$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B59504F478A4226C16D97004A6F98153CD19D2E0.cer File: B59504F478A4226C16D97004A6F98153CD19D2E0.cer (raw, json) Hash identifier: x3GNcEIgU0+4hVYtxMO0RYUDXxSoIuKCcm320uau+ws= Subject key identifier: B5:95:04:F4:78:A4:22:6C:16:D9:70:04:A6:F9:81:53:CD:19:D2:E0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 68EA100F596DDEBA350F1A045FF460ED63895253 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6d4fbfb0-93ee-4ea6-b4cf-07d769b88a22/0/B59504F478A4226C16D97004A6F98153CD19D2E0.mft caRepository: rsync://repo-rpki.idnic.net/repo/6d4fbfb0-93ee-4ea6-b4cf-07d769b88a22/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 20 Feb 2025 09:01:41 +0000 Certificate not after: Thu 19 Feb 2026 09:06:41 +0000 Subordinate resources: IP: 103.122.5.0/24 IP: 2001:df6:7b00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:ea:10:0f:59:6d:de:ba:35:0f:1a:04:5f:f4:60:ed:63:89:52:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 20 09:01:41 2025 GMT Not After : Feb 19 09:06:41 2026 GMT Subject: CN=B59504F478A4226C16D97004A6F98153CD19D2E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cc:40:c1:8a:f4:7b:25:9e:89:ee:fc:62:37: b8:6a:78:d4:36:82:18:7c:de:45:82:29:57:1b:f3: a5:6c:31:1d:59:dd:3d:89:62:14:c3:21:f5:04:e4: 67:74:10:be:8c:30:bd:e7:d2:da:ff:4e:fd:28:8c: 61:7b:53:95:0f:6b:3a:62:a7:66:d5:f2:66:74:a1: b8:42:2c:da:20:66:43:8f:e7:3c:c3:65:7a:9e:97: b0:f4:32:80:06:34:b3:f6:58:3a:cb:f5:95:e5:5d: 2f:12:c1:dc:e9:c9:86:9d:1c:e8:b0:10:28:5c:f0: e5:0a:8f:c3:89:b7:79:a3:96:36:74:cf:05:ca:46: 3d:06:48:2f:65:6a:85:ac:e0:67:d7:cd:cc:d9:fe: b7:10:0e:e8:06:d2:c2:29:95:fc:13:d3:f2:6c:12: e2:b8:58:e2:9d:f4:db:de:2a:f1:f5:27:33:52:6e: 17:1a:ba:a6:23:1b:f0:a5:96:3d:78:81:e9:56:27: ab:49:0e:cc:fb:c7:2c:87:8f:8e:5b:b6:70:dd:09: e3:28:f2:5e:a7:60:d4:8c:c8:23:c9:8b:6f:03:4e: 4d:a0:b2:31:da:87:bb:52:8c:31:31:65:f8:37:52: 24:98:e1:ce:e8:e3:f4:56:48:fc:11:65:20:9b:6a: 38:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B5:95:04:F4:78:A4:22:6C:16:D9:70:04:A6:F9:81:53:CD:19:D2:E0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6d4fbfb0-93ee-4ea6-b4cf-07d769b88a22/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6d4fbfb0-93ee-4ea6-b4cf-07d769b88a22/0/B59504F478A4226C16D97004A6F98153CD19D2E0.