$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer File: DEF44331E724964F28697DEABAF2313CDCEEFACE.cer (raw, json) Hash identifier: cmv7rQl8F+5o5ZqZB/pKrkczlVtnVGTwfXsUpJlUbwQ= Subject key identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6CCB2C779CDD6BAE6AEEA3A95697EA29E47CC94C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.mft caRepository: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Jun 2025 07:22:50 +0000 Certificate not after: Tue 02 Jun 2026 07:27:50 +0000 Subordinate resources: IP: 103.108.191.0/24 IP: 2001:df4:1f00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 06 Jun 2025 21:09:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:cb:2c:77:9c:dd:6b:ae:6a:ee:a3:a9:56:97:ea:29:e4:7c:c9:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 07:22:50 2025 GMT Not After : Jun 2 07:27:50 2026 GMT Subject: CN=DEF44331E724964F28697DEABAF2313CDCEEFACE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:61:28:d4:45:50:a1:8e:d4:ef:48:ec:eb:b5: 6f:49:d2:0d:b7:b5:78:5d:0c:25:e4:1f:6f:1d:83: 8c:22:5d:1e:cc:ab:8e:d6:d9:74:2b:21:2d:23:39: ef:f6:2f:7a:14:24:27:6b:a8:5b:84:30:39:13:52: 33:7f:8e:95:1c:b4:36:af:51:4e:5a:bb:b8:2b:cb: 76:b9:17:69:9b:1f:87:e2:68:f1:4f:76:e1:48:9e: 4b:e7:10:02:74:b5:c6:26:fd:ba:19:f6:14:61:31: 21:cb:e6:e7:6c:70:76:9a:ed:0e:9b:d2:7d:b3:17: b9:e1:4d:c2:58:17:2b:64:8b:53:ab:75:87:20:de: 6d:dc:4e:46:52:24:84:03:83:3b:88:2d:18:8f:c8: bf:89:bd:10:c8:66:d3:66:fa:bf:92:01:1f:40:e1: 5e:63:4b:2f:41:69:9f:29:b3:80:e4:02:61:14:7f: 70:9c:99:cb:5c:0a:0b:4b:bb:65:dc:e1:7d:b4:fb: 54:73:2a:f8:7d:ea:f4:83:9e:0d:77:93:6c:28:a8: 23:c1:9c:18:d7:2b:b4:ef:4a:ac:57:06:44:d1:62: b3:aa:94:d3:24:8c:a2:b6:7f:c4:72:7f:57:c0:13: a2:b8:e3:c6:a0:bb:90:45:3c:d2:ab:33:01:84:c0: 0e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.191.0/24 IPv6: 2001:df4:1f00::/48 Signature Algorithm: sha256WithRSAEncryption 58:8d:57:fe:6b:ae:29:14:48:c8:47:00:f1:53:53:a5:43:2b: f8:51:7f:1c:f3:79:f9:42:54:d2:ab:c9:19:2d:d3:c3:a7:45: 98:3b:bb:4b:99:c2:96:e4:23:4e:27:6a:c1:bf:26:46:c2:30: 0f:f5:9d:6f:32:53:2d:ec:13:7f:2c:6b:cb:ec:ee:d3:50:7e: 40:ad:95:9c:22:07:0c:14:86:f7:7f:c6:46:a3:5a:53:af:c7: 88:0b:5a:e6:f0:af:a6:ba:0b:7c:5e:17:92:1d:2d:04:df:21: 1d:7c:ef:09:c9:f2:b9:9d:ef:a9:50:6f:82:ef:c5:d3:ae:ab: 46:87:c8:93:f0:19:16:71:c6:e1:57:48:9e:25:56:90:94:d4: dd:9b:d5:7b:e0:fe:f0:8a:a9:32:3c:ad:e5:fb:9b:70:d1:e0: 9b:87:fa:4c:5a:0e:23:83:d3:9a:fe:41:63:65:ca:7e:f1:90: fb:11:cd:89:a0:fb:dc:ed:32:5d:57:07:ef:32:27:6f:45:16: 4c:b4:1f:cc:e1:a8:46:81:63:44:15:08:95:a6:ee:57:9e:ec: a0:6f:8f:be:8a:fd:30:c6:58:d9:e9:47:21:36:68:ea:ff:b0: 6d:50:81:a3:eb:ed:e6:1a:c8:99:a7:9c:73:2b:3a:3c:79:cf: 93:d4:67:36 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUbMssd5zda65q7qOpVpfqKeR8yUwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDYwMzA3MjI1MFoX DTI2MDYwMjA3Mjc1MFowMzExMC8GA1UEAxMoREVGNDQzMzFFNzI0OTY0RjI4Njk3 REVBQkFGMjMxM0NEQ0VFRkFDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORhKNRFUKGO1O9I7Ou1b0nSDbe1eF0MJeQfbx2DjCJdHsyrjtbZdCshLSM5 7/YvehQkJ2uoW4QwORNSM3+OlRy0Nq9RTlq7uCvLdrkXaZsfh+Jo8U924UieS+cQ AnS1xib9uhn2FGExIcvm52xwdprtDpvSfbMXueFNwlgXK2SLU6t1hyDebdxORlIk hAODO4gtGI/Iv4m9EMhm02b6v5IBH0DhXmNLL0FpnymzgOQCYRR/cJyZy1wKC0u7 ZdzhfbT7VHMq+H3q9IOeDXeTbCioI8GcGNcrtO9KrFcGRNFis6qU0ySMorZ/xHJ/ V8ATorjjxqC7kEU80qszAYTADpUCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN70QzHnJJZPKGl96rryMTzc7vrOMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMTkwYzM3ZS0yNjU1LTQyYjEtYmFmNy00MmVjMWNmMTkyYWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTBjMzdl LTI2NTUtNDJiMS1iYWY3LTQyZWMxY2YxOTJhYS8wL0RFRjQ0MzMxRTcyNDk2NEYy ODY5N0RFQUJBRjIzMTNDRENFRUZBQ0UubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnbL8wDwQCAAIwCQMHACABDfQfADANBgkqhkiG9w0BAQsFAAOCAQEAWI1X/muu KRRIyEcA8VNTpUMr+FF/HPN5+UJU0qvJGS3Tw6dFmDu7S5nCluQjTidqwb8mRsIw D/WdbzJTLewTfyxry+zu01B+QK2VnCIHDBSG93/GRqNaU6/HiAta5vCvproLfF4X kh0tBN8hHXzvCcnyuZ3vqVBvgu/F066rRofIk/AZFnHG4VdIniVWkJTU3ZvVe+D+ 8IqpMjyt5fubcNHgm4f6TFoOI4PTmv5BY2XKfvGQ+xHNiaD73O0yXVcH7zInb0UW TLQfzOGoRoFjRBUIlabuV57soG+Pvor9MMZY2elHITZo6v+wbVCBo+vt5hrImaec cys6PHnPk9RnNg== -----END CERTIFICATE-----Generated at Tue Jun 3 23:11:02 2025 by rpki-client