$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer File: 821F16581F931A19A14B40DBF1E2B053A9C0B6A0.cer (raw, json) Hash identifier: HtTsLrPF6MNt/qKFXp/0WkCtEkVJjlI5gB2wJ4vvHfw= Subject key identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 441D713B5E65E3AB9C8A7F5A582D3C2E33A6E1E0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft caRepository: rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 14:52:15 +0000 Certificate not after: Tue 02 Jun 2026 14:57:15 +0000 Subordinate resources: IP: 103.52.16.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:1d:71:3b:5e:65:e3:ab:9c:8a:7f:5a:58:2d:3c:2e:33:a6:e1:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 14:52:15 2025 GMT Not After : Jun 2 14:57:15 2026 GMT Subject: CN=821F16581F931A19A14B40DBF1E2B053A9C0B6A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:cb:bd:fa:51:90:8f:5b:5b:3e:3e:36:f8:9c: 41:81:ea:51:9d:b6:fe:6b:32:70:ff:12:06:ab:16: 33:8c:d0:a5:41:94:90:a0:c0:19:ab:c1:dc:ee:da: e3:9e:56:67:22:49:b3:a4:02:46:25:fd:0c:e8:77: 0e:55:e1:16:e8:d1:12:9c:12:d0:8b:73:36:d9:70: ce:58:39:f5:e2:6d:d4:12:a6:eb:a0:ef:ff:b6:d8: d5:b6:6c:20:94:e7:4e:0a:c4:0e:e2:a7:1d:4f:25: ea:46:3f:cb:24:94:1e:e1:65:bd:25:2e:70:ba:11: 1e:2f:15:c1:3f:bf:0a:2a:14:24:ac:be:49:f0:75: 66:86:db:ca:4a:63:f6:7a:bf:b3:d5:fa:18:b3:24: 5d:76:b0:07:88:3c:6a:f9:56:2f:c2:51:1b:e7:06: ad:86:74:24:38:fc:2f:1a:73:9d:9d:8a:65:78:44: 80:b6:84:7c:22:1a:d9:aa:21:6d:6c:42:ff:68:60: 33:1b:2d:58:fe:2f:c2:08:00:c1:b3:38:31:15:36: 3e:8d:b7:40:69:0c:88:ab:70:ba:6f:ee:69:79:f1: 22:54:76:8a:0a:6c:9e:78:37:90:58:15:1c:3f:5a: 0e:64:1a:09:06:71:17:44:53:d0:0b:21:49:82:c0: 6e:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 82:1F:16:58:1F:93:1A:19:A1:4B:40:DB:F1:E2:B0:53:A9:C0:B6:A0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fadd7c0f-02d3-4217-9fc3-0047ae1836dc/0/821F16581F931A19A14B40DBF1E2B053A9C0B6A0.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.52.16.0/22 Signature Algorithm: sha256WithRSAEncryption 42:44:42:ef:96:c5:38:5d:5b:73:5c:65:0c:66:6d:d5:cd:87: ea:99:07:12:d1:f1:52:55:95:b6:74:65:50:1e:0b:fe:c7:81: c4:70:18:c1:83:02:3e:61:1e:c5:a8:f8:ca:1c:db:31:0d:5e: fc:1c:c6:f7:d8:11:c5:b1:73:63:e7:89:d1:ec:5e:97:68:86: 85:5d:14:4a:bf:bd:05:f1:ab:38:4f:20:e3:f1:51:f1:76:5b: 77:6d:34:e3:85:91:32:a9:48:58:e5:c8:fc:b0:49:f6:08:88: 0d:d3:b7:48:36:b0:f9:44:29:51:ff:28:4d:30:0d:38:45:b0: 9c:f7:ac:76:61:c7:6c:4d:a9:e7:39:2d:fc:a1:59:25:24:91: 12:66:75:62:cb:1a:78:4d:94:ce:f7:f2:6a:51:09:00:be:d0: e3:44:bc:6b:19:90:9f:80:63:d7:c9:5a:ee:9f:fa:b9:ac:e7: b3:dd:75:1a:0e:60:db:c0:1f:c4:f4:8e:20:8b:ee:9c:a5:89: 62:b9:a5:e0:de:c4:3c:e5:63:c0:bc:f2:e6:3b:44:c1:60:7b: e3:2e:20:b2:36:cc:63:2b:8f:60:76:82:0d:07:a5:d5:62:5c: 92:63:c0:91:42:3e:41:08:14:80:6e:4e:a6:71:30:3c:23:36: c4:79:46:7b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURB1xO15l46ucin9aWC08LjOm4eAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzE0NTIxNVoX DTI2MDYwMjE0NTcxNVowMzExMC8GA1UEAxMoODIxRjE2NTgxRjkzMUExOUExNEI0 MERCRjFFMkIwNTNBOUMwQjZBMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALDLvfpRkI9bWz4+NvicQYHqUZ22/msycP8SBqsWM4zQpUGUkKDAGavB3O7a 455WZyJJs6QCRiX9DOh3DlXhFujREpwS0ItzNtlwzlg59eJt1BKm66Dv/7bY1bZs IJTnTgrEDuKnHU8l6kY/yySUHuFlvSUucLoRHi8VwT+/CioUJKy+SfB1Zobbykpj 9nq/s9X6GLMkXXawB4g8avlWL8JRG+cGrYZ0JDj8LxpznZ2KZXhEgLaEfCIa2aoh bWxC/2hgMxstWP4vwggAwbM4MRU2Po23QGkMiKtwum/uaXnxIlR2igpsnng3kFgV HD9aDmQaCQZxF0RT0AshSYLAbu0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIIfFlgfkxoZoUtA2/HisFOpwLagMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mYWRkN2MwZi0wMmQzLTQyMTctOWZjMy0wMDQ3YWUxODM2ZGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhZGQ3YzBm LTAyZDMtNDIxNy05ZmMzLTAwNDdhZTE4MzZkYy8wLzgyMUYxNjU4MUY5MzFBMTlB MTRCNDBEQkYxRTJCMDUzQTlDMEI2QTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnNBAwDQYJKoZIhvcNAQELBQADggEBAEJEQu+WxThdW3NcZQxmbdXNh+qZBxLR 8VJVlbZ0ZVAeC/7HgcRwGMGDAj5hHsWo+Moc2zENXvwcxvfYEcWxc2PnidHsXpdo hoVdFEq/vQXxqzhPIOPxUfF2W3dtNOOFkTKpSFjlyPywSfYIiA3Tt0g2sPlEKVH/ KE0wDThFsJz3rHZhx2xNqec5LfyhWSUkkRJmdWLLGnhNlM738mpRCQC+0ONEvGsZ kJ+AY9fJWu6f+rms57PddRoOYNvAH8T0jiCL7pyliWK5peDexDzlY8C88uY7RMFg e+MuILI2zGMrj2B2gg0HpdViXJJjwJFCPkEIFIBuTqZxMDwjNsR5Rns= -----END CERTIFICATE-----Generated at Tue Jun 3 23:30:11 2025 by rpki-client