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.5.0/24 IPv6: 2001:df6:7b00::/48 Signature Algorithm: sha256WithRSAEncryption 18:9c:14:00:a2:94:9a:c4:39:63:c6:c4:9d:c2:b9:09:f5:c7: 03:e9:10:99:8e:92:be:c7:00:86:20:9f:aa:e1:76:a8:8f:83: 27:77:e0:b7:82:b1:a6:c6:39:e8:57:85:a3:57:65:27:23:42: cd:db:87:ed:8f:d6:05:9d:a2:c2:21:5b:a8:93:96:dc:1a:55: 97:db:56:3b:20:ea:23:c0:43:d7:e0:45:b5:36:ef:f5:6d:d6: ff:f5:06:90:44:cd:2c:8f:40:d8:21:c0:e6:2a:57:25:b0:6c: 21:d1:8b:7c:0d:37:ed:3c:e9:d4:f9:16:e1:45:c1:ba:22:cd: 14:1c:49:42:07:51:35:49:04:30:92:32:af:8f:3b:d2:22:f1: 5f:93:a2:1f:27:43:1a:aa:01:5e:63:81:c7:ba:ed:22:e4:3d: bf:24:7c:59:fc:3f:f6:44:eb:f9:9f:88:51:e7:8d:4f:41:35: 71:09:db:2b:e4:01:96:6b:42:70:61:32:37:b4:dc:4d:cb:f5: a2:b3:06:86:e7:ec:7a:fb:58:ab:2d:88:e7:ea:ba:68:24:e6: 48:1d:5b:f0:34:47:92:3b:bd:c0:db:36:62:63:de:48:ce:03: 32:92:ec:ae:a0:20:7c:84:dd:6a:90:a6:43:38:f2:05:0a:c5: de:a3:e2:f8 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUaOoQD1lt3ro1DxoEX/Rg7WOJUlMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIyMDA5MDE0MVoX DTI2MDIxOTA5MDY0MVowMzExMC8GA1UEAxMoQjU5NTA0RjQ3OEE0MjI2QzE2RDk3 MDA0QTZGOTgxNTNDRDE5RDJFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPMQMGK9Hslnonu/GI3uGp41DaCGHzeRYIpVxvzpWwxHVndPYliFMMh9QTk Z3QQvowwvefS2v9O/SiMYXtTlQ9rOmKnZtXyZnShuEIs2iBmQ4/nPMNlep6XsPQy gAY0s/ZYOsv1leVdLxLB3OnJhp0c6LAQKFzw5QqPw4m3eaOWNnTPBcpGPQZIL2Vq hazgZ9fNzNn+txAO6AbSwimV/BPT8mwS4rhY4p30294q8fUnM1JuFxq6piMb8KWW PXiB6VYnq0kOzPvHLIePjlu2cN0J4yjyXqdg1IzII8mLbwNOTaCyMdqHu1KMMTFl +DdSJJjhzujj9FZI/BFlIJtqOI0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLWVBPR4pCJsFtlwBKb5gVPNGdLgMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82ZDRmYmZiMC05M2VlLTRlYTYtYjRjZi0wN2Q3NjliODhhMjIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkNGZiZmIw LTkzZWUtNGVhNi1iNGNmLTA3ZDc2OWI4OGEyMi8wL0I1OTUwNEY0NzhBNDIyNkMx NkQ5NzAwNEE2Rjk4MTUzQ0QxOUQyRTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnegUwDwQCAAIwCQMHACABDfZ7ADANBgkqhkiG9w0BAQsFAAOCAQEAGJwUAKKU msQ5Y8bEncK5CfXHA+kQmY6SvscAhiCfquF2qI+DJ3fgt4KxpsY56FeFo1dlJyNC zduH7Y/WBZ2iwiFbqJOW3BpVl9tWOyDqI8BD1+BFtTbv9W3W//UGkETNLI9A2CHA 5ipXJbBsIdGLfA037Tzp1PkW4UXBuiLNFBxJQgdRNUkEMJIyr4870iLxX5OiHydD GqoBXmOBx7rtIuQ9vyR8Wfw/9kTr+Z+IUeeNT0E1cQnbK+QBlmtCcGEyN7TcTcv1 orMGhufsevtYqy2I5+q6aCTmSB1b8DRHkju9wNs2YmPeSM4DMpLsrqAgfITdapCm QzjyBQrF3qPi+A== -----END CERTIFICATE-----Generated at Sat Apr 5 10:30:37 2025 by rpki-client