$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C83A14814153DADF0B9F754B65105F431A2C552D.cer File: C83A14814153DADF0B9F754B65105F431A2C552D.cer (raw, json) Hash identifier: vpHevRA+hc9TfGLwAbU965gn0mBLGZbfMWWzoDuMkt8= Subject key identifier: C8:3A:14:81:41:53:DA:DF:0B:9F:75:4B:65:10:5F:43:1A:2C:55:2D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 43A7B4E1BA679DB014F978FB6CCA4B1C57EB4072 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e09b51a2-63d5-44b2-82b2-d94c516dd5f8/0/C83A14814153DADF0B9F754B65105F431A2C552D.mft caRepository: rsync://repo-rpki.idnic.net/repo/e09b51a2-63d5-44b2-82b2-d94c516dd5f8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 25 Mar 2025 06:36:27 +0000 Certificate not after: Tue 24 Mar 2026 06:41:27 +0000 Subordinate resources: IP: 103.189.170.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:a7:b4:e1:ba:67:9d:b0:14:f9:78:fb:6c:ca:4b:1c:57:eb:40:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 25 06:36:27 2025 GMT Not After : Mar 24 06:41:27 2026 GMT Subject: CN=C83A14814153DADF0B9F754B65105F431A2C552D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:71:4d:24:da:0c:66:97:14:04:c1:6c:e4:61: 93:1b:4d:bb:c6:f8:88:30:3b:f8:9e:5b:80:26:db: 42:d1:8f:1e:8e:d4:3b:a0:69:0f:f7:e0:14:0d:80: 86:3a:88:8f:28:83:dc:6f:61:90:a4:bd:c8:16:43: bd:aa:df:25:58:46:36:dc:f5:00:7a:0a:9d:45:c6: fe:59:cc:3b:56:9d:73:d3:2f:d1:18:42:e0:f7:c2: aa:4a:4e:44:ef:da:d9:bf:e7:e3:34:04:6d:d8:64: 10:23:d0:11:d6:b3:b6:3f:bf:91:0e:4f:1e:c3:5f: b6:c6:ed:8b:aa:e0:73:4e:33:cf:f1:71:b5:d0:c6: fe:64:b9:05:66:6f:d4:ec:79:d8:e5:9a:6f:07:4c: f8:af:5a:cd:a7:95:09:7c:0d:17:89:33:6b:23:8e: e6:4a:d3:f6:e2:35:78:f0:cd:c8:83:be:e6:20:a1: 82:12:06:64:a3:cc:2e:c1:aa:ce:56:c6:80:65:0e: 28:83:51:2c:d5:9d:1f:ac:eb:84:e3:e5:84:c5:3b: f5:c7:0c:21:e0:4d:73:97:9f:e9:39:b0:83:24:89: b5:c5:d5:33:72:2b:14:94:64:8c:f0:a7:a5:00:29: 63:e0:64:4e:7c:96:82:ba:f4:21:4f:da:63:c0:50: 8b:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C8:3A:14:81:41:53:DA:DF:0B:9F:75:4B:65:10:5F:43:1A:2C:55:2D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e09b51a2-63d5-44b2-82b2-d94c516dd5f8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e09b51a2-63d5-44b2-82b2-d94c516dd5f8/0/C83A14814153DADF0B9F754B65105F431A2C552D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.170.0/23 Signature Algorithm: sha256WithRSAEncryption 47:90:72:bb:3d:02:be:a3:9b:42:32:7c:5a:5d:bb:a3:90:1e: 89:03:a8:a9:cb:84:0f:b8:23:c5:1a:c6:d9:f4:47:6d:d9:f1: d3:b6:3f:4b:a9:e9:61:bc:b9:5c:2d:3e:02:48:1e:9c:d3:86: 65:07:45:46:bc:33:f4:96:4c:0a:3c:20:5d:10:0f:af:49:c4: 4a:c1:cc:37:6b:1d:12:61:4a:8a:a7:cb:1e:28:28:57:54:43: 09:44:4c:74:2c:db:f4:9a:75:66:23:c3:76:12:36:0c:ba:12: ac:d3:0f:93:2d:79:7a:00:70:64:9a:8d:9d:8c:07:07:24:dd: 75:0f:21:85:ca:91:1d:41:d0:a6:c5:09:a1:f7:8d:40:fa:bb: b0:71:14:62:e1:de:a5:3d:cd:b5:44:71:b2:f2:9f:21:dc:dc: 33:35:6b:d5:01:d8:6d:92:15:89:c7:5e:a0:03:37:1f:cc:53: 49:e4:0a:87:cc:44:7d:0d:95:5f:b4:91:56:30:bf:08:97:20: 51:8e:72:c8:d7:a8:ca:81:1a:ae:e9:44:4f:04:bb:01:f8:9b: 2c:a6:5e:89:49:2e:db:38:88:b3:6c:f3:3c:27:d9:c2:09:b3: 42:c1:2e:6b:5f:0f:9e:2b:fa:29:c6:95:8d:ad:20:59:05:5e: 4d:dc:b8:f2 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQ6e04bpnnbAU+Xj7bMpLHFfrQHIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMyNTA2MzYyN1oX DTI2MDMyNDA2NDEyN1owMzExMC8GA1UEAxMoQzgzQTE0ODE0MTUzREFERjBCOUY3 NTRCNjUxMDVGNDMxQTJDNTUyRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdxTSTaDGaXFATBbORhkxtNu8b4iDA7+J5bgCbbQtGPHo7UO6BpD/fgFA2A hjqIjyiD3G9hkKS9yBZDvarfJVhGNtz1AHoKnUXG/lnMO1adc9Mv0RhC4PfCqkpO RO/a2b/n4zQEbdhkECPQEdaztj+/kQ5PHsNftsbti6rgc04zz/FxtdDG/mS5BWZv 1Ox52OWabwdM+K9azaeVCXwNF4kzayOO5krT9uI1ePDNyIO+5iChghIGZKPMLsGq zlbGgGUOKINRLNWdH6zrhOPlhMU79ccMIeBNc5ef6TmwgySJtcXVM3IrFJRkjPCn pQApY+BkTnyWgrr0IU/aY8BQi+MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMg6FIFBU9rfC591S2UQX0MaLFUtMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lMDliNTFhMi02M2Q1LTQ0YjItODJiMi1kOTRjNTE2ZGQ1ZjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2UwOWI1MWEy LTYzZDUtNDRiMi04MmIyLWQ5NGM1MTZkZDVmOC8wL0M4M0ExNDgxNDE1M0RBREYw QjlGNzU0QjY1MTA1RjQzMUEyQzU1MkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvaowDQYJKoZIhvcNAQELBQADggEBAEeQcrs9Ar6jm0IyfFpdu6OQHokDqKnL hA+4I8Uaxtn0R23Z8dO2P0up6WG8uVwtPgJIHpzThmUHRUa8M/SWTAo8IF0QD69J xErBzDdrHRJhSoqnyx4oKFdUQwlETHQs2/SadWYjw3YSNgy6EqzTD5MteXoAcGSa jZ2MBwck3XUPIYXKkR1B0KbFCaH3jUD6u7BxFGLh3qU9zbVEcbLynyHc3DM1a9UB 2G2SFYnHXqADNx/MU0nkCofMRH0NlV+0kVYwvwiXIFGOcsjXqMqBGq7pRE8EuwH4 myymXolJLts4iLNs8zwn2cIJs0LBLmtfD54r+inGlY2tIFkFXk3cuPI= -----END CERTIFICATE-----Generated at Sat Apr 5 06:32:06 2025 by rpki-client