$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer File: 14043163A8BFF50600F16410DE27B7A0DEEC1E61.cer (raw, json) Hash identifier: sQrK2dvfgZvvzjpqZ0JeqzwH4074M0XVMoS5yhTmeAo= Subject key identifier: 14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5DAC94C8836CB5057F3533672E3056D71208D0C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.mft caRepository: rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 01 May 2024 19:10:59 +0000 Certificate not after: Wed 30 Apr 2025 19:15:59 +0000 Subordinate resources: IP: 103.162.150.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:ac:94:c8:83:6c:b5:05:7f:35:33:67:2e:30:56:d7:12:08:d0:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: May 1 19:10:59 2024 GMT Not After : Apr 30 19:15:59 2025 GMT Subject: CN=14043163A8BFF50600F16410DE27B7A0DEEC1E61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:53:ae:17:55:bf:d0:fd:95:63:5e:e3:75:a6: 52:44:21:47:83:5f:00:4c:5f:34:b8:44:0e:d1:50: 07:ed:63:2f:a3:66:44:d2:be:54:4d:b5:e9:dd:c2: 03:76:7d:14:30:55:22:f4:40:8b:24:ee:f2:5f:f6: 3a:c3:d2:aa:47:be:69:00:0b:4f:af:18:5d:7b:10: 06:d9:0d:9d:75:1c:64:33:d6:d6:16:be:4c:78:b2: e9:5e:c8:d4:80:36:4b:63:41:1a:00:43:e7:9e:37: 20:c9:e4:d1:f7:f4:51:98:4e:e7:9f:d7:c2:0e:78: 27:eb:1f:77:33:0e:1d:e1:77:53:dd:f7:09:12:8b: 9d:d2:52:77:c2:76:3b:9e:07:b0:09:e3:92:5b:09: d8:db:0a:af:dc:f3:6e:b2:d4:76:76:c8:2f:6d:4d: cd:78:7e:7f:2d:a6:98:ef:48:df:d1:51:d6:5c:8b: 49:ba:40:96:e9:de:bd:17:0a:40:61:54:a1:11:dc: 18:a8:d4:ab:47:ee:55:4d:81:bc:bb:0c:ec:56:dc: 3c:b5:b3:fa:cc:13:f4:72:7f:3f:2d:e4:2c:62:2b: 50:76:a8:45:f5:17:b8:12:e2:af:46:23:e1:27:64: 52:e2:13:6f:c7:51:d7:56:9c:9a:3c:93:b3:3c:3f: 3c:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 14:04:31:63:A8:BF:F5:06:00:F1:64:10:DE:27:B7:A0:DE:EC:1E:61 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aed9ea20-343d-4acb-9581-81f9d7ea92fe/0/14043163A8BFF50600F16410DE27B7A0DEEC1E61.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.150.0/23 Signature Algorithm: sha256WithRSAEncryption 31:80:94:d9:3a:58:f9:20:69:4b:61:59:0b:cd:a0:4e:6c:aa: 72:df:83:a8:35:b9:e0:e7:8f:f3:69:33:01:e1:5e:a8:b5:7b: 42:1e:cc:61:30:cb:fd:65:a3:9a:b9:1a:8d:18:df:3e:90:82: c3:08:20:67:4d:6c:2c:d9:c6:4a:ef:7f:ed:bc:1f:77:4a:d1: 9c:d7:c8:5b:9d:13:59:63:22:99:19:cb:c2:cd:e3:a1:20:ec: 8b:f4:45:6c:30:3c:ba:24:3f:3b:f0:72:b2:c5:13:83:bb:a4: 16:5e:97:2f:a2:8b:fc:e5:30:3c:4d:97:2c:a3:d6:33:b1:c5: 68:55:5d:c4:f4:00:af:d4:49:83:78:04:ab:10:1c:92:41:b5: a1:94:77:be:7a:f7:4a:69:e9:b4:cb:72:1c:8b:ad:3b:97:12: da:2f:70:d8:a4:a1:8a:d4:ec:a3:7a:2f:c3:51:13:ad:a5:53: 0c:aa:b2:6b:fd:21:ea:b4:60:85:20:af:e3:9a:7b:4e:9e:74: fb:17:14:62:31:4c:25:71:b5:9d:86:71:0c:83:a7:2d:6e:19: 6b:79:34:3b:ac:8c:85:ad:35:bd:31:c6:f7:9b:89:77:37:20: 1f:59:77:da:99:2c:2b:53:d9:49:a4:b7:ab:28:f1:b6:b8:ab: 83:dd:be:18 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUXayUyINstQV/NTNnLjBW1xII0McwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwMTE5MTA1OVoX DTI1MDQzMDE5MTU1OVowMzExMC8GA1UEAxMoMTQwNDMxNjNBOEJGRjUwNjAwRjE2 NDEwREUyN0I3QTBERUVDMUU2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9TrhdVv9D9lWNe43WmUkQhR4NfAExfNLhEDtFQB+1jL6NmRNK+VE216d3C A3Z9FDBVIvRAiyTu8l/2OsPSqke+aQALT68YXXsQBtkNnXUcZDPW1ha+THiy6V7I 1IA2S2NBGgBD5543IMnk0ff0UZhO55/Xwg54J+sfdzMOHeF3U933CRKLndJSd8J2 O54HsAnjklsJ2NsKr9zzbrLUdnbIL21NzXh+fy2mmO9I39FR1lyLSbpAlunevRcK QGFUoRHcGKjUq0fuVU2BvLsM7FbcPLWz+swT9HJ/Py3kLGIrUHaoRfUXuBLir0Yj 4SdkUuITb8dR11acmjyTszw/PBUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBQEMWOov/UGAPFkEN4nt6De7B5hMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZWQ5ZWEyMC0zNDNkLTRhY2ItOTU4MS04MWY5ZDdlYTkyZmUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZDllYTIw LTM0M2QtNGFjYi05NTgxLTgxZjlkN2VhOTJmZS8wLzE0MDQzMTYzQThCRkY1MDYw MEYxNjQxMERFMjdCN0EwREVFQzFFNjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnopYwDQYJKoZIhvcNAQELBQADggEBADGAlNk6WPkgaUthWQvNoE5sqnLfg6g1 ueDnj/NpMwHhXqi1e0IezGEwy/1lo5q5Go0Y3z6QgsMIIGdNbCzZxkrvf+28H3dK 0ZzXyFudE1ljIpkZy8LN46Eg7Iv0RWwwPLokPzvwcrLFE4O7pBZely+ii/zlMDxN lyyj1jOxxWhVXcT0AK/USYN4BKsQHJJBtaGUd75690pp6bTLchyLrTuXEtovcNik oYrU7KN6L8NRE62lUwyqsmv9Ieq0YIUgr+Oae06edPsXFGIxTCVxtZ2GcQyDpy1u GWt5NDusjIWtNb0xxvebiXc3IB9Zd9qZLCtT2Umkt6so8ba4q4Pdvhg= -----END CERTIFICATE-----Generated at Sun Feb 16 21:02:49 2025 by rpki-client