$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.cer File: C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.cer (raw, json) Hash identifier: sxAI34dtn7Wm2WChg6XfE5QKV9JO9zP692GUTIy7evo= Subject key identifier: C5:54:E8:91:C5:83:CE:2A:BF:2D:B5:DE:E8:21:F6:B6:30:BF:F5:DF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4290DA638881D15D41336E35112BB8157F089FF8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.mft caRepository: rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 13 Jan 2025 21:03:53 +0000 Certificate not after: Mon 12 Jan 2026 21:08:53 +0000 Subordinate resources: IP: 103.158.250.0/23 IP: 2406:c5c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:90:da:63:88:81:d1:5d:41:33:6e:35:11:2b:b8:15:7f:08:9f:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 13 21:03:53 2025 GMT Not After : Jan 12 21:08:53 2026 GMT Subject: CN=C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9a:3a:9e:10:ad:04:b7:6f:3c:5f:f5:dd:bf: 88:7b:d2:1f:3b:6c:7b:fc:59:c6:fa:f6:1f:ae:a2: 72:97:e3:b9:fe:31:fb:6e:f8:d8:50:e4:cd:e5:87: f5:ef:d7:92:a4:70:2a:a4:c6:04:2d:49:85:d4:bb: ab:30:d1:1d:d9:c4:5c:46:39:fd:c7:62:a5:fe:f7: 79:23:42:4c:b9:71:87:3f:fe:b5:00:82:ae:c8:c4: a0:49:d2:42:76:d7:d4:66:e4:d3:4e:21:04:9b:ee: b7:40:da:74:9f:f4:44:58:d0:7c:b3:fe:b2:57:62: b0:8d:02:a4:39:36:f2:e3:02:89:2e:c8:f7:d3:e6: 74:4f:46:b9:d4:cd:5c:88:1f:18:ce:95:4c:ed:0e: 03:6e:33:40:47:26:78:b9:98:8f:a8:00:65:2e:79: 04:e8:b1:c1:3a:2d:44:c9:23:7c:15:82:92:be:e2: a7:e8:a6:38:12:29:ee:53:e4:9d:f2:59:6a:55:01: cb:73:e7:0b:c8:91:8e:54:36:1d:58:0a:6c:73:3d: 71:8d:e5:66:f1:8d:e3:2b:55:17:91:8b:a3:7e:f7: 5f:e2:7e:e2:86:9c:93:b5:ea:60:f0:52:df:c6:3c: 66:72:61:21:ab:b4:90:01:2a:d5:cd:33:e3:f7:0b: 8c:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C5:54:E8:91:C5:83:CE:2A:BF:2D:B5:DE:E8:21:F6:B6:30:BF:F5:DF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cd7c7ac2-5a9b-492a-a4c5-1f13590dae06/0/C554E891C583CE2ABF2DB5DEE821F6B630BFF5DF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.250.0/23 IPv6: 2406:c5c0::/32 Signature Algorithm: sha256WithRSAEncryption 57:7d:f1:48:34:10:29:df:6e:61:c7:8a:ce:f7:b4:b6:1b:4b: c2:92:97:7e:61:3a:fb:0c:13:a4:66:47:a3:df:47:14:b7:6c: 52:57:53:3e:41:cd:c8:7f:b3:e5:2e:4a:71:7c:b7:d9:cf:54: d8:75:67:61:f4:48:b9:df:36:b7:72:1c:ab:9b:c6:3c:f5:3d: 8f:a5:7a:57:da:07:d6:07:bb:3a:bf:b0:f7:d1:47:c2:b5:ef: ac:af:bf:dd:9d:a3:7d:98:e8:a9:89:5a:f1:49:7d:b6:18:bf: ea:f0:18:ad:91:31:13:96:c8:f1:20:44:92:58:65:64:d0:37: 30:7c:e0:0e:cb:6b:bc:5c:14:bc:9b:c3:0c:ba:c4:79:71:92: 36:5e:9a:d1:99:bb:28:11:ca:13:ed:93:a1:30:d5:ca:38:ea: d8:a3:25:7b:29:d2:fe:18:04:91:89:7b:d7:21:a6:96:3d:12: 37:98:4a:da:83:77:df:a1:8e:23:26:48:48:ba:43:05:3f:91: b9:3b:14:a8:c3:50:3b:13:b0:cc:67:bb:2c:be:08:e8:d5:8c: 85:01:3f:64:a5:64:59:2f:6b:dd:43:fb:59:30:94:22:59:02: ba:a0:5f:53:c8:84:e6:c0:b8:1c:ad:0f:1d:d7:bd:f0:74:81: df:7d:0f:b0 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUQpDaY4iB0V1BM241ESu4FX8In/gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDExMzIxMDM1M1oX DTI2MDExMjIxMDg1M1owMzExMC8GA1UEAxMoQzU1NEU4OTFDNTgzQ0UyQUJGMkRC NURFRTgyMUY2QjYzMEJGRjVERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKaOp4QrQS3bzxf9d2/iHvSHztse/xZxvr2H66icpfjuf4x+2742FDkzeWH 9e/XkqRwKqTGBC1JhdS7qzDRHdnEXEY5/cdipf73eSNCTLlxhz/+tQCCrsjEoEnS QnbX1Gbk004hBJvut0DadJ/0RFjQfLP+sldisI0CpDk28uMCiS7I99PmdE9GudTN XIgfGM6VTO0OA24zQEcmeLmYj6gAZS55BOixwTotRMkjfBWCkr7ip+imOBIp7lPk nfJZalUBy3PnC8iRjlQ2HVgKbHM9cY3lZvGN4ytVF5GLo373X+J+4oack7XqYPBS 38Y8ZnJhIau0kAEq1c0z4/cLjE8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMVU6JHFg84qvy213ugh9rYwv/XfMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZDdjN2FjMi01YTliLTQ5MmEtYTRjNS0xZjEzNTkwZGFlMDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NkN2M3YWMy LTVhOWItNDkyYS1hNGM1LTFmMTM1OTBkYWUwNi8wL0M1NTRFODkxQzU4M0NFMkFC RjJEQjVERUU4MjFGNkI2MzBCRkY1REYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnvowDQQCAAIwBwMFACQGxcAwDQYJKoZIhvcNAQELBQADggEBAFd98Ug0ECnf bmHHis73tLYbS8KSl35hOvsME6RmR6PfRxS3bFJXUz5Bzch/s+UuSnF8t9nPVNh1 Z2H0SLnfNrdyHKubxjz1PY+lelfaB9YHuzq/sPfRR8K176yvv92do32Y6KmJWvFJ fbYYv+rwGK2RMROWyPEgRJJYZWTQNzB84A7La7xcFLybwwy6xHlxkjZemtGZuygR yhPtk6Ew1co46tijJXsp0v4YBJGJe9chppY9EjeYStqDd9+hjiMmSEi6QwU/kbk7 FKjDUDsTsMxnuyy+COjVjIUBP2SlZFkva91D+1kwlCJZArqgX1PIhObAuBytDx3X vfB0gd99D7A= -----END CERTIFICATE-----Generated at Sat Apr 5 08:32:11 2025 by rpki-client