$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer File: B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.cer (raw, json) Hash identifier: gx7hZUFITb4GDys1i1cwSWQKBk/vNqIH0LL6FgPzuew= Subject key identifier: B1:1A:6E:BA:7C:0F:02:09:30:47:3F:B7:FA:FC:2D:9C:97:E4:98:2D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 297EED9AD7600949EC1449F1A62271551BA13DBB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.mft caRepository: rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 18:18:23 +0000 Certificate not after: Tue 02 Jun 2026 18:23:23 +0000 Subordinate resources: IP: 27.0.196.0/22 IP: 103.229.160.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:7e:ed:9a:d7:60:09:49:ec:14:49:f1:a6:22:71:55:1b:a1:3d:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 18:18:23 2025 GMT Not After : Jun 2 18:23:23 2026 GMT Subject: CN=B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0d:f7:1f:e6:54:c1:f3:07:b0:5a:61:71:c6: 0d:b7:e4:d0:7b:2a:b4:f5:98:64:c2:3f:85:fb:34: af:a9:af:16:e0:46:b7:f2:39:5e:9f:6f:b9:af:eb: a4:9a:02:7b:90:74:c8:09:74:25:9c:14:a2:e5:3f: b5:a4:e9:9e:84:19:06:ab:5e:09:40:f4:d9:37:84: f7:69:0a:67:e2:23:e2:e7:7c:f9:52:83:f8:28:0d: c9:62:45:44:52:73:c4:6e:d0:0f:1b:a5:17:87:6f: 26:06:a3:0e:59:9f:bf:95:d5:c4:b3:b9:48:cf:9e: 82:62:a3:03:8e:8b:83:48:04:a1:db:14:87:12:20: 7a:ad:60:75:01:a5:87:1b:c2:45:33:16:29:cd:01: 24:8f:5a:e9:04:0d:51:8d:56:56:19:96:c2:0d:6d: a9:9c:17:ba:32:8b:72:26:bc:17:93:e4:7d:0f:f6: 08:b5:0a:fa:9a:ab:f3:03:d0:9c:8b:e3:ea:2c:bb: cd:8f:b6:51:03:88:b2:74:87:0f:14:77:e9:c0:c9: 29:b6:bb:28:57:fb:15:5a:5c:cb:11:cb:13:d3:e2: 53:6e:2d:c1:d8:b1:b0:91:5b:79:77:ac:94:2a:91: 3d:4a:a2:81:76:b4:75:e6:34:01:8c:af:33:da:ce: f0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:1A:6E:BA:7C:0F:02:09:30:47:3F:B7:FA:FC:2D:9C:97:E4:98:2D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d93eb8f6-bb6c-4ea7-86df-b243c5164d22/0/B11A6EBA7C0F020930473FB7FAFC2D9C97E4982D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.0.196.0/22 103.229.160.0/22 Signature Algorithm: sha256WithRSAEncryption 2b:19:97:8f:7d:13:fc:1a:ef:41:d8:46:fd:f2:59:c2:04:54: 50:b3:e0:4f:9f:8d:eb:6b:d3:76:2d:01:64:5c:86:56:a8:e4: c1:c4:6e:bf:e7:90:05:c6:bc:f6:f1:77:27:18:42:39:99:01: ad:3b:0c:f7:bf:52:01:fc:4e:59:7b:7a:c8:90:56:44:b2:d6: 10:03:a9:c9:14:1b:7e:ae:dd:51:40:d9:ef:28:d4:76:0d:dd: 21:c8:f7:f7:ec:f6:a8:64:43:c1:c6:f9:64:df:de:42:2e:bf: d8:db:8b:6d:37:63:0f:df:9c:c4:fe:84:f3:6c:51:96:33:85: 00:71:08:10:cf:5f:3d:19:26:d9:93:0d:72:9d:99:72:7f:b6: 38:0c:37:36:99:fa:be:9a:98:30:eb:88:57:3e:b7:a8:77:23: 14:04:d4:84:36:72:c7:fb:7e:47:7a:11:dd:a6:76:52:5a:eb: 49:a2:27:98:84:a2:a1:dc:b3:96:f8:10:ce:a4:89:44:2c:68: 4b:17:f8:63:84:2a:6e:0d:a1:0c:47:98:d3:0b:9f:18:a6:cd: 8e:0f:c7:93:b6:93:5c:e9:92:14:f1:75:8d:34:e9:cb:8e:bd: bf:53:c5:1b:64:28:1d:99:c1:de:ac:96:9d:26:c2:7a:62:78: c8:c5:bc:6f -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUKX7tmtdgCUnsFEnxpiJxVRuhPbswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzE4MTgyM1oX DTI2MDYwMjE4MjMyM1owMzExMC8GA1UEAxMoQjExQTZFQkE3QzBGMDIwOTMwNDcz RkI3RkFGQzJEOUM5N0U0OTgyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMN9x/mVMHzB7BaYXHGDbfk0HsqtPWYZMI/hfs0r6mvFuBGt/I5Xp9vua/r pJoCe5B0yAl0JZwUouU/taTpnoQZBqteCUD02TeE92kKZ+Ij4ud8+VKD+CgNyWJF RFJzxG7QDxulF4dvJgajDlmfv5XVxLO5SM+egmKjA46Lg0gEodsUhxIgeq1gdQGl hxvCRTMWKc0BJI9a6QQNUY1WVhmWwg1tqZwXujKLcia8F5PkfQ/2CLUK+pqr8wPQ nIvj6iy7zY+2UQOIsnSHDxR36cDJKba7KFf7FVpcyxHLE9PiU24twdixsJFbeXes lCqRPUqigXa0deY0AYyvM9rO8CUCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLEabrp8DwIJMEc/t/r8LZyX5JgtMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kOTNlYjhmNi1iYjZjLTRlYTctODZkZi1iMjQzYzUxNjRkMjIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5M2ViOGY2 LWJiNmMtNGVhNy04NmRmLWIyNDNjNTE2NGQyMi8wL0IxMUE2RUJBN0MwRjAyMDkz MDQ3M0ZCN0ZBRkMyRDlDOTdFNDk4MkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAIbAMQDBAJn5aAwDQYJKoZIhvcNAQELBQADggEBACsZl499E/wa70HYRv3yWcIE VFCz4E+fjetr03YtAWRchlao5MHEbr/nkAXGvPbxdycYQjmZAa07DPe/UgH8Tll7 esiQVkSy1hADqckUG36u3VFA2e8o1HYN3SHI9/fs9qhkQ8HG+WTf3kIuv9jbi203 Yw/fnMT+hPNsUZYzhQBxCBDPXz0ZJtmTDXKdmXJ/tjgMNzaZ+r6amDDriFc+t6h3 IxQE1IQ2csf7fkd6Ed2mdlJa60miJ5iEoqHcs5b4EM6kiUQsaEsX+GOEKm4NoQxH mNMLnximzY4Px5O2k1zpkhTxdY006cuOvb9TxRtkKB2Zwd6slp0mwnpieMjFvG8= -----END CERTIFICATE-----Generated at Tue Jun 3 23:17:51 2025 by rpki-client