$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer File: E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer (raw, json) Hash identifier: mqpAyMHsKWfULg97uhiF5Lc7O5lqyQPwbjmsOP2McMY= Subject key identifier: E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 276BFCA952147C18A5AD13F3447F42ABB329EC03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.mft caRepository: rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 28 May 2025 08:48:06 +0000 Certificate not after: Wed 27 May 2026 08:53:06 +0000 Subordinate resources: IP: 103.21.195.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 11 Jun 2025 02:27:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:6b:fc:a9:52:14:7c:18:a5:ad:13:f3:44:7f:42:ab:b3:29:ec:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 28 08:48:06 2025 GMT Not After : May 27 08:53:06 2026 GMT Subject: CN=E35D44338E5937B4AE269DDDCDA40A28F87F3EC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:87:ba:8d:73:ba:3b:af:7e:ea:0a:9f:d4: bc:7d:2c:37:2c:cd:f5:98:cf:39:19:05:b5:7d:8d: f1:a5:62:7a:dd:83:82:1d:f3:13:2b:9a:9f:00:c8: ba:15:cf:4a:7e:3e:4a:2f:10:a9:11:54:0c:10:6f: b5:cf:48:f1:f6:f0:35:7a:95:79:c4:2b:2d:fc:4f: 2c:7a:6b:9d:a1:91:fb:18:8d:f1:27:26:f1:99:2d: 26:11:61:42:c7:de:ce:33:9b:c8:71:d8:11:f6:2b: 80:3b:a5:54:40:ec:49:eb:bf:8e:c6:f6:f5:ab:ba: db:2e:e8:9e:44:5e:ab:70:91:70:5a:36:df:dc:f4: cb:d5:cb:6b:9f:f4:24:8b:aa:ae:02:82:11:c4:ee: b5:ac:a8:a9:21:2e:1f:6d:18:0d:70:ca:4c:d9:8c: 20:08:7f:48:fa:c6:cb:b7:3f:27:24:43:6c:ac:96: 86:ff:1c:a1:a0:d0:82:a0:eb:1b:fb:4d:55:76:22: d7:09:27:7b:a1:ec:66:61:77:af:6c:29:a0:2a:41: 20:f5:d2:b4:59:a1:e5:47:92:cc:f0:b6:fa:19:8a: 7e:43:02:45:13:ca:9f:66:79:a2:4b:6d:62:2d:0b: 0e:db:44:17:ac:c9:39:89:c0:47:2e:5e:49:bc:0d: fd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.195.0/24 Signature Algorithm: sha256WithRSAEncryption 03:4d:6e:50:dd:f6:21:af:13:de:1b:88:b9:d3:a1:97:5c:95: 4f:d6:fa:30:be:3b:87:76:13:dd:af:09:ee:c7:50:a0:ea:ac: e8:c5:67:7c:37:23:5b:0c:23:14:09:fb:dc:73:e0:91:68:d8: d4:12:04:7a:28:1f:e4:1a:b6:82:3b:ec:aa:59:6f:29:e3:20: bd:83:09:da:a6:78:2c:e2:e8:86:5f:a4:b5:53:92:60:c2:6b: 5e:ea:ec:1c:46:69:b3:99:ae:05:c1:44:c8:b4:c6:f2:82:c0: 7c:39:ab:26:27:50:38:c5:ab:b6:b3:b1:ac:f2:39:d3:4c:91: 22:a6:33:a3:9c:71:ec:5e:ac:30:12:8d:97:54:10:ea:a7:ec: 04:d4:1a:46:18:dc:38:69:59:07:39:aa:f5:c1:b0:ea:fd:59: c0:a8:b8:5a:55:ce:4b:f9:b2:bf:6c:9e:0c:5c:e2:57:68:06: 9a:6d:1a:3d:c2:96:72:e5:c6:0b:41:53:35:09:f3:3d:49:6b: f8:bf:de:45:17:ad:f6:31:bf:d5:3b:d5:74:cc:ae:73:25:d1: 17:59:6b:f7:55:e1:f0:0e:24:b4:72:38:54:f7:b3:a9:fe:66: 0d:e9:4e:28:1b:c4:ca:ec:e7:79:fc:91:84:86:9d:12:0e:71: 82:a6:4d:9f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJ2v8qVIUfBilrRPzRH9Cq7Mp7AMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDUyODA4NDgwNloX DTI2MDUyNzA4NTMwNlowMzExMC8GA1UEAxMoRTM1RDQ0MzM4RTU5MzdCNEFFMjY5 REREQ0RBNDBBMjhGODdGM0VDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFFh7qNc7o7r37qCp/UvH0sNyzN9ZjPORkFtX2N8aViet2Dgh3zEyuanwDI uhXPSn4+Si8QqRFUDBBvtc9I8fbwNXqVecQrLfxPLHprnaGR+xiN8Scm8ZktJhFh QsfezjObyHHYEfYrgDulVEDsSeu/jsb29au62y7onkReq3CRcFo239z0y9XLa5/0 JIuqrgKCEcTutayoqSEuH20YDXDKTNmMIAh/SPrGy7c/JyRDbKyWhv8coaDQgqDr G/tNVXYi1wkne6HsZmF3r2wpoCpBIPXStFmh5UeSzPC2+hmKfkMCRRPKn2Z5oktt Yi0LDttEF6zJOYnARy5eSbwN/VcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFONdRDOOWTe0riad3c2kCij4fz7IMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNjgzYjI3Yy1hNzMwLTQwMDItOTFiOC1kMDM2NmRmYWM3N2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ODNiMjdj LWE3MzAtNDAwMi05MWI4LWQwMzY2ZGZhYzc3ZS8wL0UzNUQ0NDMzOEU1OTM3QjRB RTI2OURERENEQTQwQTI4Rjg3RjNFQzgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnFcMwDQYJKoZIhvcNAQELBQADggEBAANNblDd9iGvE94biLnToZdclU/W+jC+ O4d2E92vCe7HUKDqrOjFZ3w3I1sMIxQJ+9xz4JFo2NQSBHooH+QatoI77KpZbynj IL2DCdqmeCzi6IZfpLVTkmDCa17q7BxGabOZrgXBRMi0xvKCwHw5qyYnUDjFq7az sazyOdNMkSKmM6OccexerDASjZdUEOqn7ATUGkYY3DhpWQc5qvXBsOr9WcCouFpV zkv5sr9sngxc4ldoBpptGj3ClnLlxgtBUzUJ8z1Ja/i/3kUXrfYxv9U71XTMrnMl 0RdZa/dV4fAOJLRyOFT3s6n+Zg3pTigbxMrs53n8kYSGnRIOcYKmTZ8= -----END CERTIFICATE-----Generated at Sun Jun 8 07:14:21 2025 by rpki-client