$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D1CE4EF910CAB784EF293D26D983A92FCB3A3428.cer File: D1CE4EF910CAB784EF293D26D983A92FCB3A3428.cer (raw, json) Hash identifier: PgmG/QsS4uUnnRpBPXwXMHLffMwSfS+qIT0DMi9sSdA= Subject key identifier: D1:CE:4E:F9:10:CA:B7:84:EF:29:3D:26:D9:83:A9:2F:CB:3A:34:28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6847BDD407D6D42499A9DE873EE76D1DCF17CB21 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0/D1CE4EF910CAB784EF293D26D983A92FCB3A3428.mft caRepository: rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 17 May 2025 09:23:06 +0000 Certificate not after: Sat 16 May 2026 09:28:06 +0000 Subordinate resources: IP: 103.82.180.0/22 IP: 2001:df7:8e00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 05 Jun 2025 06:20:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:47:bd:d4:07:d6:d4:24:99:a9:de:87:3e:e7:6d:1d:cf:17:cb:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 17 09:23:06 2025 GMT Not After : May 16 09:28:06 2026 GMT Subject: CN=D1CE4EF910CAB784EF293D26D983A92FCB3A3428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:97:4d:ae:a4:4f:3c:47:13:c3:c6:7b:05:f1: 84:79:0e:de:ca:b6:7a:d1:04:06:e3:e7:40:bc:3a: dc:f3:bf:82:27:56:9b:11:98:32:ca:4e:e0:c3:d0: f3:05:1d:f8:8b:59:db:2e:77:bb:7f:1c:23:2e:62: c4:fc:6c:86:d0:8e:bf:2e:e0:2d:ec:42:d4:69:d4: a9:db:8a:0a:41:11:37:d1:15:6b:c6:c5:1e:7d:a2: d2:7b:ff:bd:a3:96:53:75:22:da:b8:db:79:4b:93: b4:d8:6c:47:15:ee:73:c3:66:f1:5d:1e:93:ae:c6: 61:fc:84:6b:dc:7d:c3:61:7a:44:81:1a:93:80:19: fe:ab:82:0d:1a:5d:91:18:cc:0d:4e:e8:b4:1b:0f: d3:d0:7c:8c:17:d3:9c:00:1f:f2:a9:0b:c2:62:81: 6e:7f:33:8e:c5:25:4e:b6:f2:55:ae:26:50:c0:5c: c6:ac:82:f7:d7:ce:74:c4:b0:70:ee:7a:f8:bd:10: 85:1a:2d:cf:84:ff:cf:f1:68:0e:5e:4f:e6:b1:87: e0:98:bc:c9:ee:ad:25:39:12:c3:25:7c:2c:f9:5a: 06:c3:90:16:15:46:72:5b:ad:5b:c7:eb:f4:c1:bf: d2:c5:21:e2:6e:4f:27:b2:60:f0:a7:f8:00:44:6f: cc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D1:CE:4E:F9:10:CA:B7:84:EF:29:3D:26:D9:83:A9:2F:CB:3A:34:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0/D1CE4EF910CAB784EF293D26D983A92FCB3A3428.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.180.0/22 IPv6: 2001:df7:8e00::/48 Signature Algorithm: sha256WithRSAEncryption 26:ec:95:0a:5d:b5:f1:12:23:91:fa:a8:c4:c2:3b:3e:48:15: 4a:36:fa:79:ac:0b:ed:d6:25:2f:7e:bf:17:a1:ca:8a:03:53: 74:63:fa:80:12:23:1d:d9:c5:f6:47:ac:32:bc:aa:ea:98:5a: 7d:e9:d7:97:8c:9a:aa:0a:99:13:1c:65:a3:36:62:9d:94:cc: af:a0:0c:f4:b4:42:19:b1:8b:50:2a:c8:83:a3:df:0a:a6:3a: 8f:2d:9d:0d:bc:48:30:6f:d9:7e:7d:be:6c:da:2b:93:ae:6a: e8:a6:22:07:09:85:85:11:81:06:29:08:80:ae:3d:74:ee:e0: 89:e7:70:32:a5:2b:fc:34:d0:6a:93:77:f0:96:9e:66:9f:78: ab:97:6c:11:b3:06:fb:7b:5f:ca:d2:5d:4b:e1:3a:44:4e:9c: 13:16:fa:ce:31:c6:14:e9:e6:70:9f:a7:b2:ee:d8:64:bf:8c: 0f:ea:76:d2:0e:9d:02:af:ad:be:78:41:4a:e5:38:fd:d7:14: d8:e1:65:12:e6:8b:35:2a:fd:f9:a6:34:40:94:2e:29:6d:02: aa:43:fe:e5:3f:d2:1b:7e:24:11:2e:82:f9:0c:21:b2:09:b0: 56:2f:e2:3b:94:7b:f6:73:f4:13:9a:ab:3e:08:bd:2e:26:1c: df:69:e1:03 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUaEe91AfW1CSZqd6HPudtHc8XyyEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUxNzA5MjMwNloX DTI2MDUxNjA5MjgwNlowMzExMC8GA1UEAxMoRDFDRTRFRjkxMENBQjc4NEVGMjkz RDI2RDk4M0E5MkZDQjNBMzQyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCXTa6kTzxHE8PGewXxhHkO3sq2etEEBuPnQLw63PO/gidWmxGYMspO4MPQ 8wUd+ItZ2y53u38cIy5ixPxshtCOvy7gLexC1GnUqduKCkERN9EVa8bFHn2i0nv/ vaOWU3Ui2rjbeUuTtNhsRxXuc8Nm8V0ek67GYfyEa9x9w2F6RIEak4AZ/quCDRpd kRjMDU7otBsP09B8jBfTnAAf8qkLwmKBbn8zjsUlTrbyVa4mUMBcxqyC99fOdMSw cO56+L0QhRotz4T/z/FoDl5P5rGH4Ji8ye6tJTkSwyV8LPlaBsOQFhVGclutW8fr 9MG/0sUh4m5PJ7Jg8Kf4AERvzCkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNHOTvkQyreE7yk9JtmDqS/LOjQoMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84MDc1OGYxNS01ZGU4LTQ4N2QtOTk0NS1jM2VhMjA3ZTQ0YWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwNzU4ZjE1 LTVkZTgtNDg3ZC05OTQ1LWMzZWEyMDdlNDRhZC8wL0QxQ0U0RUY5MTBDQUI3ODRF RjI5M0QyNkQ5ODNBOTJGQ0IzQTM0MjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnUrQwDwQCAAIwCQMHACABDfeOADANBgkqhkiG9w0BAQsFAAOCAQEAJuyVCl21 8RIjkfqoxMI7PkgVSjb6eawL7dYlL36/F6HKigNTdGP6gBIjHdnF9kesMryq6pha fenXl4yaqgqZExxlozZinZTMr6AM9LRCGbGLUCrIg6PfCqY6jy2dDbxIMG/Zfn2+ bNork65q6KYiBwmFhRGBBikIgK49dO7giedwMqUr/DTQapN38JaeZp94q5dsEbMG +3tfytJdS+E6RE6cExb6zjHGFOnmcJ+nsu7YZL+MD+p20g6dAq+tvnhBSuU4/dcU 2OFlEuaLNSr9+aY0QJQuKW0CqkP+5T/SG34kES6C+QwhsgmwVi/iO5R79nP0E5qr Pgi9LiYc32nhAw== -----END CERTIFICATE-----Generated at Mon Jun 2 06:29:02 2025 by rpki-client