$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer File: BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.cer (raw, json) Hash identifier: TuiliXuhz3Cq2wKIMo7wyE6AvF+KSTjY5aFgNXWxhpw= Subject key identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 33F03D962DF00AA8751AEA1C480A700F4D3C56B1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft caRepository: rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 03 Apr 2025 00:28:08 +0000 Certificate not after: Thu 02 Apr 2026 00:33:08 +0000 Subordinate resources: IP: 103.189.118.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:f0:3d:96:2d:f0:0a:a8:75:1a:ea:1c:48:0a:70:0f:4d:3c:56:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Apr 3 00:28:08 2025 GMT Not After : Apr 2 00:33:08 2026 GMT Subject: CN=BAC82A4D55B368F48D80BE045E0F4A8418C3EA73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:74:b4:f5:af:4c:db:75:dc:aa:b1:b3:04:46: 69:2a:4a:98:c9:e3:ce:d7:82:3c:79:75:f7:25:54: 12:7b:9b:e2:f5:4c:61:ea:76:29:33:64:fb:66:86: 36:63:0c:1d:64:c7:76:bb:ad:77:31:96:b8:7c:08: a7:27:ad:d3:61:89:a7:fc:33:49:14:8d:c3:63:23: 43:3b:f7:18:7d:ea:65:12:d3:6d:ea:d4:f7:20:c1: 84:e5:d2:02:3b:10:27:83:f7:84:a1:c0:cd:ea:94: 06:f0:af:9a:b0:01:22:15:0c:ad:b2:01:ab:d6:01: 32:ef:34:c8:b2:a4:80:8b:53:a8:00:3b:c6:04:86: 70:2a:e1:de:09:87:15:cc:cc:16:4c:21:b4:11:5d: 9d:18:32:eb:ba:09:d2:ab:c1:45:7d:a6:a9:5b:4e: 5a:b2:26:47:73:11:2c:7a:4c:19:da:28:33:ff:36: 77:a7:0c:a3:e3:54:52:06:ff:9c:00:ad:bf:e0:05: d7:ef:2c:56:73:0e:32:1a:2d:82:c9:5d:f7:6c:e9: ee:a1:76:66:36:ff:90:e2:dc:ae:c9:58:48:5f:d8: 46:a7:7e:8a:88:3c:30:ee:98:ac:23:00:a2:7d:c1: 90:28:9f:26:0b:e8:ab:d3:f4:7d:48:3f:99:08:eb: 87:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: BA:C8:2A:4D:55:B3:68:F4:8D:80:BE:04:5E:0F:4A:84:18:C3:EA:73 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/43ad5226-656d-461d-9cff-c83ac0742f20/0/BAC82A4D55B368F48D80BE045E0F4A8418C3EA73.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.118.0/23 Signature Algorithm: sha256WithRSAEncryption 61:f8:f1:eb:ad:f4:48:83:a3:1a:02:48:6a:0a:c8:bd:a6:73: 39:f5:4f:17:f9:86:57:83:3b:28:8b:7b:64:2c:b8:1c:90:da: 9b:67:af:3c:26:cf:ac:71:eb:3e:e6:2e:8d:fb:a4:13:6d:df: 92:07:94:5f:82:9e:2c:5a:56:93:c2:eb:34:51:41:9f:02:ab: 30:7c:55:e6:54:80:2e:f4:8f:9b:ed:df:ef:9b:f8:39:dc:be: 86:0c:10:cc:ba:65:c0:8f:04:b4:25:76:b2:8e:8b:83:15:04: bf:2d:3f:41:fc:2b:28:ae:10:cf:02:77:7f:ff:72:5e:1e:d2: 58:a1:d8:ec:92:34:02:39:54:89:86:8d:9c:46:9c:4b:84:05: 0f:9f:cf:cb:0a:80:9b:9d:b4:eb:29:57:89:2b:83:c1:db:38: 0e:e2:af:c8:fe:95:90:01:98:fb:68:d3:c2:b1:dd:b8:28:27: 7c:a8:db:a1:2f:98:b8:0e:3a:58:2e:16:9d:ac:95:e3:bf:53: 4b:50:ea:51:cb:bb:76:48:72:af:ae:83:79:9d:74:da:34:f1: 1b:90:0e:30:03:65:b5:4f:d8:31:e0:b4:41:cb:db:71:b9:be: 92:ca:88:df:fc:ea:89:45:b9:d9:54:74:8a:57:d0:59:1d:02: 56:8f:1e:35 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUM/A9li3wCqh1GuocSApwD008VrEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwMzAwMjgwOFoX DTI2MDQwMjAwMzMwOFowMzExMC8GA1UEAxMoQkFDODJBNEQ1NUIzNjhGNDhEODBC RTA0NUUwRjRBODQxOEMzRUE3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL10tPWvTNt13KqxswRGaSpKmMnjzteCPHl19yVUEnub4vVMYep2KTNk+2aG NmMMHWTHdrutdzGWuHwIpyet02GJp/wzSRSNw2MjQzv3GH3qZRLTberU9yDBhOXS AjsQJ4P3hKHAzeqUBvCvmrABIhUMrbIBq9YBMu80yLKkgItTqAA7xgSGcCrh3gmH FczMFkwhtBFdnRgy67oJ0qvBRX2mqVtOWrImR3MRLHpMGdooM/82d6cMo+NUUgb/ nACtv+AF1+8sVnMOMhotgsld92zp7qF2Zjb/kOLcrslYSF/YRqd+iog8MO6YrCMA on3BkCifJgvoq9P0fUg/mQjrhwMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLrIKk1Vs2j0jYC+BF4PSoQYw+pzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80M2FkNTIyNi02NTZkLTQ2MWQtOWNmZi1jODNhYzA3NDJmMjAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzYWQ1MjI2 LTY1NmQtNDYxZC05Y2ZmLWM4M2FjMDc0MmYyMC8wL0JBQzgyQTRENTVCMzY4RjQ4 RDgwQkUwNDVFMEY0QTg0MThDM0VBNzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvXYwDQYJKoZIhvcNAQELBQADggEBAGH48eut9EiDoxoCSGoKyL2mczn1Txf5 hleDOyiLe2QsuByQ2ptnrzwmz6xx6z7mLo37pBNt35IHlF+CnixaVpPC6zRRQZ8C qzB8VeZUgC70j5vt3++b+DncvoYMEMy6ZcCPBLQldrKOi4MVBL8tP0H8KyiuEM8C d3//cl4e0lih2OySNAI5VImGjZxGnEuEBQ+fz8sKgJudtOspV4krg8HbOA7ir8j+ lZABmPto08Kx3bgoJ3yo26EvmLgOOlguFp2sleO/U0tQ6lHLu3ZIcq+ug3mddNo0 8RuQDjADZbVP2DHgtEHL23G5vpLKiN/86olFudlUdIpX0FkdAlaPHjU= -----END CERTIFICATE-----Generated at Sat Apr 5 07:12:01 2025 by rpki-client