$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer (raw, json) Hash identifier: LQxLToq+eCgDMIvpfc8tGev4e8FihyqzC9kIuQDDHwg= Subject key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 01770282BAFE44858E8A1C073C769D9BC4588DC7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft caRepository: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 12 May 2025 19:41:28 +0000 Certificate not after: Mon 11 May 2026 19:46:28 +0000 Subordinate resources: IP: 103.184.20.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:77:02:82:ba:fe:44:85:8e:8a:1c:07:3c:76:9d:9b:c4:58:8d:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 12 19:41:28 2025 GMT Not After : May 11 19:46:28 2026 GMT Subject: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:da:08:7c:08:e3:a7:f2:d2:83:49:d5:ca:0a: 5e:bf:36:40:95:a0:94:9c:58:a0:1e:64:00:a4:35: 39:01:37:48:53:c6:6a:cb:ca:9f:4e:c4:d2:13:ad: c4:fc:46:2b:ad:c5:06:64:a7:d6:a7:ab:8b:f3:7c: 7f:0c:b2:31:2c:75:7b:9f:fc:20:58:b6:89:65:13: 20:bd:ec:f3:c6:e5:50:f0:82:b5:82:db:08:de:c2: 34:1e:4b:b0:c9:04:08:55:41:6d:86:03:cf:a3:af: ef:c9:cd:76:68:0f:f4:7a:45:b4:70:07:14:36:a9: 20:76:cf:08:03:e3:17:ab:e6:bc:80:2e:ef:30:30: 48:30:16:9a:20:89:ed:ae:7c:41:60:65:a3:d7:0b: c1:73:31:b0:cf:25:cf:d8:13:14:36:ee:25:f0:ee: c5:96:d2:9f:dc:99:2c:74:c5:8e:65:d9:4e:a1:37: 3b:d9:a0:c0:db:f4:e0:19:f6:cf:07:cd:d3:f3:28: 78:b6:83:d4:0d:27:57:59:19:5e:87:46:87:21:21: b8:75:00:78:bd:b7:02:0f:cf:dd:25:21:a1:bb:de: ad:c6:1b:d6:0a:72:b2:74:ce:18:d4:eb:47:9d:06: 43:8e:47:8e:dc:a8:0c:80:e8:63:d9:8b:fc:91:08: 74:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.20.0/23 Signature Algorithm: sha256WithRSAEncryption 27:e3:07:00:c0:1c:ad:96:4a:bb:16:54:6b:e7:13:c5:db:c7: 96:51:d0:2d:2d:99:b1:30:60:38:5f:fc:68:58:69:13:be:3c: c7:4a:fa:f1:2e:d6:4c:a6:11:26:34:25:16:95:7a:7e:25:61: bb:56:12:68:08:1c:6c:ab:ff:a6:84:1a:51:14:d9:0e:66:c8: 6c:b1:ad:82:7a:38:80:93:91:f0:ba:85:d1:49:08:df:40:38: ed:41:80:62:63:9f:b6:d8:6a:f2:4e:01:13:12:70:b5:35:f7: af:f9:54:b3:1d:84:d5:32:29:17:1a:78:74:56:99:d4:1d:16: 81:30:0a:5d:1f:e0:18:d7:d6:87:4b:82:00:86:96:29:79:cc: 9e:3c:15:79:83:a8:8a:77:1e:fa:8d:b5:1d:58:e3:ab:c8:f2: e4:fc:97:f2:ef:c7:b7:05:0d:92:bf:de:51:db:30:b2:29:4f: d7:cf:48:9b:75:1c:5a:56:c9:0d:db:40:35:40:90:05:e1:57: 9b:ec:15:91:c3:e1:18:22:41:b9:8b:22:4b:c7:5d:90:da:8a: 63:62:0f:23:b9:df:cb:62:d2:fc:a3:4d:76:8d:9f:53:98:07: 68:83:4c:31:1e:53:fa:4d:36:ef:c6:1d:0b:2b:0e:03:b6:21: 6d:90:9e:01 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAXcCgrr+RIWOihwHPHadm8RYjccwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUxMjE5NDEyOFoX DTI2MDUxMTE5NDYyOFowMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0Ex ODE3QzdDQzVEQkQ1QTY5QzU5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3aCHwI46fy0oNJ1coKXr82QJWglJxYoB5kAKQ1OQE3SFPGasvKn07E0hOt xPxGK63FBmSn1qeri/N8fwyyMSx1e5/8IFi2iWUTIL3s88blUPCCtYLbCN7CNB5L sMkECFVBbYYDz6Ov78nNdmgP9HpFtHAHFDapIHbPCAPjF6vmvIAu7zAwSDAWmiCJ 7a58QWBlo9cLwXMxsM8lz9gTFDbuJfDuxZbSn9yZLHTFjmXZTqE3O9mgwNv04Bn2 zwfN0/MoeLaD1A0nV1kZXodGhyEhuHUAeL23Ag/P3SUhobvercYb1gpysnTOGNTr R50GQ45HjtyoDIDoY9mL/JEIdOsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFinBup0aN8NFMoYF8fMXb1aacWWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zMmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5 LWMxZTktNDRkOC04MTllLWZkZjY1NDljNmIzZi8wLzU4QTcwNkVBNzQ2OERGMEQx NENBMTgxN0M3Q0M1REJENUE2OUM1OTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuBQwDQYJKoZIhvcNAQELBQADggEBACfjBwDAHK2WSrsWVGvnE8Xbx5ZR0C0t mbEwYDhf/GhYaRO+PMdK+vEu1kymESY0JRaVen4lYbtWEmgIHGyr/6aEGlEU2Q5m yGyxrYJ6OICTkfC6hdFJCN9AOO1BgGJjn7bYavJOARMScLU196/5VLMdhNUyKRca eHRWmdQdFoEwCl0f4BjX1odLggCGlil5zJ48FXmDqIp3HvqNtR1Y46vI8uT8l/Lv x7cFDZK/3lHbMLIpT9fPSJt1HFpWyQ3bQDVAkAXhV5vsFZHD4RgiQbmLIkvHXZDa imNiDyO538ti0vyjTXaNn1OYB2iDTDEeU/pNNu/GHQsrDgO2IW2QngE= -----END CERTIFICATE-----Generated at Tue Jun 3 23:36:38 2025 by rpki-client