$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.cer File: 80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.cer (raw, json) Hash identifier: SQh8dE7oshtc84Yk8zncP5DXSaAknV6RKjHyGHJYUnU= Subject key identifier: 80:D8:9E:42:9E:BB:AA:D9:E0:9C:35:0D:9D:D8:FA:DC:91:7C:BA:1A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5615D4FCC4E516B940974DCDA18ACF5F3C05ED51 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0/80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.mft caRepository: rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 28 May 2025 12:08:17 +0000 Certificate not after: Wed 27 May 2026 12:13:17 +0000 Subordinate resources: IP: 103.78.104.0/23 IP: 2001:df6:2a00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 06:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:15:d4:fc:c4:e5:16:b9:40:97:4d:cd:a1:8a:cf:5f:3c:05:ed:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 28 12:08:17 2025 GMT Not After : May 27 12:13:17 2026 GMT Subject: CN=80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:26:60:9a:25:77:c2:16:8d:ee:0b:c5:a3:4f: 0b:11:e6:78:4f:1c:bd:41:8d:74:0e:42:7c:83:88: 4a:64:ed:d6:95:5f:66:6f:a9:6d:66:7e:1e:d6:e0: a8:f9:7d:f8:80:d8:dd:fd:f0:f5:10:11:64:6e:64: 4f:38:a1:4e:9d:1a:a4:58:65:b0:df:b0:17:8b:be: 11:81:cf:f8:14:97:bd:fc:6c:8d:18:9d:14:42:17: 29:b5:b3:bb:12:c3:34:a0:7e:57:6c:71:03:62:7e: 7d:6a:08:e4:66:57:fa:92:14:46:c0:76:c5:d9:6b: fb:df:ca:d0:6f:a9:1b:fc:fd:cb:e4:69:f1:bf:98: 96:80:de:46:ea:c1:5b:b7:38:81:60:31:de:c0:db: 9f:fe:4b:8a:a0:7c:69:24:bc:d1:99:b8:23:80:f5: 57:32:1d:c5:a4:f1:5f:25:4c:e6:8e:12:20:7c:87: a4:7e:de:4f:6c:3d:4e:bf:97:61:69:24:d8:40:64: a8:63:90:4c:8e:64:c9:8e:48:27:1a:f5:b4:a7:43: 9e:04:49:a8:f4:5d:7f:91:ef:27:59:5e:97:61:4c: ac:7f:be:05:04:3b:c2:ba:76:ab:5e:53:e3:1c:67: f5:41:d0:63:72:df:28:48:6f:5f:53:b3:2e:1b:89: ac:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 80:D8:9E:42:9E:BB:AA:D9:E0:9C:35:0D:9D:D8:FA:DC:91:7C:BA:1A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0/80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.104.0/23 IPv6: 2001:df6:2a00::/48 Signature Algorithm: sha256WithRSAEncryption 16:86:fb:8a:6a:91:11:cd:4f:dd:5c:db:3b:89:0c:de:aa:0c: 9e:36:a3:af:f5:05:b2:b7:72:2a:31:67:74:18:a8:5d:ca:d4: 27:98:d5:0f:56:a1:52:22:4c:dc:d5:5c:6b:31:e9:67:0b:29: ec:4e:3e:8f:bb:b5:f3:12:4c:11:a0:4c:bb:a1:78:d0:73:8c: 37:3f:3b:2b:8a:fc:bd:95:c5:37:83:76:58:03:24:72:90:a1: a9:3b:0f:ec:0a:59:20:74:2b:39:c5:59:50:9d:e5:ee:6c:d0: 14:1a:ad:11:a3:ab:0d:ed:2c:b8:d4:70:12:9e:63:e7:11:d6: cf:08:3f:40:7f:eb:8f:ef:8b:5d:18:0c:2f:2f:c6:34:a9:6a: 02:8e:53:75:db:e0:7e:4f:32:2d:b1:11:e8:00:90:0c:ae:6c: b1:9e:3d:18:0c:ad:92:38:04:bb:8f:73:e4:75:f3:45:8c:b5: c3:83:e5:42:5a:9e:21:9c:c4:5c:87:6e:8b:6a:30:d0:93:f7: 75:d2:94:fe:b4:54:ab:c1:73:45:6e:01:e9:02:ee:87:22:33: f9:66:42:0a:c3:bb:64:70:81:34:0d:e1:b3:be:7f:df:65:99: 02:b5:0d:9c:42:74:be:0e:92:7c:ce:23:f0:f7:42:f8:42:c3: e1:0a:4e:a3 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUVhXU/MTlFrlAl03NoYrPXzwF7VEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyODEyMDgxN1oX DTI2MDUyNzEyMTMxN1owMzExMC8GA1UEAxMoODBEODlFNDI5RUJCQUFEOUUwOUMz NTBEOUREOEZBREM5MTdDQkExQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOUmYJold8IWje4LxaNPCxHmeE8cvUGNdA5CfIOISmTt1pVfZm+pbWZ+Htbg qPl9+IDY3f3w9RARZG5kTzihTp0apFhlsN+wF4u+EYHP+BSXvfxsjRidFEIXKbWz uxLDNKB+V2xxA2J+fWoI5GZX+pIURsB2xdlr+9/K0G+pG/z9y+Rp8b+YloDeRurB W7c4gWAx3sDbn/5LiqB8aSS80Zm4I4D1VzIdxaTxXyVM5o4SIHyHpH7eT2w9Tr+X YWkk2EBkqGOQTI5kyY5IJxr1tKdDngRJqPRdf5HvJ1lel2FMrH++BQQ7wrp2q15T 4xxn9UHQY3LfKEhvX1OzLhuJrKsCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIDYnkKeu6rZ4Jw1DZ3Y+tyRfLoaMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83OTEyYWM4OC0wMzNkLTQ5N2UtYmY2My01NTUzZDVkYzZkYzkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5MTJhYzg4 LTAzM2QtNDk3ZS1iZjYzLTU1NTNkNWRjNmRjOS8wLzgwRDg5RTQyOUVCQkFBRDlF MDlDMzUwRDlERDhGQURDOTE3Q0JBMUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnTmgwDwQCAAIwCQMHACABDfYqADANBgkqhkiG9w0BAQsFAAOCAQEAFob7imqR Ec1P3VzbO4kM3qoMnjajr/UFsrdyKjFndBioXcrUJ5jVD1ahUiJM3NVcazHpZwsp 7E4+j7u18xJMEaBMu6F40HOMNz87K4r8vZXFN4N2WAMkcpChqTsP7ApZIHQrOcVZ UJ3l7mzQFBqtEaOrDe0suNRwEp5j5xHWzwg/QH/rj++LXRgMLy/GNKlqAo5Tddvg fk8yLbER6ACQDK5ssZ49GAytkjgEu49z5HXzRYy1w4PlQlqeIZzEXIdui2ow0JP3 ddKU/rRUq8FzRW4B6QLuhyIz+WZCCsO7ZHCBNA3hs75/32WZArUNnEJ0vg6SfM4j 8PdC+ELD4QpOow== -----END CERTIFICATE-----Generated at Mon Jun 2 06:15:10 2025 by rpki-client