$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer File: 5DF7F909917C4DA09D7486E2B70323E7972B7675.cer (raw, json) Hash identifier: oGdM9P3Oyw6ceraoqAxlqmZU1X26aOAbl21J6sRqNo4= Subject key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0242C5E2B08C02FFB931FA8599AFA1ADF951112E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft caRepository: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 19 Feb 2025 21:11:21 +0000 Certificate not after: Wed 18 Feb 2026 21:16:21 +0000 Subordinate resources: IP: 103.186.167.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:42:c5:e2:b0:8c:02:ff:b9:31:fa:85:99:af:a1:ad:f9:51:11:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 19 21:11:21 2025 GMT Not After : Feb 18 21:16:21 2026 GMT Subject: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6b:fa:d1:43:ad:e1:c7:18:fa:8e:98:4d:47: da:d9:2f:7b:d2:ca:f5:eb:3b:bf:96:b5:bc:26:23: eb:c8:32:dc:e4:cf:d5:94:14:97:97:4e:55:04:06: 4b:e4:0f:8d:b3:16:10:5d:dc:a1:62:48:3e:f1:a8: 9e:56:ec:61:06:8a:67:92:33:b2:b5:07:5d:d1:6b: a4:eb:7f:6e:55:8f:b8:a2:6b:d2:61:e3:57:4e:60: 06:8c:aa:48:d4:8b:5f:c0:e1:97:2e:8b:12:27:af: 50:05:86:ff:af:0d:ec:82:e2:59:81:b3:bc:c2:23: 9e:ff:e7:b2:7d:1d:fe:7d:69:c3:7b:26:82:0d:f0: 77:ae:0c:be:80:bb:e7:39:b1:58:f4:fe:7e:9a:f8: 99:fd:73:6f:65:7d:cd:ee:2b:92:2f:11:9a:0c:61: 5d:9e:b7:9c:7c:67:8b:5f:c6:16:a7:f5:b8:63:68: fa:2b:e0:a2:ab:07:e7:5b:4d:e2:65:9d:66:da:c5: 07:42:6b:ed:eb:03:5b:ea:ca:a4:b6:4f:1a:8f:9a: 44:ed:0f:5e:2a:96:fd:69:cc:7e:67:47:d8:e3:5d: a7:80:5b:75:b8:8a:18:29:c2:da:6a:ac:cf:cc:47: 29:dc:8c:90:e4:4d:e3:46:4d:40:27:7d:c8:49:55: dd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.167.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:43:db:23:de:6d:11:b0:95:47:0f:cd:0c:fe:09:a7:13:ba: 1d:03:ec:12:6f:67:81:b6:d7:d1:a0:cd:1a:69:01:b4:3e:18: a5:44:9c:ea:9c:2e:e0:8f:35:4f:cf:18:ce:d1:1d:89:55:1f: d5:37:b3:b8:0c:3b:67:de:d5:41:33:7b:52:fd:14:c6:73:a8: 71:b3:58:d4:b7:f3:84:68:68:5d:ba:8d:90:28:38:44:e0:09: 8e:64:bf:e3:9d:22:45:28:70:8b:00:cd:ab:39:5c:2d:3e:8a: c7:fd:7c:99:7b:20:27:89:38:1d:3d:32:b5:cd:a0:77:52:8a: 62:e7:37:f4:9d:0b:63:86:e0:a5:22:92:80:e1:2e:71:e7:71: 2c:4e:cc:15:e4:c1:22:e6:1d:23:7e:6c:9a:3c:1e:99:ab:53: 18:c0:12:71:23:1e:4c:98:8c:23:f7:8e:67:26:00:4d:04:33: 15:9d:cb:72:d1:2e:92:36:65:e5:1e:1b:f8:05:c7:4a:6b:85: f5:10:1c:ee:ba:d5:b6:43:ec:84:f2:21:01:fd:90:54:fe:8c: 99:1d:e4:a9:eb:18:08:ee:b2:19:85:d8:fd:45:d5:38:2f:1e: ff:53:8a:25:c0:dd:20:7a:1a:9f:43:6b:0b:16:00:91:34:46: de:21:46:55 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAkLF4rCMAv+5MfqFma+hrflRES4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIxOTIxMTEyMVoX DTI2MDIxODIxMTYyMVowMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4 NkUyQjcwMzIzRTc5NzJCNzY3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORr+tFDreHHGPqOmE1H2tkve9LK9es7v5a1vCYj68gy3OTP1ZQUl5dOVQQG S+QPjbMWEF3coWJIPvGonlbsYQaKZ5IzsrUHXdFrpOt/blWPuKJr0mHjV05gBoyq SNSLX8Dhly6LEievUAWG/68N7ILiWYGzvMIjnv/nsn0d/n1pw3smgg3wd64MvoC7 5zmxWPT+fpr4mf1zb2V9ze4rki8RmgxhXZ63nHxni1/GFqf1uGNo+ivgoqsH51tN 4mWdZtrFB0Jr7esDW+rKpLZPGo+aRO0PXiqW/WnMfmdH2ONdp4BbdbiKGCnC2mqs z8xHKdyMkORN40ZNQCd9yElV3VUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFF33+QmRfE2gnXSG4rcDI+eXK3Z1MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kN2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3YjY0YzNl LWIxM2QtNDI3YS1iOTgyLTQzOTQwNzNlNWNmNS8wLzVERjdGOTA5OTE3QzREQTA5 RDc0ODZFMkI3MDMyM0U3OTcyQjc2NzUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnuqcwDQYJKoZIhvcNAQELBQADggEBAGxD2yPebRGwlUcPzQz+CacTuh0D7BJv Z4G219GgzRppAbQ+GKVEnOqcLuCPNU/PGM7RHYlVH9U3s7gMO2fe1UEze1L9FMZz qHGzWNS384RoaF26jZAoOETgCY5kv+OdIkUocIsAzas5XC0+isf9fJl7ICeJOB09 MrXNoHdSimLnN/SdC2OG4KUikoDhLnHncSxOzBXkwSLmHSN+bJo8HpmrUxjAEnEj HkyYjCP3jmcmAE0EMxWdy3LRLpI2ZeUeG/gFx0prhfUQHO661bZD7ITyIQH9kFT+ jJkd5KnrGAjushmF2P1F1TgvHv9TiiXA3SB6Gp9DawsWAJE0Rt4hRlU= -----END CERTIFICATE-----Generated at Sat Apr 5 06:29:02 2025 by rpki-client