$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.cer File: F2441731A38F6F03ED8BFDB14F3CF89CED26A880.cer (raw, json) Hash identifier: jfEWJ8GIkz7JcYuIyDRKhocx0NiqSw619feRRMJr7CI= Subject key identifier: F2:44:17:31:A3:8F:6F:03:ED:8B:FD:B1:4F:3C:F8:9C:ED:26:A8:80 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4EAD9FE87A588171916C9D4F5209326C68836CC0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.mft caRepository: rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 10 Mar 2025 12:24:07 +0000 Certificate not after: Mon 09 Mar 2026 12:29:07 +0000 Subordinate resources: IP: 202.94.83.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:ad:9f:e8:7a:58:81:71:91:6c:9d:4f:52:09:32:6c:68:83:6c:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Mar 10 12:24:07 2025 GMT Not After : Mar 9 12:29:07 2026 GMT Subject: CN=F2441731A38F6F03ED8BFDB14F3CF89CED26A880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:69:41:94:12:4c:27:52:9e:c1:cb:e7:36:f0: ab:0a:64:ab:19:84:61:93:e6:96:a6:d7:92:0d:41: 6c:38:8e:ae:ce:56:f8:a8:3f:5c:79:d6:e9:86:d3: 7c:af:d4:08:f8:06:b7:af:3b:24:e1:1c:2d:b2:03: 0b:f3:27:18:1a:b5:70:8c:9a:ba:7f:d7:87:87:3c: f9:c2:d9:95:37:df:16:70:69:74:4e:fc:43:30:8c: 2e:12:d6:4d:8e:9f:ad:82:56:f4:e4:79:a7:05:91: 5b:61:67:67:1a:1f:5c:c5:6c:83:d1:86:11:a3:8f: 8a:b1:ea:0f:af:3e:99:6d:70:ea:59:67:26:2b:d4: d9:2b:e0:5c:4f:5a:68:cf:5b:24:a3:db:0e:57:70: ae:e1:54:c9:08:99:29:81:da:9f:61:3f:c9:23:85: 56:11:31:62:fe:2f:c1:d5:68:08:d5:dc:ea:36:98: b7:5d:38:49:5d:40:4d:90:2d:48:c8:07:91:2f:d0: d0:aa:a7:e7:dd:db:1b:15:26:e4:42:db:13:30:df: d5:8f:67:04:20:13:2d:13:9c:78:1c:e9:bd:d9:c3: 7e:cc:db:ef:a3:c9:e0:c5:b6:a7:b5:28:44:ce:03: 59:94:5d:27:11:97:59:ab:7c:df:1f:cf:c0:aa:59: 37:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F2:44:17:31:A3:8F:6F:03:ED:8B:FD:B1:4F:3C:F8:9C:ED:26:A8:80 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.94.83.0/24 Signature Algorithm: sha256WithRSAEncryption 11:5f:34:13:84:b3:a2:10:04:3e:72:b2:c5:f2:8f:1b:46:7a: 73:13:2c:a8:67:47:8c:fe:34:fe:06:7f:00:e1:29:43:c1:6c: fd:3b:d6:4e:85:0b:b9:dd:f8:80:d5:cc:98:8f:9d:9c:04:c3: 9d:5b:0c:90:c0:1c:29:4f:66:4e:42:f0:4a:8c:ca:e7:af:5a: 88:c0:d9:6d:9b:57:7a:12:c8:5c:b6:bd:53:4b:e6:d0:a8:c5: f2:a4:2d:a8:47:83:c3:99:7a:8c:33:cb:bd:8f:d5:d7:bd:cf: 27:e4:36:c7:5e:d1:62:07:a7:16:5e:97:91:6e:51:a7:94:a3: c3:15:fd:73:65:fb:23:af:0c:aa:50:e5:cd:c9:0e:3e:a1:3d: ce:43:af:b0:9a:88:a8:2a:24:91:78:c0:85:8f:70:23:3f:b0: 00:51:d2:89:f4:98:50:82:36:46:72:5e:70:12:38:a0:c7:5e: 59:49:d8:18:ee:20:a6:5b:47:b2:a7:b4:bd:ce:80:c8:24:26: f5:be:e1:d7:af:5d:e0:8c:28:b1:dd:62:07:f6:bc:32:6a:44: b0:4e:7a:4d:f6:9e:75:0f:8e:df:2a:b7:7a:4c:34:2c:b7:1d: ad:05:b6:d2:5e:ba:71:51:25:86:26:ce:87:22:ee:16:29:c8: a1:f0:61:92 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUTq2f6HpYgXGRbJ1PUgkybGiDbMAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDMxMDEyMjQwN1oX DTI2MDMwOTEyMjkwN1owMzExMC8GA1UEAxMoRjI0NDE3MzFBMzhGNkYwM0VEOEJG REIxNEYzQ0Y4OUNFRDI2QTg4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVpQZQSTCdSnsHL5zbwqwpkqxmEYZPmlqbXkg1BbDiOrs5W+Kg/XHnW6YbT fK/UCPgGt687JOEcLbIDC/MnGBq1cIyaun/Xh4c8+cLZlTffFnBpdE78QzCMLhLW TY6frYJW9OR5pwWRW2FnZxofXMVsg9GGEaOPirHqD68+mW1w6llnJivU2SvgXE9a aM9bJKPbDldwruFUyQiZKYHan2E/ySOFVhExYv4vwdVoCNXc6jaYt104SV1ATZAt SMgHkS/Q0Kqn593bGxUm5ELbEzDf1Y9nBCATLROceBzpvdnDfszb76PJ4MW2p7Uo RM4DWZRdJxGXWat83x/PwKpZN70CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPJEFzGjj28D7Yv9sU88+JztJqiAMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iOGI0NDFhZC1mMWFhLTQ4ZDMtOWVkYi1iOWE1ZDVjZTliYTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4YjQ0MWFk LWYxYWEtNDhkMy05ZWRiLWI5YTVkNWNlOWJhOC8wL0YyNDQxNzMxQTM4RjZGMDNF RDhCRkRCMTRGM0NGODlDRUQyNkE4ODAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADKXlMwDQYJKoZIhvcNAQELBQADggEBABFfNBOEs6IQBD5yssXyjxtGenMTLKhn R4z+NP4GfwDhKUPBbP071k6FC7nd+IDVzJiPnZwEw51bDJDAHClPZk5C8EqMyuev WojA2W2bV3oSyFy2vVNL5tCoxfKkLahHg8OZeowzy72P1de9zyfkNsde0WIHpxZe l5FuUaeUo8MV/XNl+yOvDKpQ5c3JDj6hPc5Dr7CaiKgqJJF4wIWPcCM/sABR0on0 mFCCNkZyXnASOKDHXllJ2BjuIKZbR7KntL3OgMgkJvW+4devXeCMKLHdYgf2vDJq RLBOek32nnUPjt8qt3pMNCy3Ha0FttJeunFRJYYmzoci7hYpyKHwYZI= -----END CERTIFICATE-----Generated at Sat Apr 5 10:07:59 2025 by rpki-client