$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.cer File: B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.cer (raw, json) Hash identifier: 90Ux+/8hDKdPVjBHTZJdqCgeibbyz0nsebOdkwVef7w= Subject key identifier: B2:07:7B:9B:AF:0B:F3:E5:FC:B8:45:13:B1:D7:44:5E:30:CE:65:82 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3EC5B7E069FB64C887FFF4F0D093135FDF68A43C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.mft caRepository: rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 05 Sep 2025 06:44:19 +0000 Certificate not after: Fri 04 Sep 2026 06:49:19 +0000 Subordinate resources: IP: 103.157.6.0/24 IP: 2001:df5:780::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 17:31:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c5:b7:e0:69:fb:64:c8:87:ff:f4:f0:d0:93:13:5f:df:68:a4:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 5 06:44:19 2025 GMT Not After : Sep 4 06:49:19 2026 GMT Subject: CN=B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:d2:ca:20:37:ef:c6:78:c1:57:27:22:15:a5: 60:0f:e5:6c:22:1d:94:36:f5:5e:88:33:c1:7d:ec: 82:07:f6:9c:06:9d:ce:9d:4a:8d:ac:56:af:71:d5: 84:f3:74:c1:59:c3:cb:a2:91:79:b4:31:35:28:5d: a8:dc:8a:4d:3d:93:e3:b2:41:ae:64:33:f5:13:06: 5b:43:ff:0f:d3:e2:b5:8c:e3:65:45:b1:af:b8:7c: 78:c0:29:f1:9d:55:53:3b:58:08:10:80:5f:d3:9d: ed:4e:e8:64:6c:e6:54:7e:85:97:75:4d:ed:43:c7: 93:73:c6:69:78:a5:32:f5:88:a9:e9:58:b0:1b:56: dc:dc:5c:a7:4b:40:6c:de:6d:d9:3a:1d:a7:ef:3f: 91:fe:fc:8d:e6:6c:28:a3:38:d3:33:95:52:d6:a3: e1:7a:c9:7b:38:05:25:ec:89:cb:ed:c1:7d:1b:04: 17:35:33:b7:f8:ab:5a:43:02:b6:f6:46:ab:15:b5: c7:36:e5:98:53:bf:76:b4:df:3b:33:f8:5c:af:08: 50:b9:f6:4e:33:20:40:23:d9:3f:46:d5:68:e5:1c: 90:ab:91:04:ed:22:0b:e5:5d:93:aa:a9:af:44:9b: d2:e3:1f:58:8b:d9:fb:1e:2f:db:26:ed:55:46:83: f7:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B2:07:7B:9B:AF:0B:F3:E5:FC:B8:45:13:B1:D7:44:5E:30:CE:65:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/85dd4f16-570e-4c8c-a992-db89ea3bad36/0/B2077B9BAF0BF3E5FCB84513B1D7445E30CE6582.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.6.0/24 IPv6: 2001:df5:780::/48 Signature Algorithm: sha256WithRSAEncryption 4f:de:6a:b1:dc:31:af:8b:56:35:25:76:74:61:42:2a:25:3f: 14:e3:d0:6b:4e:3e:40:7d:0a:31:09:39:f7:ca:d6:15:e2:a1: ea:f7:10:1a:5f:0f:7f:e0:09:41:f3:b4:e2:92:49:d7:0f:19: ee:4d:23:e9:4f:7c:78:82:4c:fe:4d:03:fd:d9:3e:8e:cc:71: 03:91:1b:81:95:07:5c:7c:e4:d1:d7:9c:2c:57:f7:73:18:02: 92:3b:41:f9:99:4e:cd:e8:68:e5:5a:3e:fd:8d:7a:b2:8f:08: 19:58:06:ec:73:25:1d:db:dc:c1:64:be:c0:c6:db:8b:fd:af: 35:3e:a0:3f:34:0b:7d:bf:4b:94:06:1d:9f:c6:74:30:8f:e5: 0d:e4:dd:81:fd:90:2c:2f:9d:6f:fd:29:e8:2a:f1:96:75:a5: 8d:ef:cb:8b:72:9d:eb:cf:e2:38:fc:d3:0e:22:e5:60:b4:a2: cb:d6:36:e6:b9:59:08:b3:bd:fc:a8:10:31:bf:c3:e6:14:df: 19:b4:14:58:d4:24:c1:c1:46:40:29:7c:a8:66:29:68:f8:50: 43:8f:8e:3d:71:79:e9:79:a3:ea:f4:3c:45:62:20:65:88:35: 8c:f9:c5:a0:d6:56:1c:fc:f5:d0:52:c4:46:d9:13:27:8a:93: 12:ae:74:db -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUPsW34Gn7ZMiH//Tw0JMTX99opDwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDkwNTA2NDQxOVoX DTI2MDkwNDA2NDkxOVowMzExMC8GA1UEAxMoQjIwNzdCOUJBRjBCRjNFNUZDQjg0 NTEzQjFENzQ0NUUzMENFNjU4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPXSyiA378Z4wVcnIhWlYA/lbCIdlDb1XogzwX3sggf2nAadzp1KjaxWr3HV hPN0wVnDy6KRebQxNShdqNyKTT2T47JBrmQz9RMGW0P/D9PitYzjZUWxr7h8eMAp 8Z1VUztYCBCAX9Od7U7oZGzmVH6Fl3VN7UPHk3PGaXilMvWIqelYsBtW3Nxcp0tA bN5t2Todp+8/kf78jeZsKKM40zOVUtaj4XrJezgFJeyJy+3BfRsEFzUzt/irWkMC tvZGqxW1xzblmFO/drTfOzP4XK8IULn2TjMgQCPZP0bVaOUckKuRBO0iC+Vdk6qp r0Sb0uMfWIvZ+x4v2ybtVUaD90UCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLIHe5uvC/Pl/LhFE7HXRF4wzmWCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84NWRkNGYxNi01NzBlLTRjOGMtYTk5Mi1kYjg5ZWEzYmFkMzYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg1ZGQ0ZjE2 LTU3MGUtNGM4Yy1hOTkyLWRiODllYTNiYWQzNi8wL0IyMDc3QjlCQUYwQkYzRTVG Q0I4NDUxM0IxRDc0NDVFMzBDRTY1ODIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnnQYwDwQCAAIwCQMHACABDfUHgDANBgkqhkiG9w0BAQsFAAOCAQEAT95qsdwx r4tWNSV2dGFCKiU/FOPQa04+QH0KMQk598rWFeKh6vcQGl8Pf+AJQfO04pJJ1w8Z 7k0j6U98eIJM/k0D/dk+jsxxA5EbgZUHXHzk0decLFf3cxgCkjtB+ZlOzeho5Vo+ /Y16so8IGVgG7HMlHdvcwWS+wMbbi/2vNT6gPzQLfb9LlAYdn8Z0MI/lDeTdgf2Q LC+db/0p6CrxlnWlje/Li3Kd68/iOPzTDiLlYLSiy9Y25rlZCLO9/KgQMb/D5hTf GbQUWNQkwcFGQCl8qGYpaPhQQ4+OPXF56Xmj6vQ8RWIgZYg1jPnFoNZWHPz10FLE RtkTJ4qTEq502w== -----END CERTIFICATE-----Generated at Fri Sep 5 10:23:56 2025 by rpki-client