$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E.cer File: 1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E.cer (raw, json) Hash identifier: xKGUPuOs3OX7ypXfXUdxxw29okBOr/KyIYrGB9rLM8c= Subject key identifier: 19:54:C3:3C:FB:AF:8A:07:2B:A3:B9:0B:3E:83:8D:63:D1:2B:FD:2E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 08407B3236E2C16673BE1D85F1F0DA003F77D7FD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bd196d65-21a8-4b04-a9de-7283fbe3c1cb/0/1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E.mft caRepository: rsync://repo-rpki.idnic.net/repo/bd196d65-21a8-4b04-a9de-7283fbe3c1cb/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 01 Feb 2025 07:59:48 +0000 Certificate not after: Sat 31 Jan 2026 08:04:48 +0000 Subordinate resources: IP: 103.177.10.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:40:7b:32:36:e2:c1:66:73:be:1d:85:f1:f0:da:00:3f:77:d7:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 1 07:59:48 2025 GMT Not After : Jan 31 08:04:48 2026 GMT Subject: CN=1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:90:23:f0:ac:d9:c0:9f:e9:aa:33:fd:2d:ce: 3f:08:85:88:f1:6f:4c:44:21:94:a0:33:03:c5:bb: af:d5:cb:c3:60:46:bd:5f:c0:04:09:cf:16:6c:8c: 44:fd:4b:1e:84:0c:cf:7a:20:21:1d:d3:e4:a0:01: 29:49:ae:1e:88:48:c5:6f:14:55:00:60:c0:bb:83: 2b:ab:30:ea:93:dc:16:99:25:2e:a4:fc:d1:bb:c1: 7f:bb:62:90:d5:d4:21:40:6a:4e:d0:ee:05:97:2f: 06:36:58:03:c2:91:09:62:5b:65:83:55:57:03:4a: a1:2d:15:8b:9d:64:b2:e2:63:fb:c0:3e:05:21:3f: be:b0:f4:35:e5:d3:65:3e:29:43:c9:e5:22:e2:23: e8:f0:37:4d:90:76:46:44:8c:17:2a:e6:1b:3f:65: 29:f3:ad:82:9d:2d:d9:d3:db:9c:9c:00:db:d8:5d: f5:c3:de:8f:f8:df:ff:64:11:3c:0e:a1:79:e5:1a: 91:ca:2e:89:d8:ef:6c:ac:23:3c:5c:72:3a:d5:ce: 1f:9b:ce:2f:ab:3b:bf:ff:13:5d:7c:4e:cf:4b:e4: 3c:ed:73:c1:58:a8:2f:70:59:a2:8c:14:54:6a:e6: 23:ba:e0:2d:94:cd:94:a4:06:37:65:f5:8c:0b:e8: 34:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 19:54:C3:3C:FB:AF:8A:07:2B:A3:B9:0B:3E:83:8D:63:D1:2B:FD:2E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bd196d65-21a8-4b04-a9de-7283fbe3c1cb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bd196d65-21a8-4b04-a9de-7283fbe3c1cb/0/1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.10.0/23 Signature Algorithm: sha256WithRSAEncryption 99:93:e1:bc:5b:3a:a4:5e:02:f7:cb:a1:e6:62:a5:f5:43:09: 2e:ce:e5:20:a6:c4:e8:79:fa:82:69:83:00:b9:85:8f:98:3b: 4b:fd:52:59:8e:b2:f3:33:2e:f1:bf:1e:dd:3d:c8:c4:69:ae: a1:a4:3f:20:08:06:b9:f1:ba:90:28:fc:b4:64:f9:a9:58:8c: e5:0c:63:d6:3e:35:47:81:a3:0f:ad:04:35:85:d8:c5:d9:b0: 55:a5:1a:4a:06:4d:a0:ef:46:b0:c8:0c:d8:64:f7:70:eb:c5: ea:ed:e6:0f:5f:3d:a4:11:21:f2:d6:7e:f9:38:92:16:da:ff: b2:97:d6:20:09:7e:88:c4:04:ab:19:db:81:f5:86:93:f5:bb: 0a:9e:40:39:dc:9c:06:3b:33:2b:52:a3:93:41:b1:cf:4b:29: 21:26:b6:03:9f:cb:2b:74:b3:6d:85:48:2e:60:94:cb:0c:9c: 62:b8:01:2e:2a:c8:b6:e4:93:f6:6e:ee:f1:22:df:ca:1c:66: 70:26:61:a2:1c:4a:e1:13:78:04:76:6c:a1:08:ae:f5:e6:10: 45:c9:2f:e5:a3:65:9f:60:a6:ba:82:d9:cf:6f:d1:f6:81:43: ac:50:5b:b8:cb:58:2a:02:8b:9a:08:db:3f:8e:a7:f5:c5:85: 18:06:3e:e8 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCEB7MjbiwWZzvh2F8fDaAD931/0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIwMTA3NTk0OFoX DTI2MDEzMTA4MDQ0OFowMzExMC8GA1UEAxMoMTk1NEMzM0NGQkFGOEEwNzJCQTNC OTBCM0U4MzhENjNEMTJCRkQyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANeQI/Cs2cCf6aoz/S3OPwiFiPFvTEQhlKAzA8W7r9XLw2BGvV/ABAnPFmyM RP1LHoQMz3ogIR3T5KABKUmuHohIxW8UVQBgwLuDK6sw6pPcFpklLqT80bvBf7ti kNXUIUBqTtDuBZcvBjZYA8KRCWJbZYNVVwNKoS0Vi51ksuJj+8A+BSE/vrD0NeXT ZT4pQ8nlIuIj6PA3TZB2RkSMFyrmGz9lKfOtgp0t2dPbnJwA29hd9cPej/jf/2QR PA6heeUakcouidjvbKwjPFxyOtXOH5vOL6s7v/8TXXxOz0vkPO1zwVioL3BZoowU VGrmI7rgLZTNlKQGN2X1jAvoNI0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBlUwzz7r4oHK6O5Cz6DjWPRK/0uMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZDE5NmQ2NS0yMWE4LTRiMDQtYTlkZS03MjgzZmJlM2MxY2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMTk2ZDY1 LTIxYTgtNGIwNC1hOWRlLTcyODNmYmUzYzFjYi8wLzE5NTRDMzNDRkJBRjhBMDcy QkEzQjkwQjNFODM4RDYzRDEyQkZEMkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsQowDQYJKoZIhvcNAQELBQADggEBAJmT4bxbOqReAvfLoeZipfVDCS7O5SCm xOh5+oJpgwC5hY+YO0v9UlmOsvMzLvG/Ht09yMRprqGkPyAIBrnxupAo/LRk+alY jOUMY9Y+NUeBow+tBDWF2MXZsFWlGkoGTaDvRrDIDNhk93Drxert5g9fPaQRIfLW fvk4khba/7KX1iAJfojEBKsZ24H1hpP1uwqeQDncnAY7MytSo5NBsc9LKSEmtgOf yyt0s22FSC5glMsMnGK4AS4qyLbkk/Zu7vEi38ocZnAmYaIcSuETeAR2bKEIrvXm EEXJL+WjZZ9gprqC2c9v0faBQ6xQW7jLWCoCi5oI2z+Op/XFhRgGPug= -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:00 2025 by rpki-client