$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/85D232B96AB560AF91A1D8CFA996C519460662C6.cer File: 85D232B96AB560AF91A1D8CFA996C519460662C6.cer (raw, json) Hash identifier: xJ3NrZfna7e0iJwWICO2itUnAb5SVDEudRraj8+iCOU= Subject key identifier: 85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 281E4812C7FB24E3E4E47B75E1D9F3F7E721F94D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/85D232B96AB560AF91A1D8CFA996C519460662C6.mft caRepository: rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 15:31:22 +0000 Certificate not after: Tue 02 Jun 2026 15:36:22 +0000 Subordinate resources: IP: 103.247.40.0/22 IP: 2403:4500::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Jun 2025 03:41:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:1e:48:12:c7:fb:24:e3:e4:e4:7b:75:e1:d9:f3:f7:e7:21:f9:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 15:31:22 2025 GMT Not After : Jun 2 15:36:22 2026 GMT Subject: CN=85D232B96AB560AF91A1D8CFA996C519460662C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ea:af:e4:eb:02:b7:25:af:65:6f:d9:96:8b: 11:da:62:ab:57:06:d0:9d:e3:1a:27:b2:05:aa:d2: 3e:17:1a:73:4b:b9:89:0b:ce:35:d9:39:9a:60:e4: 63:e5:94:6f:89:7d:ed:fe:90:2a:3d:5e:56:03:62: e1:a8:d7:7b:e1:8e:ca:4f:d5:82:2a:1f:e8:aa:ab: 5c:2c:6b:d1:32:70:83:ac:bd:28:11:de:7d:89:1f: bd:71:f8:2a:ee:63:b5:4c:f6:77:8f:04:2f:5d:c4: ef:fe:b0:54:d5:f3:d0:10:e6:c8:de:34:7f:96:a7: 53:4a:cd:df:fd:81:2c:4b:ab:cd:5c:b0:16:b6:9e: ba:54:84:ed:82:f1:0d:7f:bb:ec:67:f5:45:d8:de: ac:68:9c:f2:d4:ed:d0:63:3b:e8:08:e5:64:74:3d: 9c:cc:91:43:77:d5:b5:bf:a5:28:18:57:4c:9a:16: 21:fa:2c:ab:4b:e3:24:dc:c4:0e:1f:3e:34:c9:04: c8:e5:5d:22:f5:25:cb:8d:a0:98:7f:a9:2a:c6:74: 5b:6b:d9:2a:b2:ad:76:8a:20:a9:0e:2b:8e:a1:de: 20:a7:86:13:4d:f6:00:13:ba:f2:f9:b8:e6:48:a5: a4:38:46:69:20:d2:06:9d:d4:e9:6a:d3:40:6e:a6: 0f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/85D232B96AB560AF91A1D8CFA996C519460662C6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.40.0/22 IPv6: 2403:4500::/32 Signature Algorithm: sha256WithRSAEncryption 95:c9:5f:08:25:74:88:a9:17:f1:8d:03:8d:da:d4:a2:41:06: aa:29:b8:e9:6c:7f:07:88:d8:89:6b:fe:f0:6b:8d:4e:57:6a: aa:c2:18:44:f1:ac:9a:e2:0d:65:d1:40:31:11:c2:57:8e:02: c0:af:e4:52:6c:bc:62:41:8f:1d:f2:96:50:d7:11:96:92:9f: 07:fc:b1:36:2d:42:ce:55:da:b6:28:57:7f:4d:74:fa:c9:ae: d4:32:35:69:d0:60:81:19:01:25:51:85:8a:6d:95:5c:fa:6c: e5:cb:f3:6d:76:6d:c0:4e:85:41:33:10:e5:81:41:4d:bb:ce: a3:55:46:b1:08:78:24:7b:6f:f1:03:b1:b1:2a:eb:84:b1:8f: 05:bd:75:92:94:29:3c:3e:cd:2e:2f:cf:be:bb:d8:a5:a2:bb: ad:42:c1:dd:6e:f4:aa:2b:cd:d2:69:ed:0e:16:5d:b9:ce:04: 61:af:f3:f0:15:50:c2:66:04:9c:66:78:1a:e8:75:d5:10:f0: b8:1b:d3:b5:71:fa:d4:67:ea:df:85:fe:c4:44:3e:c9:55:63: 34:e8:51:94:bf:30:07:83:f4:67:e8:68:08:c0:76:f9:78:e8: a2:fb:dc:cc:58:5a:54:c4:13:75:5e:f6:8e:11:75:31:56:f5: bd:96:3d:3b -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUKB5IEsf7JOPk5Ht14dnz9+ch+U0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzE1MzEyMloX DTI2MDYwMjE1MzYyMlowMzExMC8GA1UEAxMoODVEMjMyQjk2QUI1NjBBRjkxQTFE OENGQTk5NkM1MTk0NjA2NjJDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLqr+TrArclr2Vv2ZaLEdpiq1cG0J3jGieyBarSPhcac0u5iQvONdk5mmDk Y+WUb4l97f6QKj1eVgNi4ajXe+GOyk/Vgiof6KqrXCxr0TJwg6y9KBHefYkfvXH4 Ku5jtUz2d48EL13E7/6wVNXz0BDmyN40f5anU0rN3/2BLEurzVywFraeulSE7YLx DX+77Gf1RdjerGic8tTt0GM76AjlZHQ9nMyRQ3fVtb+lKBhXTJoWIfosq0vjJNzE Dh8+NMkEyOVdIvUly42gmH+pKsZ0W2vZKrKtdoogqQ4rjqHeIKeGE032ABO68vm4 5kilpDhGaSDSBp3U6WrTQG6mDwcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIXSMrlqtWCvkaHYz6mWxRlGBmLGMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80OTU1NmEzMS05MzdlLTRhZmUtYjk5YS0yNzRjOTUyNGY5ODEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5NTU2YTMx LTkzN2UtNGFmZS1iOTlhLTI3NGM5NTI0Zjk4MS8wLzg1RDIzMkI5NkFCNTYwQUY5 MUExRDhDRkE5OTZDNTE5NDYwNjYyQzYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJn9ygwDQQCAAIwBwMFACQDRQAwDQYJKoZIhvcNAQELBQADggEBAJXJXwgldIip F/GNA43a1KJBBqopuOlsfweI2Ilr/vBrjU5XaqrCGETxrJriDWXRQDERwleOAsCv 5FJsvGJBjx3yllDXEZaSnwf8sTYtQs5V2rYoV39NdPrJrtQyNWnQYIEZASVRhYpt lVz6bOXL8212bcBOhUEzEOWBQU27zqNVRrEIeCR7b/EDsbEq64SxjwW9dZKUKTw+ zS4vz7672KWiu61Cwd1u9KorzdJp7Q4WXbnOBGGv8/AVUMJmBJxmeBroddUQ8Lgb 07Vx+tRn6t+F/sREPslVYzToUZS/MAeD9GfoaAjAdvl46KL73MxYWlTEE3Ve9o4R dTFW9b2WPTs= -----END CERTIFICATE-----Generated at Tue Jun 3 23:41:19 2025 by rpki-client