This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer File: B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.cer (raw, json) Hash identifier: H2cdDb3T8kl8M3q9PK9vOBCTaauDcsSz4nG9WrSmr9o= Subject key identifier: B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6F8EF83A1E6AFE1FEDCB68A6F1D0579F951005E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.mft caRepository: rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 06 Apr 2025 09:46:51 +0000 Certificate not after: Sun 05 Apr 2026 09:51:51 +0000 Subordinate resources: IP: 103.155.156.0/23 IP: 2406:70c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Dec 2025 12:07:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:8e:f8:3a:1e:6a:fe:1f:ed:cb:68:a6:f1:d0:57:9f:95:10:05:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 6 09:46:51 2025 GMT Not After : Apr 5 09:51:51 2026 GMT Subject: CN=B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:dd:4f:9e:af:26:01:2d:9d:39:74:de:88:20: be:e8:d8:95:ca:1c:64:fb:0c:a3:84:4f:74:bd:25: 8d:9c:04:db:2a:7d:0a:1f:df:ca:5f:7c:cb:82:62: 39:18:e3:9f:49:20:5a:e1:c3:f6:b6:35:73:19:0b: 2c:78:d6:59:2e:d9:35:82:68:28:bb:ef:c0:d6:e9: 53:13:85:6d:bb:5e:db:ec:16:1e:c4:6d:2b:6e:4a: c3:6f:c5:ba:37:17:0c:52:d4:c5:57:72:75:b4:7a: c9:88:e0:70:db:29:59:84:b1:62:5d:15:91:0f:26: f4:8a:2d:98:4a:df:b3:8f:5a:0b:d0:71:57:aa:c2: e7:e5:44:05:41:9b:34:54:03:6a:cf:6e:46:1b:af: 64:a8:ef:fd:75:4d:a2:ba:2d:86:4f:bd:70:eb:65: a5:e8:46:63:fe:6c:46:8c:ce:bb:54:1b:e8:81:9e: f2:35:ea:3d:06:8e:d5:bd:9c:ea:a0:f7:0a:07:41: 2e:4c:4a:87:ce:5b:d6:98:4f:5a:87:35:4d:a9:69: 51:ff:13:50:86:f2:40:5e:6f:37:f9:b1:f8:c0:bb: c7:57:0b:97:ef:69:1c:06:f4:a6:a5:df:65:66:5f: 9b:e4:dd:50:e9:ae:b1:cd:4e:01:4f:bf:24:9c:56: 8e:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B9:72:F0:73:B8:AF:26:B8:53:3E:97:AA:FB:AE:C1:7F:CE:FD:6F:8C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9d1619cb-c01c-4614-863e-ce288d7ba765/0/B972F073B8AF26B8533E97AAFBAEC17FCEFD6F8C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.156.0/23 IPv6: 2406:70c0::/32 Signature Algorithm: sha256WithRSAEncryption 10:6d:9c:d3:08:e8:3a:f0:49:0a:85:e1:0d:1b:89:68:f8:83: d3:27:8b:2e:48:81:2e:1f:e7:fb:4e:ae:d6:5a:59:9a:4d:70: b4:6d:23:eb:3d:74:82:d0:7a:10:29:a4:9d:b0:87:0e:8d:ae: 01:6d:aa:cd:e0:c2:de:a2:0b:86:b3:74:ce:e5:0c:03:72:fb: d7:1d:39:63:bf:5d:7b:71:92:db:4c:fa:37:4f:ae:0c:0f:69: 94:7a:71:5b:1f:fd:08:2e:17:25:de:41:bb:37:f0:95:b9:00: 70:4c:30:e7:ae:60:58:4c:8a:8d:29:0d:e0:b1:75:cf:37:b2: db:00:b5:88:d2:56:1d:3f:0f:01:4d:ec:0d:39:ab:d2:f5:a8: 66:39:94:ba:b8:e7:d5:35:68:ac:3f:26:36:4f:5f:a5:fa:6a: 74:a2:e1:3f:d8:73:40:3d:9b:2b:70:f6:f7:e7:ec:b4:e4:8b: 5e:8a:72:d0:de:59:89:4a:d4:51:93:77:09:b4:cc:46:18:42: 68:79:9f:2e:3b:ad:be:a0:4f:75:4f:33:b9:bc:f0:5d:3b:f8: 0f:3e:1f:50:8d:03:db:fa:ed:50:a8:80:a7:cb:76:0c:c4:1e: ae:1e:df:81:37:66:2a:5c:86:27:8e:74:a7:dc:46:fa:c0:fb: dd:ea:f5:f1 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUb474Oh5q/h/ty2im8dBXn5UQBekwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwNjA5NDY1MVoX DTI2MDQwNTA5NTE1MVowMzExMC8GA1UEAxMoQjk3MkYwNzNCOEFGMjZCODUzM0U5 N0FBRkJBRUMxN0ZDRUZENkY4QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfdT56vJgEtnTl03oggvujYlcocZPsMo4RPdL0ljZwE2yp9Ch/fyl98y4Ji ORjjn0kgWuHD9rY1cxkLLHjWWS7ZNYJoKLvvwNbpUxOFbbte2+wWHsRtK25Kw2/F ujcXDFLUxVdydbR6yYjgcNspWYSxYl0VkQ8m9IotmErfs49aC9BxV6rC5+VEBUGb NFQDas9uRhuvZKjv/XVNorothk+9cOtlpehGY/5sRozOu1Qb6IGe8jXqPQaO1b2c 6qD3CgdBLkxKh85b1phPWoc1TalpUf8TUIbyQF5vN/mx+MC7x1cLl+9pHAb0pqXf ZWZfm+TdUOmusc1OAU+/JJxWjmUCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLly8HO4rya4Uz6XqvuuwX/O/W+MMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85ZDE2MTljYi1jMDFjLTQ2MTQtODYzZS1jZTI4OGQ3YmE3NjUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkMTYxOWNi LWMwMWMtNDYxNC04NjNlLWNlMjg4ZDdiYTc2NS8wL0I5NzJGMDczQjhBRjI2Qjg1 MzNFOTdBQUZCQUVDMTdGQ0VGRDZGOEMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnm5wwDQQCAAIwBwMFACQGcMAwDQYJKoZIhvcNAQELBQADggEBABBtnNMI6Drw SQqF4Q0biWj4g9Mniy5IgS4f5/tOrtZaWZpNcLRtI+s9dILQehAppJ2whw6NrgFt qs3gwt6iC4azdM7lDANy+9cdOWO/XXtxkttM+jdPrgwPaZR6cVsf/QguFyXeQbs3 8JW5AHBMMOeuYFhMio0pDeCxdc83stsAtYjSVh0/DwFN7A05q9L1qGY5lLq459U1 aKw/JjZPX6X6anSi4T/Yc0A9mytw9vfn7LTki16KctDeWYlK1FGTdwm0zEYYQmh5 ny47rb6gT3VPM7m88F07+A8+H1CNA9v67VCogKfLdgzEHq4e34E3ZipchieOdKfc RvrA+93q9fE= -----END CERTIFICATE-----Generated at Wed Dec 3 13:15:54 2025 by rpki-client