$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A715B65580762207B94EC6527AFBEDD69970A868.cer File: A715B65580762207B94EC6527AFBEDD69970A868.cer (raw, json) Hash identifier: NtqnRQ+6YvuwobB+flGOG+dogZSQb1JA7xFqNS37Ces= Subject key identifier: A7:15:B6:55:80:76:22:07:B9:4E:C6:52:7A:FB:ED:D6:99:70:A8:68 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 14BF5D574592C5AD68F47B665811CA7FF4B0FB67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c74bccd5-252c-4947-871b-156dfffe7717/0/A715B65580762207B94EC6527AFBEDD69970A868.mft caRepository: rsync://repo-rpki.idnic.net/repo/c74bccd5-252c-4947-871b-156dfffe7717/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 01:55:04 +0000 Certificate not after: Tue 02 Jun 2026 02:00:04 +0000 Subordinate resources: IP: 103.140.104.0/23 IP: 2404:fcc0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:bf:5d:57:45:92:c5:ad:68:f4:7b:66:58:11:ca:7f:f4:b0:fb:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 01:55:04 2025 GMT Not After : Jun 2 02:00:04 2026 GMT Subject: CN=A715B65580762207B94EC6527AFBEDD69970A868 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:9b:ad:c4:04:2e:15:92:e9:06:35:6c:94:d5: 30:ee:36:4f:00:c7:5a:c8:08:6b:ad:3c:52:e9:49: e8:a1:38:2d:dd:2b:75:05:0a:33:59:52:47:5b:96: cc:8b:4c:ce:56:f0:4b:aa:f8:98:96:66:02:b9:7a: 29:4d:0f:c9:59:57:97:12:70:af:3a:c7:c2:bd:81: e5:5a:bb:04:a7:43:cd:b0:dc:7c:e1:f8:2e:10:b1: 82:c9:b0:7d:99:16:84:c5:cf:cc:18:fb:14:ba:82: 31:c5:76:4b:58:a6:80:cb:bd:d8:43:b9:d1:45:d1: 1f:d6:9f:f7:85:12:22:9d:42:17:8b:4d:9e:35:9b: 84:fa:49:78:28:ac:75:e6:f2:af:0c:5c:39:2d:f6: 7f:7e:85:69:ab:5a:3a:d3:bb:61:4d:ad:89:28:2c: 37:d9:10:4b:54:40:22:09:41:4e:af:4c:97:8c:f6: c0:0c:8b:9c:fc:30:8a:c9:35:6e:7c:11:99:57:bf: 2d:47:78:10:5e:54:2c:60:1d:9d:c8:a7:1b:e6:18: 82:94:9d:9c:95:6f:34:3d:5b:07:a5:be:6f:0f:d4: 78:14:16:dc:2c:67:7d:a0:d1:60:11:f8:1e:7c:3b: a9:62:00:d3:11:d0:bc:d1:75:7f:b3:fd:f5:eb:da: 35:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A7:15:B6:55:80:76:22:07:B9:4E:C6:52:7A:FB:ED:D6:99:70:A8:68 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c74bccd5-252c-4947-871b-156dfffe7717/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c74bccd5-252c-4947-871b-156dfffe7717/0/A715B65580762207B94EC6527AFBEDD69970A868.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.104.0/23 IPv6: 2404:fcc0::/32 Signature Algorithm: sha256WithRSAEncryption 26:04:88:7e:ce:0d:72:8f:ad:63:6e:3d:69:a7:7c:b0:b6:2c: 96:e2:27:64:e3:e3:8c:70:6f:63:90:38:ee:90:0b:95:6f:a0: 9f:b6:6c:e1:7f:bd:bc:6f:8b:f1:a2:5b:7e:ac:81:e6:5c:73: 76:33:e4:9b:2b:d8:b7:42:8a:db:92:76:92:ef:ca:e2:e1:9d: ef:78:07:7d:5e:46:41:7c:de:11:7b:fd:0a:0c:f6:26:da:5b: 12:de:b7:8b:ba:6d:00:7a:00:33:e4:7d:e9:5f:e9:49:16:d4: 2e:1d:07:d9:e8:c9:3a:94:72:99:2b:ee:b0:ab:fb:12:20:cb: cd:50:71:4a:86:1d:f8:7a:2a:22:09:74:45:8b:0b:c5:53:4f: 99:55:60:87:4a:de:d3:2b:53:39:6a:fa:96:ec:58:5b:23:40: 70:e7:b0:5c:18:c8:7e:a8:10:cc:ff:21:51:80:ed:52:7f:ed: 1d:70:63:a4:71:94:71:52:bf:41:e0:0d:76:56:b0:4e:da:38: 9f:a0:39:c5:eb:17:b8:2b:e4:5c:13:be:3e:6d:42:e9:f2:9d: 78:22:08:a4:0b:4d:70:e5:93:48:cb:aa:5e:8e:ad:a6:3c:e5: 94:48:d4:3f:85:34:e2:b7:dd:cf:a9:0c:07:bb:2f:f9:04:40: 91:29:b3:0f -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUFL9dV0WSxa1o9HtmWBHKf/Sw+2cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzAxNTUwNFoX DTI2MDYwMjAyMDAwNFowMzExMC8GA1UEAxMoQTcxNUI2NTU4MDc2MjIwN0I5NEVD NjUyN0FGQkVERDY5OTcwQTg2ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMGbrcQELhWS6QY1bJTVMO42TwDHWsgIa608UulJ6KE4Ld0rdQUKM1lSR1uW zItMzlbwS6r4mJZmArl6KU0PyVlXlxJwrzrHwr2B5Vq7BKdDzbDcfOH4LhCxgsmw fZkWhMXPzBj7FLqCMcV2S1imgMu92EO50UXRH9af94USIp1CF4tNnjWbhPpJeCis debyrwxcOS32f36FaataOtO7YU2tiSgsN9kQS1RAIglBTq9Ml4z2wAyLnPwwisk1 bnwRmVe/LUd4EF5ULGAdncinG+YYgpSdnJVvND1bB6W+bw/UeBQW3CxnfaDRYBH4 Hnw7qWIA0xHQvNF1f7P99evaNW8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKcVtlWAdiIHuU7GUnr77daZcKhoMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jNzRiY2NkNS0yNTJjLTQ5NDctODcxYi0xNTZkZmZmZTc3MTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M3NGJjY2Q1 LTI1MmMtNDk0Ny04NzFiLTE1NmRmZmZlNzcxNy8wL0E3MTVCNjU1ODA3NjIyMDdC OTRFQzY1MjdBRkJFREQ2OTk3MEE4NjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnjGgwDQQCAAIwBwMFACQE/MAwDQYJKoZIhvcNAQELBQADggEBACYEiH7ODXKP rWNuPWmnfLC2LJbiJ2Tj44xwb2OQOO6QC5VvoJ+2bOF/vbxvi/GiW36sgeZcc3Yz 5Jsr2LdCituSdpLvyuLhne94B31eRkF83hF7/QoM9ibaWxLet4u6bQB6ADPkfelf 6UkW1C4dB9noyTqUcpkr7rCr+xIgy81QcUqGHfh6KiIJdEWLC8VTT5lVYIdK3tMr Uzlq+pbsWFsjQHDnsFwYyH6oEMz/IVGA7VJ/7R1wY6RxlHFSv0HgDXZWsE7aOJ+g OcXrF7gr5FwTvj5tQunynXgiCKQLTXDlk0jLql6OraY85ZRI1D+FNOK33c+pDAe7 L/kEQJEpsw8= -----END CERTIFICATE-----Generated at Tue Jun 3 23:30:12 2025 by rpki-client