$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer File: 749E8F6C5F22D18A70B682F86C65ECD3EA27635C.cer (raw, json) Hash identifier: xTpAlAuvy+PvPANskMIdtRZ0SzHY9U5GbyG5RS1aD1Y= Subject key identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A31CD5CD34B9F9E6D807BB383364E83A06C81F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft caRepository: rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 21 Apr 2025 17:42:19 +0000 Certificate not after: Mon 20 Apr 2026 17:47:19 +0000 Subordinate resources: IP: 103.149.176.0/23 IP: 2001:df3:3480::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 27 Apr 2025 20:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:31:cd:5c:d3:4b:9f:9e:6d:80:7b:b3:83:36:4e:83:a0:6c:81:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 21 17:42:19 2025 GMT Not After : Apr 20 17:47:19 2026 GMT Subject: CN=749E8F6C5F22D18A70B682F86C65ECD3EA27635C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:43:3f:22:f2:e4:aa:4d:59:bc:93:d6:b2:ba: 20:d7:5a:35:cb:e3:9a:8b:f0:26:0b:69:19:5b:b4: e1:cb:53:02:ff:20:62:71:31:1d:01:fd:61:4d:6b: 8d:a8:94:f3:8d:ce:bd:b5:a9:d5:52:76:5c:7c:c9: 90:90:c3:10:0e:0c:cf:4e:19:ae:0b:f6:cd:5b:a9: d1:f4:41:38:71:c6:2a:8d:c4:30:6f:33:fc:e3:f3: 0d:d4:f5:e1:7a:17:06:df:3a:b2:4f:da:2b:31:d5: 82:ee:7f:7c:2f:04:7d:6d:0c:e3:67:fd:14:a8:c8: 3e:e6:cf:d4:0b:95:99:df:c2:25:24:46:b6:1d:8b: 21:e2:7c:1f:74:c2:ae:d6:db:f2:72:79:3b:db:9e: 52:2e:df:33:f0:7b:71:a3:fe:45:e9:0a:9f:0e:f9: 26:aa:1e:ff:ae:bf:b9:c6:45:5f:56:c6:bf:f3:1f: 16:37:79:8f:8f:45:60:cb:4b:9a:f9:a7:c7:f4:4e: b0:80:9b:d6:25:63:d8:78:38:71:a9:c5:b1:86:e7: 33:45:3f:6c:af:8d:db:a4:08:76:f1:b3:08:8d:7a: 75:85:9c:3a:5a:96:fb:7b:22:b9:f3:8b:d3:77:81: ba:e4:23:a8:24:2a:32:c5:7f:c2:e6:52:8b:b3:85: 91:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 74:9E:8F:6C:5F:22:D1:8A:70:B6:82:F8:6C:65:EC:D3:EA:27:63:5C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/8ae8db38-63a8-413c-a9f6-cc223afa4a75/0/749E8F6C5F22D18A70B682F86C65ECD3EA27635C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.149.176.0/23 IPv6: 2001:df3:3480::/48 Signature Algorithm: sha256WithRSAEncryption 3f:8e:37:5b:e4:9f:14:3d:95:59:48:8f:bb:83:63:41:17:5d: ce:9e:38:9b:e9:9a:be:e5:70:58:c0:e8:23:5d:06:bc:2f:7a: f3:6a:2b:a0:3f:72:c5:dd:2a:b8:dd:30:89:93:2f:9d:61:01: 3d:ea:63:d8:2d:c6:21:53:0d:82:aa:08:3f:db:4e:ce:90:79: 33:68:80:b9:57:59:61:06:b4:6d:f8:ad:25:2a:d3:b3:41:9c: 11:56:66:60:54:dd:67:50:00:a2:e0:1a:d3:08:2f:db:24:13: 9f:1d:93:e6:2c:24:c2:42:d5:d0:76:1a:00:ff:41:a4:5d:2e: d3:21:db:68:4c:8b:7b:92:60:67:5b:9a:f3:84:a9:5b:44:af: 2c:90:46:3e:a9:ee:b7:c1:23:8a:c0:cc:6d:eb:32:35:a7:e9: 0e:40:9d:e8:4b:03:af:0d:b8:fa:82:22:bd:76:8f:b8:b8:55: 55:f5:d7:08:74:38:33:af:1f:b6:7a:9d:af:01:70:37:70:f1: 1b:37:af:ce:2e:76:65:5e:4b:1e:15:c6:9e:b7:5c:06:46:78: 86:ee:43:87:03:8a:eb:95:c2:cf:fa:e1:5e:bc:41:3e:33:31: e1:6b:56:9c:d7:75:12:d0:f7:d9:73:02:3a:ac:f2:b5:db:25: c1:e8:5a:6e -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUSjHNXNNLn55tgHuzgzZOg6BsgfIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDQyMTE3NDIxOVoX DTI2MDQyMDE3NDcxOVowMzExMC8GA1UEAxMoNzQ5RThGNkM1RjIyRDE4QTcwQjY4 MkY4NkM2NUVDRDNFQTI3NjM1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOFDPyLy5KpNWbyT1rK6INdaNcvjmovwJgtpGVu04ctTAv8gYnExHQH9YU1r jaiU843OvbWp1VJ2XHzJkJDDEA4Mz04Zrgv2zVup0fRBOHHGKo3EMG8z/OPzDdT1 4XoXBt86sk/aKzHVgu5/fC8EfW0M42f9FKjIPubP1AuVmd/CJSRGth2LIeJ8H3TC rtbb8nJ5O9ueUi7fM/B7caP+RekKnw75Jqoe/66/ucZFX1bGv/MfFjd5j49FYMtL mvmnx/ROsICb1iVj2Hg4canFsYbnM0U/bK+N26QIdvGzCI16dYWcOlqW+3siufOL 03eBuuQjqCQqMsV/wuZSi7OFkYUCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHSej2xfItGKcLaC+Gxl7NPqJ2NcMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84YWU4ZGIzOC02M2E4LTQxM2MtYTlmNi1jYzIyM2FmYTRhNzUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhhZThkYjM4 LTYzYTgtNDEzYy1hOWY2LWNjMjIzYWZhNGE3NS8wLzc0OUU4RjZDNUYyMkQxOEE3 MEI2ODJGODZDNjVFQ0QzRUEyNzYzNUMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnlbAwDwQCAAIwCQMHACABDfM0gDANBgkqhkiG9w0BAQsFAAOCAQEAP443W+Sf FD2VWUiPu4NjQRddzp44m+mavuVwWMDoI10GvC9682oroD9yxd0quN0wiZMvnWEB Pepj2C3GIVMNgqoIP9tOzpB5M2iAuVdZYQa0bfitJSrTs0GcEVZmYFTdZ1AAouAa 0wgv2yQTnx2T5iwkwkLV0HYaAP9BpF0u0yHbaEyLe5JgZ1ua84SpW0SvLJBGPqnu t8EjisDMbesyNafpDkCd6EsDrw24+oIivXaPuLhVVfXXCHQ4M68ftnqdrwFwN3Dx Gzevzi52ZV5LHhXGnrdcBkZ4hu5DhwOK65XCz/rhXrxBPjMx4WtWnNd1EtD32XMC Oqzytdslwehabg== -----END CERTIFICATE-----Generated at Thu Apr 24 20:37:15 2025 by rpki-client on console.sobornost.net