$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8CBCE2EE006256C9A6207949314A7D1FCC415B5A.cer File: 8CBCE2EE006256C9A6207949314A7D1FCC415B5A.cer (raw, json) Hash identifier: 1aIkG3UyMOy+1xe9UR2V4QUj33gFRbB0s66p1zngS54= Subject key identifier: 8C:BC:E2:EE:00:62:56:C9:A6:20:79:49:31:4A:7D:1F:CC:41:5B:5A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6A7FA1DDD1CC87E2DE347386CC9BA5658A12A5F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/8CBCE2EE006256C9A6207949314A7D1FCC415B5A.mft caRepository: rsync://repo-rpki.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 04 Mar 2025 18:58:47 +0000 Certificate not after: Tue 03 Mar 2026 19:03:47 +0000 Subordinate resources: IP: 103.187.112.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:7f:a1:dd:d1:cc:87:e2:de:34:73:86:cc:9b:a5:65:8a:12:a5:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 4 18:58:47 2025 GMT Not After : Mar 3 19:03:47 2026 GMT Subject: CN=8CBCE2EE006256C9A6207949314A7D1FCC415B5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fa:87:48:e0:0f:c9:64:4b:47:cd:99:20:e8: 96:07:4a:99:27:74:12:43:fe:ea:a9:d6:13:5e:19: 9f:94:28:46:4d:0d:03:b9:9e:ba:52:34:8d:2a:60: dd:0a:e4:9a:c5:1f:e5:c2:60:10:71:8b:7e:3a:65: a9:10:27:74:6c:04:6a:12:f0:ab:f3:63:6f:b4:de: 9d:17:fe:44:de:b5:d9:82:6e:03:bf:23:93:74:a5: 3a:bf:03:bd:ac:0c:d6:4a:90:95:69:f4:68:27:25: 62:e5:94:31:a7:e8:bc:d4:ef:10:a6:cc:d2:c2:b9: 6f:96:fc:84:20:a3:4f:49:16:35:a2:3e:75:38:49: 75:40:82:f8:e2:50:44:6f:77:65:29:be:93:b2:0b: 02:6a:8a:9c:73:01:9b:84:a6:36:cd:c6:10:30:21: b4:28:52:f9:47:da:2b:ba:8c:47:ba:e0:21:48:2c: 8b:e5:78:ef:b4:66:9a:5e:a4:c0:a2:4c:fd:4b:03: ab:c3:bc:99:1f:4b:2b:a4:ae:aa:46:1d:0d:d3:be: ed:33:76:0d:1e:81:c1:f3:ef:78:80:7e:a0:46:6c: c5:dc:47:f4:54:93:de:b4:b7:86:ae:99:d0:39:9f: 8a:0e:59:6d:8d:41:15:b2:dd:e9:ed:6e:0f:42:3d: 8c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8C:BC:E2:EE:00:62:56:C9:A6:20:79:49:31:4A:7D:1F:CC:41:5B:5A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/8CBCE2EE006256C9A6207949314A7D1FCC415B5A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.112.0/23 Signature Algorithm: sha256WithRSAEncryption 96:2c:b4:71:a7:fa:29:57:94:c2:2a:8b:6c:39:1f:3b:04:30: c6:04:ca:ae:61:a4:f9:3b:69:64:97:0a:6c:5c:a0:61:a8:33: d5:09:28:10:4a:29:f1:4c:fd:06:1d:64:3c:d5:42:9e:f4:19: 94:e1:ce:02:1d:24:94:70:5a:ad:98:06:0c:5c:0c:ff:51:82: 8d:f8:1d:35:8a:89:38:fe:e2:7f:86:2c:82:b8:a9:a4:23:8f: 38:de:6c:80:e8:47:2a:eb:7b:b6:d2:09:1e:ab:a3:f5:b2:ad: bd:a7:6b:a9:0c:ea:dd:a9:b9:2d:2e:01:29:f2:2a:42:f8:6a: 75:46:90:e8:19:93:ed:d2:50:87:be:85:a1:bb:ec:68:d9:d4: fe:86:e3:b1:67:68:9c:3c:31:da:f2:f5:03:12:68:ab:9f:37: d2:61:97:c7:82:7c:7d:c7:f8:30:4c:8e:12:af:f0:44:0b:a7: 67:a6:79:00:73:04:1c:f4:53:32:e2:99:37:fa:dd:0d:6f:3f: 1d:30:c5:9a:28:8d:6a:2a:24:1f:5d:b6:0b:65:a8:f4:25:3c: 50:43:0b:75:60:ce:65:00:48:5e:a8:dc:5e:d1:cf:79:16:f6: ca:2c:e5:5c:af:50:06:a7:13:76:95:25:47:34:a3:0e:db:1f: 37:86:39:4c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUan+h3dHMh+LeNHOGzJulZYoSpfIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMwNDE4NTg0N1oX DTI2MDMwMzE5MDM0N1owMzExMC8GA1UEAxMoOENCQ0UyRUUwMDYyNTZDOUE2MjA3 OTQ5MzE0QTdEMUZDQzQxNUI1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMv6h0jgD8lkS0fNmSDolgdKmSd0EkP+6qnWE14Zn5QoRk0NA7meulI0jSpg 3QrkmsUf5cJgEHGLfjplqRAndGwEahLwq/Njb7TenRf+RN612YJuA78jk3SlOr8D vawM1kqQlWn0aCclYuWUMafovNTvEKbM0sK5b5b8hCCjT0kWNaI+dThJdUCC+OJQ RG93ZSm+k7ILAmqKnHMBm4SmNs3GEDAhtChS+UfaK7qMR7rgIUgsi+V477Rmml6k wKJM/UsDq8O8mR9LK6SuqkYdDdO+7TN2DR6BwfPveIB+oEZsxdxH9FST3rS3hq6Z 0Dmfig5ZbY1BFbLd6e1uD0I9jBECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIy84u4AYlbJpiB5STFKfR/MQVtaMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NThkYjg3Yi0xNmNkLTQzN2EtYTViNS0wOGNiMzVkYTk3ZjAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc1OGRiODdi LTE2Y2QtNDM3YS1hNWI1LTA4Y2IzNWRhOTdmMC8wLzhDQkNFMkVFMDA2MjU2QzlB NjIwNzk0OTMxNEE3RDFGQ0M0MTVCNUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnu3AwDQYJKoZIhvcNAQELBQADggEBAJYstHGn+ilXlMIqi2w5HzsEMMYEyq5h pPk7aWSXCmxcoGGoM9UJKBBKKfFM/QYdZDzVQp70GZThzgIdJJRwWq2YBgxcDP9R go34HTWKiTj+4n+GLIK4qaQjjzjebIDoRyrre7bSCR6ro/Wyrb2na6kM6t2puS0u ASnyKkL4anVGkOgZk+3SUIe+haG77GjZ1P6G47FnaJw8Mdry9QMSaKufN9Jhl8eC fH3H+DBMjhKv8EQLp2emeQBzBBz0UzLimTf63Q1vPx0wxZoojWoqJB9dtgtlqPQl PFBDC3VgzmUASF6o3F7Rz3kW9sos5VyvUAanE3aVJUc0ow7bHzeGOUw= -----END CERTIFICATE-----Generated at Sat Apr 5 06:29:43 2025 by rpki-client