$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer File: DBB18CCF58914524AFB113FE13359CC6B08EFBF3.cer (raw, json) Hash identifier: EaSJSSLXSS0Qlqq0Nvao4CIxGNNGSykzqkfzAV1tPwk= Subject key identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 195150BC5D7F49985D955F284A4ED88B2973F99B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.mft caRepository: rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 17 May 2025 01:56:09 +0000 Certificate not after: Sat 16 May 2026 02:01:09 +0000 Subordinate resources: IP: 103.118.174.0/23 IP: 2001:df1:1c40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:51:50:bc:5d:7f:49:98:5d:95:5f:28:4a:4e:d8:8b:29:73:f9:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 17 01:56:09 2025 GMT Not After : May 16 02:01:09 2026 GMT Subject: CN=DBB18CCF58914524AFB113FE13359CC6B08EFBF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:8b:c3:fd:b3:ad:47:c4:9c:b5:3c:c6:f7:49: 32:4e:d4:09:93:67:62:c0:cf:6e:35:b6:a7:98:81: 0b:c0:12:f5:b2:a5:7f:ed:fe:a7:1d:b4:96:36:99: f2:83:8e:f7:dd:89:34:c5:cb:21:5e:cd:1a:bb:48: 95:28:91:c4:c9:de:e5:81:ef:81:f8:01:02:7d:da: e8:77:11:6b:93:d1:6b:20:98:0c:07:83:ab:43:85: 92:db:b3:59:71:d6:1b:fa:73:6b:65:24:94:8a:25: b0:f3:83:4e:50:52:b1:fc:c3:c4:e6:11:0c:a9:da: a9:69:c6:22:44:0c:10:d8:01:84:b2:76:b8:78:65: 65:7d:0e:40:56:dd:9d:0e:65:61:b8:41:5d:87:e4: 7c:eb:89:cd:75:4d:28:12:8a:ef:1e:8a:34:c9:a5: 8d:3e:2e:f9:1b:c5:a7:df:ce:fe:0f:6e:95:24:77: 84:8e:93:73:57:9a:8a:6d:1e:9a:cf:e6:26:f5:f5: 84:b2:c3:80:16:e6:fb:59:7c:1a:4f:ce:3c:ec:72: 75:55:79:91:57:12:70:ec:bc:64:9c:0b:ca:37:bf: 87:84:cc:9f:a4:53:f3:d6:95:1a:5f:9a:ec:33:51: 3e:e8:6b:e6:e9:06:43:a0:d2:7b:e5:dd:04:da:78: b3:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DB:B1:8C:CF:58:91:45:24:AF:B1:13:FE:13:35:9C:C6:B0:8E:FB:F3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/27d9d7cb-6cfb-4de0-9daa-d222b7a89072/0/DBB18CCF58914524AFB113FE13359CC6B08EFBF3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.174.0/23 IPv6: 2001:df1:1c40::/48 Signature Algorithm: sha256WithRSAEncryption 7b:d3:33:f2:de:3f:e3:0d:20:b9:6c:63:cf:79:29:91:66:7c: 1f:16:90:4c:44:43:d5:7e:a1:41:d1:c5:2f:54:c2:a5:37:32: dd:44:3f:85:c9:49:fd:9b:9b:50:be:0b:96:5c:d2:9c:b0:86: f2:b3:0f:b9:00:3b:3a:5d:b7:24:e8:6e:21:4b:67:f7:a8:cb: 4d:15:24:22:ac:4e:4f:a2:ce:e6:a3:f0:c7:34:b5:d4:97:63: 33:82:36:ce:d0:c9:38:0e:f1:91:21:19:3b:21:32:eb:0d:37: 56:f2:b7:68:11:28:70:cb:9c:58:49:94:90:a9:d5:f4:76:a3: cc:f9:ae:25:c9:57:e7:a8:50:25:a9:f8:05:a7:0a:4c:06:0b: 74:25:f4:5c:30:d7:e4:71:40:91:df:f3:34:9a:fc:4a:52:e9: e3:99:f7:bb:35:d3:13:98:ca:b5:12:8c:06:98:91:10:49:c5: 88:99:04:d7:2f:af:a9:e5:3b:2b:5b:b0:54:59:7b:15:15:aa: 62:f2:75:95:b9:a4:34:9c:2e:ec:4b:34:5f:09:81:65:29:6b: d9:40:3f:6e:55:42:f4:6f:96:5a:1e:f3:8c:d5:c2:0b:30:1d: e8:1e:11:47:de:6d:fb:78:14:28:a2:80:e9:80:eb:bf:ab:29: 8a:e7:e0:4a -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUGVFQvF1/SZhdlV8oSk7Yiylz+ZswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUxNzAxNTYwOVoX DTI2MDUxNjAyMDEwOVowMzExMC8GA1UEAxMoREJCMThDQ0Y1ODkxNDUyNEFGQjEx M0ZFMTMzNTlDQzZCMDhFRkJGMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2Lw/2zrUfEnLU8xvdJMk7UCZNnYsDPbjW2p5iBC8AS9bKlf+3+px20ljaZ 8oOO992JNMXLIV7NGrtIlSiRxMne5YHvgfgBAn3a6HcRa5PRayCYDAeDq0OFktuz WXHWG/pza2UklIolsPODTlBSsfzDxOYRDKnaqWnGIkQMENgBhLJ2uHhlZX0OQFbd nQ5lYbhBXYfkfOuJzXVNKBKK7x6KNMmljT4u+RvFp9/O/g9ulSR3hI6Tc1eaim0e ms/mJvX1hLLDgBbm+1l8Gk/OPOxydVV5kVcScOy8ZJwLyje/h4TMn6RT89aVGl+a 7DNRPuhr5ukGQ6DSe+XdBNp4s6ECAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNuxjM9YkUUkr7ET/hM1nMawjvvzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yN2Q5ZDdjYi02Y2ZiLTRkZTAtOWRhYS1kMjIyYjdhODkwNzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI3ZDlkN2Ni LTZjZmItNGRlMC05ZGFhLWQyMjJiN2E4OTA3Mi8wL0RCQjE4Q0NGNTg5MTQ1MjRB RkIxMTNGRTEzMzU5Q0M2QjA4RUZCRjMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFndq4wDwQCAAIwCQMHACABDfEcQDANBgkqhkiG9w0BAQsFAAOCAQEAe9Mz8t4/ 4w0guWxjz3kpkWZ8HxaQTERD1X6hQdHFL1TCpTcy3UQ/hclJ/ZubUL4LllzSnLCG 8rMPuQA7Ol23JOhuIUtn96jLTRUkIqxOT6LO5qPwxzS11JdjM4I2ztDJOA7xkSEZ OyEy6w03VvK3aBEocMucWEmUkKnV9HajzPmuJclX56hQJan4BacKTAYLdCX0XDDX 5HFAkd/zNJr8SlLp45n3uzXTE5jKtRKMBpiREEnFiJkE1y+vqeU7K1uwVFl7FRWq YvJ1lbmkNJwu7Es0XwmBZSlr2UA/blVC9G+WWh7zjNXCCzAd6B4RR95t+3gUKKKA 6YDrv6spiufgSg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:12:58 2025 by rpki-client