$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer File: 166B4918E7A1A1641E7C79C537833379E393522E.cer (raw, json) Hash identifier: I4jrHBO+ZM+y/TiPtqMBpW9QqGZkqe0ypZK0HquQoyo= Subject key identifier: 16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1F04EB3AB274351973EFE40C2AD2A6039B2C188F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.mft caRepository: rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 30 Aug 2024 02:08:00 +0000 Certificate not after: Fri 29 Aug 2025 02:13:00 +0000 Subordinate resources: IP: 103.174.180.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:04:eb:3a:b2:74:35:19:73:ef:e4:0c:2a:d2:a6:03:9b:2c:18:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 30 02:08:00 2024 GMT Not After : Aug 29 02:13:00 2025 GMT Subject: CN=166B4918E7A1A1641E7C79C537833379E393522E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:14:31:fe:f1:6f:d5:92:b1:0d:68:9b:fc:2c: 93:b7:89:8e:01:c9:bc:b9:6b:29:18:b6:65:02:a5: 4f:f6:6f:a6:ed:b1:21:f3:52:cd:89:d2:48:5c:9f: 73:df:94:69:f4:ed:a5:ac:4c:bf:26:79:37:b6:18: 68:11:f6:f2:ed:d5:2b:b6:88:01:de:9d:79:08:79: ef:77:5d:7f:7d:11:b6:4b:cc:fa:31:64:0b:9a:06: 33:54:9f:30:9b:2c:24:50:a8:ab:f2:4f:bd:6a:fe: 45:1b:a3:8b:88:47:66:c0:76:0a:74:98:3a:55:65: d8:f8:67:e3:e4:eb:f6:fc:76:25:b6:36:ef:00:1b: 9d:99:ec:be:44:57:96:d7:fc:c6:f0:b2:61:b3:98: 00:de:2b:21:a5:c0:42:25:bb:71:28:ea:65:6c:a4: f6:75:3d:fe:25:26:a7:63:b4:75:6b:96:96:0b:bc: e7:22:16:cf:22:31:9c:33:ac:c4:08:82:a9:56:5a: 5a:48:37:65:da:6c:6a:6d:94:54:3f:0e:9b:f0:9b: 82:59:10:c3:17:9a:31:3e:d9:33:9f:c8:ea:36:09: 15:62:a4:ca:d4:bc:14:66:70:86:72:2f:c0:bc:a5: a1:b3:5a:c3:60:9d:e8:55:88:ec:48:62:35:74:42: f8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.180.0/23 Signature Algorithm: sha256WithRSAEncryption 17:44:40:67:0f:27:ac:d8:54:35:39:54:c1:0b:45:ea:d3:bb: d6:5d:fb:04:9e:15:8d:f2:89:7b:1d:35:f5:1a:e4:23:11:b0: 64:9f:33:07:92:11:ec:6d:af:5a:b6:b3:3c:6d:a4:f3:45:63: c0:74:5a:4c:8a:44:11:1b:88:fa:37:08:6e:6f:fa:f0:84:fd: d0:74:78:a3:63:19:db:5d:a6:49:dd:68:9f:1d:ba:73:76:65: 5d:09:cf:a0:cc:18:4b:f2:4b:b7:47:0d:6a:7a:5d:2b:c2:8b: 96:b4:5e:a1:64:d9:f7:d7:05:79:23:18:f3:7a:96:2d:86:3f: 48:ee:91:fc:54:f7:94:f5:20:30:fe:94:bf:f9:26:82:a9:e9: 4b:c1:e5:49:97:5e:83:2a:85:9f:6f:f0:56:8c:eb:24:80:b1: 96:cb:1a:f5:fc:28:39:88:c8:3f:23:76:26:4d:d4:b8:a6:d4: 07:55:41:94:98:34:53:21:95:88:32:8b:15:e3:32:5b:f1:89: 26:46:e9:9f:b4:3f:2c:e0:6b:35:12:94:50:4b:b4:3b:37:ae: 9f:2d:45:98:7d:c3:6c:c3:bd:bb:41:9e:89:39:1c:10:d2:87: ab:2e:b4:6e:3d:ce:1f:40:ff:45:c0:e5:45:c8:b5:b1:5b:5e: ff:d6:63:11 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHwTrOrJ0NRlz7+QMKtKmA5ssGI8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgzMDAyMDgwMFoX DTI1MDgyOTAyMTMwMFowMzExMC8GA1UEAxMoMTY2QjQ5MThFN0ExQTE2NDFFN0M3 OUM1Mzc4MzMzNzlFMzkzNTIyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcUMf7xb9WSsQ1om/wsk7eJjgHJvLlrKRi2ZQKlT/Zvpu2xIfNSzYnSSFyf c9+UafTtpaxMvyZ5N7YYaBH28u3VK7aIAd6deQh573ddf30RtkvM+jFkC5oGM1Sf MJssJFCoq/JPvWr+RRuji4hHZsB2CnSYOlVl2Phn4+Tr9vx2JbY27wAbnZnsvkRX ltf8xvCyYbOYAN4rIaXAQiW7cSjqZWyk9nU9/iUmp2O0dWuWlgu85yIWzyIxnDOs xAiCqVZaWkg3Zdpsam2UVD8Om/CbglkQwxeaMT7ZM5/I6jYJFWKkytS8FGZwhnIv wLylobNaw2Cd6FWI7EhiNXRC+GECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBZrSRjnoaFkHnx5xTeDM3njk1IuMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81YzI4NTI5MS1jZTkyLTQxNDQtOWMxOC05ZThjMTkxZGRlYzYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMjg1Mjkx LWNlOTItNDE0NC05YzE4LTllOGMxOTFkZGVjNi8wLzE2NkI0OTE4RTdBMUExNjQx RTdDNzlDNTM3ODMzMzc5RTM5MzUyMkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrrQwDQYJKoZIhvcNAQELBQADggEBABdEQGcPJ6zYVDU5VMELRerTu9Zd+wSe FY3yiXsdNfUa5CMRsGSfMweSEextr1q2szxtpPNFY8B0WkyKRBEbiPo3CG5v+vCE /dB0eKNjGdtdpkndaJ8dunN2ZV0Jz6DMGEvyS7dHDWp6XSvCi5a0XqFk2ffXBXkj GPN6li2GP0jukfxU95T1IDD+lL/5JoKp6UvB5UmXXoMqhZ9v8FaM6ySAsZbLGvX8 KDmIyD8jdiZN1Lim1AdVQZSYNFMhlYgyixXjMlvxiSZG6Z+0PyzgazUSlFBLtDs3 rp8tRZh9w2zDvbtBnok5HBDSh6sutG49zh9A/0XA5UXItbFbXv/WYxE= -----END CERTIFICATE-----Generated at Sun Feb 16 20:47:27 2025 by rpki-client