0MUMxNzlFNUI3NzEyNjA3Q0FCMkEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnUwwDQQCAAIwBwMFACQGmkAwDQYJKoZIhvcNAQELBQADggEBABLY1QFxzUUK Yye1LyKDily1ygJKauNJF04C0NbYxRW+W2XJFz5loEUDXNuvZTIaieijPOkCtxb0 KHBtDfWw4AEh6I2YLA6vEDZIA7iErhv2g5bS913fciHogh3dK4Pdc/Idsi4oVyDf pJxLmIwMIoUCA08JEPOOvMhmhYe77sc8lcxbGC8sE/nh9uWBhQJ9NzmzQIcfllaW YkIg1BRLVWYBaL2Ud8yV5t3s4SmsZJhOlegwVSP+gDsiP4TPmFY7bxq9+F3bxAPB 6exodAmQiuRWYWOnAL+1cMmoSe8TzLwNdUvQEO5shg8eAux0sVlUJJU4sn3xNJHt E747/EzHfAU= -----END CERTIFICATE-----Generated at Sat Apr 5 07:06:40 2025 by rpki-client