$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer File: D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer (raw, json) Hash identifier: h2rlDjRIa06LaXp2zAZiroN+fuCPbjWoBoU0U4yiuNc= Subject key identifier: D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1D32FE816728292B1D06BBE48DDF70E55B89FE2C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.mft caRepository: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 03 Apr 2025 07:29:17 +0000 Certificate not after: Thu 02 Apr 2026 07:34:17 +0000 Subordinate resources: IP: 103.169.198.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:32:fe:81:67:28:29:2b:1d:06:bb:e4:8d:df:70:e5:5b:89:fe:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Apr 3 07:29:17 2025 GMT Not After : Apr 2 07:34:17 2026 GMT Subject: CN=D7286D5F5B9ADD4CC166AD32519692F0C8902B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:b1:8b:db:35:fb:0e:55:2a:c7:ca:bf:d8: 2d:86:e0:ea:26:aa:93:49:b1:87:a3:c4:a8:04:b7: 1c:b0:80:44:e5:f5:02:36:04:60:e7:c2:22:b0:73: c4:6c:74:b4:ac:1f:ef:0d:cb:31:b0:2f:01:1f:21: c0:c6:08:67:f0:28:76:73:39:0e:12:6f:0b:9a:c5: 17:a2:c6:42:eb:00:00:b7:da:6a:64:b7:65:d5:87: 74:d9:64:82:ad:dc:21:39:82:2f:7f:ff:56:ab:0a: 12:22:66:5b:a7:8b:66:72:7d:2c:5b:d2:fd:db:e8: 91:b7:53:78:fe:8e:6c:11:f5:d3:3c:32:6d:0e:f4: 89:dd:be:9b:0a:4d:b2:06:e2:76:d1:10:64:1b:4c: f9:05:cb:26:8c:49:b7:4c:2e:b8:3e:de:d5:12:23: 4b:a5:70:1f:24:35:b9:5a:8d:f4:47:b7:e5:a0:ba: d0:3c:3c:6a:fb:20:73:9b:4f:51:7e:da:73:6e:c9: 32:2a:15:c4:23:f5:83:0d:ff:48:82:5c:11:ce:4c: 25:17:16:e4:48:78:8e:0a:b4:12:de:35:70:74:e5: a7:f4:07:e4:f1:44:c4:5e:6b:3d:0b:04:19:31:02: 4f:1d:e6:a3:fe:d4:61:49:9a:a4:5a:7d:05:8b:87: a5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.198.0/24 Signature Algorithm: sha256WithRSAEncryption 70:e6:08:e7:c2:13:81:63:dc:2b:bf:47:73:b1:c9:52:86:6c: c8:06:4b:59:b8:ad:d7:82:28:b2:1e:46:c7:46:ae:41:fb:68: 5e:54:1e:a3:5e:28:82:44:b8:29:88:b2:7a:76:18:5c:b3:59: 83:c0:5f:8e:2e:76:a7:c5:66:fc:5b:08:87:c4:03:50:04:08: d2:c7:82:e8:3a:7b:6d:19:c8:89:41:ab:43:2d:b3:9f:b6:96: ea:a0:c9:96:e5:5a:15:f6:c4:99:fc:c8:93:b0:e5:84:9d:7a: f6:96:5f:c5:71:9b:18:a3:3f:3c:fb:42:3e:aa:81:2e:2e:80: 18:37:41:ec:ae:c5:7c:f0:18:37:3c:55:8f:98:46:f6:93:76: c8:d9:0c:fb:fe:be:1d:50:8f:93:13:37:c2:9c:4d:3e:bd:35: 25:fd:34:f3:7e:40:62:95:8b:05:70:dc:81:1f:dc:2d:76:7a: 93:3b:58:84:45:ea:62:0b:42:30:ca:9e:5b:5c:9c:99:41:8c: 51:b9:7a:41:9c:7e:22:81:6b:13:8e:a8:fc:8c:a4:1d:6a:e8: 4a:47:d4:88:7b:82:ba:71:01:07:ce:7c:7b:76:c1:d6:4b:b9: b2:06:6d:01:90:43:cc:89:4d:6c:be:58:d7:96:f8:6f:ce:40: ca:08:ee:30 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHTL+gWcoKSsdBrvkjd9w5VuJ/iwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQwMzA3MjkxN1oX DTI2MDQwMjA3MzQxN1owMzExMC8GA1UEAxMoRDcyODZENUY1QjlBREQ0Q0MxNjZB RDMyNTE5NjkyRjBDODkwMkIyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL23sYvbNfsOVSrHyr/YLYbg6iaqk0mxh6PEqAS3HLCAROX1AjYEYOfCIrBz xGx0tKwf7w3LMbAvAR8hwMYIZ/AodnM5DhJvC5rFF6LGQusAALfaamS3ZdWHdNlk gq3cITmCL3//VqsKEiJmW6eLZnJ9LFvS/dvokbdTeP6ObBH10zwybQ70id2+mwpN sgbidtEQZBtM+QXLJoxJt0wuuD7e1RIjS6VwHyQ1uVqN9Ee35aC60Dw8avsgc5tP UX7ac27JMioVxCP1gw3/SIJcEc5MJRcW5Eh4jgq0Et41cHTlp/QH5PFExF5rPQsE GTECTx3mo/7UYUmapFp9BYuHpdkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNcobV9bmt1MwWatMlGWkvDIkCspMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NTI2MDY0MS1iY2UyLTQ0NWMtOWRlNS0zNzBhNzg3Zjk1MzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1MjYwNjQx LWJjZTItNDQ1Yy05ZGU1LTM3MGE3ODdmOTUzMC8wL0Q3Mjg2RDVGNUI5QURENEND MTY2QUQzMjUxOTY5MkYwQzg5MDJCMjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnqcYwDQYJKoZIhvcNAQELBQADggEBAHDmCOfCE4Fj3Cu/R3OxyVKGbMgGS1m4 rdeCKLIeRsdGrkH7aF5UHqNeKIJEuCmIsnp2GFyzWYPAX44udqfFZvxbCIfEA1AE CNLHgug6e20ZyIlBq0Mts5+2luqgyZblWhX2xJn8yJOw5YSdevaWX8VxmxijPzz7 Qj6qgS4ugBg3QeyuxXzwGDc8VY+YRvaTdsjZDPv+vh1Qj5MTN8KcTT69NSX9NPN+ QGKViwVw3IEf3C12epM7WIRF6mILQjDKnltcnJlBjFG5ekGcfiKBaxOOqPyMpB1q 6EpH1Ih7grpxAQfOfHt2wdZLubIGbQGQQ8yJTWy+WNeW+G/OQMoI7jA= -----END CERTIFICATE-----Generated at Sat Apr 5 10:31:52 2025 by rpki-client