$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.cer File: E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.cer (raw, json) Hash identifier: fI5es1AD8798rdnSV5oYPakpKOnOYXde4A9poaU3GNY= Subject key identifier: E9:FC:7A:F3:FF:BA:00:98:63:D1:04:ED:E1:B4:5D:A0:59:25:35:E6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1EB95BA32E80707B21B6F683D1473F03875291ED Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.mft caRepository: rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 16 Jan 2025 22:39:08 +0000 Certificate not after: Thu 15 Jan 2026 22:44:08 +0000 Subordinate resources: IP: 103.175.236.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:b9:5b:a3:2e:80:70:7b:21:b6:f6:83:d1:47:3f:03:87:52:91:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 16 22:39:08 2025 GMT Not After : Jan 15 22:44:08 2026 GMT Subject: CN=E9FC7AF3FFBA009863D104EDE1B45DA0592535E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fe:b5:c0:a2:5d:4c:96:29:61:33:9a:a3:8b: 8a:67:c4:cc:af:9a:92:d7:50:72:a0:a5:8d:f8:39: dd:1f:6a:fd:5a:03:3a:d2:01:d7:5f:d1:66:66:1a: 97:5e:1d:23:db:96:80:23:32:43:f6:99:24:ee:d1: cf:43:20:cc:ed:77:d4:4f:2a:18:43:05:2f:d5:e6: 57:a6:e0:fa:50:65:f7:a6:4f:e1:38:2b:68:3c:6b: cd:39:b8:9f:83:6a:98:3b:65:2a:da:79:fb:8e:93: 8d:f2:b3:37:d5:0f:44:f9:62:c2:ef:85:a5:9e:ff: b8:69:25:ca:8b:20:50:ed:9d:bc:78:b9:b2:66:73: d5:16:1c:44:08:b9:d9:ae:af:42:51:eb:72:c3:b2: 9e:09:e8:8e:2a:84:f9:8c:b7:3c:2f:9d:d6:96:15: 1c:26:c4:40:5c:c7:b1:32:ce:43:dd:91:cf:73:f8: fc:e2:d9:eb:59:9f:ce:d6:ae:db:85:29:88:96:51: 70:a3:64:9b:cb:41:ee:74:0e:a5:a7:03:1d:a1:61: 6c:16:53:42:a8:92:a7:db:38:64:b4:d9:c9:43:9e: 93:39:fa:67:f5:b8:50:cc:2c:ee:38:c2:39:8b:f9: fa:1d:69:5a:2b:d8:de:ed:ff:39:5e:51:45:03:a9: 6e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E9:FC:7A:F3:FF:BA:00:98:63:D1:04:ED:E1:B4:5D:A0:59:25:35:E6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6b4c70a1-5036-450b-b936-5084f78f81ef/0/E9FC7AF3FFBA009863D104EDE1B45DA0592535E6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.236.0/23 Signature Algorithm: sha256WithRSAEncryption 60:d6:2c:b5:4c:6e:59:58:d5:66:0e:2a:76:00:ec:2d:20:f8: ad:f8:0b:78:65:e5:56:14:e3:c0:08:a6:9a:a8:98:05:ff:cc: 67:15:5d:48:70:b3:22:b8:f4:10:d9:bb:f0:14:a2:ad:69:74: 1f:35:74:bb:10:40:4a:41:d2:ac:16:8a:80:bc:8a:c3:72:69: 2e:f2:85:2a:4d:a2:5e:d5:35:f9:5d:08:2d:66:29:98:6f:b3: 35:4c:f8:24:79:6d:c6:62:86:fc:41:d3:60:c7:fa:26:3b:37: 90:68:9d:3e:12:85:57:57:9a:1a:18:17:99:57:50:5b:81:7b: 52:b7:2f:d4:10:88:5c:9f:40:48:63:68:e2:fe:0f:25:64:24: 5b:57:c1:28:78:19:da:32:fc:04:d9:f1:97:8e:eb:2f:b1:40: 89:10:50:a0:b9:40:85:cf:79:5f:4f:c0:a1:35:13:40:51:71: 1e:7f:11:1c:6d:a1:14:6f:a0:f3:e4:2f:5c:09:e5:b8:8e:02: d6:a8:06:8a:ee:ef:93:7d:e1:f7:16:de:31:02:90:1c:a8:88: fd:cc:cc:f5:78:cb:cf:97:42:26:9b:27:57:df:9a:a6:03:16: e2:f7:da:20:f4:49:ba:8f:16:42:71:fc:0c:58:a3:49:92:65: 9c:89:1c:b0 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHrlboy6AcHshtvaD0Uc/A4dSke0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDExNjIyMzkwOFoX DTI2MDExNTIyNDQwOFowMzExMC8GA1UEAxMoRTlGQzdBRjNGRkJBMDA5ODYzRDEw NEVERTFCNDVEQTA1OTI1MzVFNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ/+tcCiXUyWKWEzmqOLimfEzK+aktdQcqCljfg53R9q/VoDOtIB11/RZmYa l14dI9uWgCMyQ/aZJO7Rz0MgzO131E8qGEMFL9XmV6bg+lBl96ZP4TgraDxrzTm4 n4NqmDtlKtp5+46TjfKzN9UPRPliwu+FpZ7/uGklyosgUO2dvHi5smZz1RYcRAi5 2a6vQlHrcsOyngnojiqE+Yy3PC+d1pYVHCbEQFzHsTLOQ92Rz3P4/OLZ61mfztau 24UpiJZRcKNkm8tB7nQOpacDHaFhbBZTQqiSp9s4ZLTZyUOekzn6Z/W4UMws7jjC OYv5+h1pWivY3u3/OV5RRQOpbg0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOn8evP/ugCYY9EE7eG0XaBZJTXmMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82YjRjNzBhMS01MDM2LTQ1MGItYjkzNi01MDg0Zjc4ZjgxZWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiNGM3MGEx LTUwMzYtNDUwYi1iOTM2LTUwODRmNzhmODFlZi8wL0U5RkM3QUYzRkZCQTAwOTg2 M0QxMDRFREUxQjQ1REEwNTkyNTM1RTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnr+wwDQYJKoZIhvcNAQELBQADggEBAGDWLLVMbllY1WYOKnYA7C0g+K34C3hl 5VYU48AIppqomAX/zGcVXUhwsyK49BDZu/AUoq1pdB81dLsQQEpB0qwWioC8isNy aS7yhSpNol7VNfldCC1mKZhvszVM+CR5bcZihvxB02DH+iY7N5BonT4ShVdXmhoY F5lXUFuBe1K3L9QQiFyfQEhjaOL+DyVkJFtXwSh4Gdoy/ATZ8ZeO6y+xQIkQUKC5 QIXPeV9PwKE1E0BRcR5/ERxtoRRvoPPkL1wJ5biOAtaoBoru75N94fcW3jECkByo iP3MzPV4y8+XQiabJ1ffmqYDFuL32iD0SbqPFkJx/AxYo0mSZZyJHLA= -----END CERTIFICATE-----Generated at Sat Apr 5 06:31:25 2025 by rpki-client