$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer File: C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer (raw, json) Hash identifier: 0ejw+bYjWt6sLABDuJfzZMFW35K/aTmvgLtMYzttaac= Subject key identifier: C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2E0428BABA137B2BF125A051A4A90455E557D61C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.mft caRepository: rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 18 Mar 2025 19:52:44 +0000 Certificate not after: Tue 17 Mar 2026 19:57:44 +0000 Subordinate resources: IP: 103.189.122.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:04:28:ba:ba:13:7b:2b:f1:25:a0:51:a4:a9:04:55:e5:57:d6:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 18 19:52:44 2025 GMT Not After : Mar 17 19:57:44 2026 GMT Subject: CN=C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c7:84:78:2f:7d:97:01:16:1b:bd:62:50:0a: db:ac:b6:3b:fb:a8:1d:66:36:e6:3b:0e:a6:95:c5: be:3e:eb:71:de:17:64:9a:08:4b:fa:b6:b1:5b:94: 54:7d:1c:5e:f2:db:29:0c:ee:ad:1a:19:55:7f:01: 14:23:1c:ff:b1:ac:7e:56:6e:95:70:29:58:a5:75: 24:5e:9b:a2:a7:b0:49:a3:7e:60:1a:22:54:2e:1d: 24:e7:e1:99:c7:c1:eb:56:34:4b:c8:71:f3:22:8d: 1d:7d:f8:83:c4:3d:80:9d:10:2f:78:87:58:bf:89: f1:79:0d:7d:60:31:d0:42:5f:44:a6:66:49:bb:7f: 2c:20:89:f4:f4:cd:d1:f2:a0:54:5b:05:52:8b:0e: 70:ed:15:5d:52:80:c2:7f:5a:a2:fa:92:de:f2:cf: 96:bd:fa:c3:18:54:26:4f:dd:fa:e0:14:87:a2:07: e4:22:b0:52:1f:1d:d4:be:fc:91:43:62:9c:b4:51: b7:a8:59:56:81:c0:bd:84:e2:23:96:9a:1f:bd:a1: 98:f0:b0:20:a4:77:e2:34:ad:1a:e0:0d:da:28:f9: 55:d8:7e:fd:af:8e:d3:0e:8c:c3:bb:0f:fd:d6:01: e5:fb:ea:83:49:4a:4d:67:48:ab:6e:db:3f:77:32: 3b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.122.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:e1:a3:3d:2d:06:13:7e:10:45:ff:fc:dc:f6:98:79:e2:80: 06:8c:9f:d2:2e:c9:b8:66:24:9f:b7:0f:af:26:f5:b1:a1:23: b3:a1:5f:d4:10:f5:8a:83:8c:4b:d5:44:90:8b:e9:fa:c2:45: dc:dd:72:cb:35:c2:40:b9:11:41:35:6a:ba:f5:67:b2:4b:43: 02:ee:99:25:02:72:1f:d2:fd:f4:e0:2b:e8:e6:02:10:a6:15: 0e:1b:db:e7:34:53:d9:10:e3:a9:d2:5b:f4:47:12:ae:86:8c: ed:e9:8e:96:87:a4:d3:3c:85:47:28:23:4b:a0:54:b6:f9:4a: 8c:21:ff:71:52:11:30:56:ec:a5:62:d0:bd:b9:bf:b0:b3:9f: 49:03:ae:5b:83:08:d7:fb:25:32:97:39:08:fa:71:2b:73:ff: ad:c1:ce:9c:fe:09:89:9e:98:8a:1c:ff:eb:5f:ec:8f:c9:e0: e8:99:f2:59:a2:fc:06:fc:e7:13:5c:0f:55:6d:bc:3d:7c:ab: 10:5d:77:61:3c:4e:fe:3e:b6:52:c9:8a:69:9c:d5:8c:fe:6b: c1:59:fd:f6:8e:6d:4c:ed:88:04:c1:6b:1a:47:90:f8:b5:de: 16:65:c0:71:3d:89:97:3c:7c:5c:fe:e6:ef:32:07:05:c4:63: 50:60:1f:4e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULgQouroTeyvxJaBRpKkEVeVX1hwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMxODE5NTI0NFoX DTI2MDMxNzE5NTc0NFowMzExMC8GA1UEAxMoQzlGNDRFNjFERDY5NTlBQ0E4QjBC MEJFOUM1MTZGNUI2ODNFRDcyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALHHhHgvfZcBFhu9YlAK26y2O/uoHWY25jsOppXFvj7rcd4XZJoIS/q2sVuU VH0cXvLbKQzurRoZVX8BFCMc/7GsflZulXApWKV1JF6boqewSaN+YBoiVC4dJOfh mcfB61Y0S8hx8yKNHX34g8Q9gJ0QL3iHWL+J8XkNfWAx0EJfRKZmSbt/LCCJ9PTN 0fKgVFsFUosOcO0VXVKAwn9aovqS3vLPlr36wxhUJk/d+uAUh6IH5CKwUh8d1L78 kUNinLRRt6hZVoHAvYTiI5aaH72hmPCwIKR34jStGuAN2ij5Vdh+/a+O0w6Mw7sP /dYB5fvqg0lKTWdIq27bP3cyO/sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMn0TmHdaVmsqLCwvpxRb1toPtcoMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wYmEwYjhmOC00ZmNmLTRiOWItOTc5NC1jZDNiNGU0MDZlYWIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiYTBiOGY4 LTRmY2YtNGI5Yi05Nzk0LWNkM2I0ZTQwNmVhYi8wL0M5RjQ0RTYxREQ2OTU5QUNB OEIwQjBCRTlDNTE2RjVCNjgzRUQ3MjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvXowDQYJKoZIhvcNAQELBQADggEBAE/hoz0tBhN+EEX//Nz2mHnigAaMn9Iu ybhmJJ+3D68m9bGhI7OhX9QQ9YqDjEvVRJCL6frCRdzdcss1wkC5EUE1arr1Z7JL QwLumSUCch/S/fTgK+jmAhCmFQ4b2+c0U9kQ46nSW/RHEq6GjO3pjpaHpNM8hUco I0ugVLb5Sowh/3FSETBW7KVi0L25v7Czn0kDrluDCNf7JTKXOQj6cStz/63Bzpz+ CYmemIoc/+tf7I/J4OiZ8lmi/Ab85xNcD1VtvD18qxBdd2E8Tv4+tlLJimmc1Yz+ a8FZ/faObUztiATBaxpHkPi13hZlwHE9iZc8fFz+5u8yBwXEY1BgH04= -----END CERTIFICATE-----Generated at Sat Apr 5 06:35:25 2025 by rpki-client