$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer File: 007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer (raw, json) Hash identifier: j8PCe34oBqAQD243EkKLFunkPh2yBQp1+KgTtaMFGbE= Subject key identifier: 00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 555BC49CBC4E8E8A8F5824F89A995EA06DE30600 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.mft caRepository: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 07 Oct 2024 19:59:59 +0000 Certificate not after: Mon 06 Oct 2025 20:04:59 +0000 Subordinate resources: IP: 103.58.104.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:5b:c4:9c:bc:4e:8e:8a:8f:58:24:f8:9a:99:5e:a0:6d:e3:06:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Oct 7 19:59:59 2024 GMT Not After : Oct 6 20:04:59 2025 GMT Subject: CN=007C91B049F735F71F2BE8CF92AEAA538D6B1F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b8:86:6b:a2:42:39:83:c2:bc:30:20:8e:ab: 65:67:fb:51:bb:1a:cd:a3:05:19:e4:30:7c:fc:6c: 34:5b:e2:95:39:f5:1e:4e:30:6c:d7:e0:fc:0a:97: 46:3a:50:e2:4e:e0:3f:5c:ca:be:a2:91:fa:47:e9: ad:60:e8:98:fb:94:57:04:86:0e:4f:71:9b:4c:fd: 77:a2:30:1d:56:4b:3e:03:98:e1:86:ab:f7:4a:2b: 32:45:4f:77:b4:70:8a:a4:79:2d:67:5c:91:e6:da: 22:87:03:73:e1:97:f4:96:7f:b7:3e:10:7a:e8:9d: 72:b4:57:30:95:53:3e:d0:46:87:98:cf:15:11:af: da:78:c2:dc:5a:8d:17:15:8f:dd:8f:50:6c:fe:6a: 98:ec:b5:75:fa:d2:d7:74:a1:e4:0b:02:ac:10:94: 0d:7d:9a:f1:25:9d:bb:40:66:ab:ff:7c:70:89:2b: f4:5e:32:d6:9f:f0:1a:72:15:6b:4f:21:e4:cf:fb: b2:5a:4e:f6:99:7a:eb:9e:7c:76:40:85:14:a4:08: db:cb:cd:91:89:8b:e6:c7:2d:fb:f5:b8:1b:56:44: ac:dd:b5:09:3a:e2:1e:39:60:3e:ba:4d:39:9a:7e: e7:d3:6f:ec:75:d1:a2:72:f9:be:ac:6f:4a:12:4e: 1c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.104.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:14:9a:ec:48:5b:8f:09:cb:ee:3b:c2:82:24:9d:2d:a0:c5: 94:82:4b:3c:b7:f0:6f:57:cc:c4:da:f0:b2:2e:91:7b:73:7e: 46:cd:f7:19:14:37:d2:de:ef:53:46:c3:a8:e4:33:c4:5b:e3: d7:13:8a:01:e4:63:81:b3:1b:fa:b2:60:7d:a9:9b:e4:a0:7d: 64:fe:40:95:4e:31:51:fa:be:a6:9c:0a:e7:aa:83:85:e0:72: bc:33:de:14:be:d4:e9:22:45:1a:56:9a:a6:c5:91:78:06:21: 8a:b7:f8:39:19:06:39:3d:2d:d3:56:c0:63:71:f6:bd:de:a2: ce:db:8a:1c:67:f7:b5:14:68:c5:7b:67:92:22:f6:7c:be:ea: 12:8d:58:cb:da:01:46:23:44:ef:3e:77:31:36:5f:1d:0f:b1: 5d:38:2f:21:57:8c:b2:d3:9e:9c:4d:ac:dd:13:96:41:d8:a4: 1a:51:b6:a9:79:09:5f:a9:df:3f:63:f5:7e:08:29:6b:f9:9a: 47:d3:96:ea:a3:cb:9b:d2:f0:9d:b4:63:8e:d1:86:1e:3e:9d: bc:93:cb:69:d4:27:eb:15:93:1b:b6:02:e8:60:69:0e:2a:66: b4:05:7a:a0:47:fd:55:bd:d3:e4:73:d4:bb:f1:2f:aa:d2:86: d3:c8:23:46 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVVvEnLxOjoqPWCT4mpleoG3jBgAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwNzE5NTk1OVoX DTI1MTAwNjIwMDQ1OVowMzExMC8GA1UEAxMoMDA3QzkxQjA0OUY3MzVGNzFGMkJF OENGOTJBRUFBNTM4RDZCMUYwQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALu4hmuiQjmDwrwwII6rZWf7UbsazaMFGeQwfPxsNFvilTn1Hk4wbNfg/AqX RjpQ4k7gP1zKvqKR+kfprWDomPuUVwSGDk9xm0z9d6IwHVZLPgOY4Yar90orMkVP d7RwiqR5LWdckebaIocDc+GX9JZ/tz4QeuidcrRXMJVTPtBGh5jPFRGv2njC3FqN FxWP3Y9QbP5qmOy1dfrS13Sh5AsCrBCUDX2a8SWdu0Bmq/98cIkr9F4y1p/wGnIV a08h5M/7slpO9pl66558dkCFFKQI28vNkYmL5sct+/W4G1ZErN21CTriHjlgPrpN OZp+59Nv7HXRonL5vqxvShJOHCcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAB8kbBJ9zX3Hyvoz5KuqlONax8LMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84NzFhZGE5ZS1lMmE5LTQwMGUtOGRmZi05YmU0ODFhYmE1ODMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3MWFkYTll LWUyYTktNDAwZS04ZGZmLTliZTQ4MWFiYTU4My8wLzAwN0M5MUIwNDlGNzM1Rjcx RjJCRThDRjkyQUVBQTUzOEQ2QjFGMEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnOmgwDQYJKoZIhvcNAQELBQADggEBAI4UmuxIW48Jy+47woIknS2gxZSCSzy3 8G9XzMTa8LIukXtzfkbN9xkUN9Le71NGw6jkM8Rb49cTigHkY4GzG/qyYH2pm+Sg fWT+QJVOMVH6vqacCueqg4Xgcrwz3hS+1OkiRRpWmqbFkXgGIYq3+DkZBjk9LdNW wGNx9r3eos7bihxn97UUaMV7Z5Ii9ny+6hKNWMvaAUYjRO8+dzE2Xx0PsV04LyFX jLLTnpxNrN0TlkHYpBpRtql5CV+p3z9j9X4IKWv5mkfTluqjy5vS8J20Y47Rhh4+ nbyTy2nUJ+sVkxu2AuhgaQ4qZrQFeqBH/VW90+Rz1LvxL6rShtPII0Y= -----END CERTIFICATE-----Generated at Sun Feb 16 20:54:16 2025 by rpki-client