$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer File: CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer (raw, json) Hash identifier: IXLGz4diYGjyGMJbjTbKo/VSIubx6BiuvZzTIdVkCxw= Subject key identifier: CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 427A0FD5E35D5550DCF50ACBAF3BE2FD0B10F71A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.mft caRepository: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 20 May 2025 19:42:45 +0000 Certificate not after: Tue 19 May 2026 19:47:45 +0000 Subordinate resources: IP: 103.4.174.0/23 IP: 103.23.234.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:7a:0f:d5:e3:5d:55:50:dc:f5:0a:cb:af:3b:e2:fd:0b:10:f7:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 20 19:42:45 2025 GMT Not After : May 19 19:47:45 2026 GMT Subject: CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cd:a1:e5:50:c1:db:62:5a:4f:b0:70:08:79: d6:f4:1a:1f:ef:c7:9d:04:e2:e6:5c:ee:22:85:5a: bb:17:7a:a0:dd:1c:e7:d6:22:71:40:da:4e:cf:05: 5c:7c:2d:64:7f:92:9f:54:b1:97:6b:79:ce:e6:8d: 11:e1:f1:81:fe:0f:60:c1:55:c1:9b:3a:d9:cb:49: 51:38:05:f7:a7:ee:9d:dd:ff:e4:3d:16:50:a4:75: 98:c5:13:dd:1c:13:aa:41:a0:42:ea:b8:14:6c:9e: 41:f2:e0:56:aa:55:4e:e4:59:8b:53:52:b1:a3:1f: 28:a0:e3:4e:ed:f6:ab:30:d6:5c:bd:5f:1c:29:e3: cb:54:ab:07:ac:d7:8d:09:8b:f3:da:26:64:e5:cc: 2a:3e:00:d7:37:24:ee:61:3c:8d:7b:73:bb:81:49: 9f:a6:d3:0a:bb:f0:77:3b:0d:80:7d:26:29:01:fd: 4c:6a:5d:a3:b6:76:52:88:5f:6b:9b:1d:ab:1f:f7: 13:fa:b5:d5:a0:d6:08:dc:9c:d4:b3:fe:e2:ac:8d: b2:b6:d7:32:e2:4f:6e:74:a2:5c:be:6a:ab:2f:2e: 59:17:1e:88:16:c0:1c:d4:6b:6d:7c:37:56:de:ba: 21:78:b9:e4:0d:d3:b2:7e:e4:b1:5a:61:e6:d7:c7: 5d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.174.0/23 103.23.234.0/23 Signature Algorithm: sha256WithRSAEncryption 91:a7:c5:2a:9e:b6:4e:97:99:ef:73:25:bd:30:da:b9:a4:ea: 3c:22:5a:0a:f0:18:74:71:4a:19:ff:95:c0:2d:b5:38:48:85: 67:ef:e7:d3:64:45:ab:20:ad:97:38:3d:e7:7d:89:15:78:d8: 7d:b5:6a:c1:03:a7:ea:a5:f7:8f:28:8b:dd:6f:fb:f6:68:cb: ab:ee:20:a6:88:26:51:e4:cb:15:8d:5f:f8:a4:23:cd:52:ad: 8a:63:d5:95:07:48:34:30:79:c2:92:56:85:b5:20:96:db:1d: d5:4c:94:65:7f:98:92:78:cb:f7:83:0d:41:95:ec:10:c9:02: 7f:1f:af:b6:a7:89:6c:4b:d6:8f:3e:b6:c0:ea:aa:93:e6:a1: b4:b8:25:2a:0f:c3:cd:77:d0:31:9b:11:7b:84:ee:6f:4a:d1: d5:a8:1b:40:8e:23:d0:16:46:c9:bf:48:22:d7:9f:59:c5:0b: 5f:18:e0:45:6b:91:c5:25:dc:e8:02:4c:34:99:8e:16:90:ab: 87:b0:79:b3:9b:d6:0f:78:d3:f0:1d:05:98:80:fe:2f:63:49: 3d:a7:e9:65:53:b9:5e:04:aa:7f:df:fb:3e:40:5d:5e:c6:de: 7b:31:3c:1b:49:bb:3a:28:14:10:1b:a2:10:52:f5:80:60:4e: 1d:5c:f1:74 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUQnoP1eNdVVDc9QrLrzvi/QsQ9xowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyMDE5NDI0NVoX DTI2MDUxOTE5NDc0NVowMzExMC8GA1UEAxMoQ0MwRTBDNDFDQ0E5NTY2ODk0RDFE MzVGREUyRDY0MjU4NDk1MDNCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKzNoeVQwdtiWk+wcAh51vQaH+/HnQTi5lzuIoVauxd6oN0c59YicUDaTs8F XHwtZH+Sn1Sxl2t5zuaNEeHxgf4PYMFVwZs62ctJUTgF96fund3/5D0WUKR1mMUT 3RwTqkGgQuq4FGyeQfLgVqpVTuRZi1NSsaMfKKDjTu32qzDWXL1fHCnjy1SrB6zX jQmL89omZOXMKj4A1zck7mE8jXtzu4FJn6bTCrvwdzsNgH0mKQH9TGpdo7Z2Uohf a5sdqx/3E/q11aDWCNyc1LP+4qyNsrbXMuJPbnSiXL5qqy8uWRceiBbAHNRrbXw3 Vt66IXi55A3Tsn7ksVph5tfHXXcCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMwODEHMqVZolNHTX94tZCWElQO1MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMDVmNzY4Yi00MjE4LTRjNWQtODkzYS0wZmY2OTY1MjY2MzkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNWY3Njhi LTQyMTgtNGM1ZC04OTNhLTBmZjY5NjUyNjYzOS8wL0NDMEUwQzQxQ0NBOTU2Njg5 NEQxRDM1RkRFMkQ2NDI1ODQ5NTAzQjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAFnBK4DBAFnF+owDQYJKoZIhvcNAQELBQADggEBAJGnxSqetk6Xme9zJb0w2rmk 6jwiWgrwGHRxShn/lcAttThIhWfv59NkRasgrZc4Ped9iRV42H21asEDp+ql948o i91v+/Zoy6vuIKaIJlHkyxWNX/ikI81SrYpj1ZUHSDQwecKSVoW1IJbbHdVMlGV/ mJJ4y/eDDUGV7BDJAn8fr7aniWxL1o8+tsDqqpPmobS4JSoPw8130DGbEXuE7m9K 0dWoG0COI9AWRsm/SCLXn1nFC18Y4EVrkcUl3OgCTDSZjhaQq4ewebOb1g940/Ad BZiA/i9jST2n6WVTuV4Eqn/f+z5AXV7G3nsxPBtJuzooFBAbohBS9YBgTh1c8XQ= -----END CERTIFICATE-----Generated at Tue Jun 3 23:33:05 2025 by rpki-client