$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1A88815F25C9ADC8E68E2145CC20A00096657347.cer File: 1A88815F25C9ADC8E68E2145CC20A00096657347.cer (raw, json) Hash identifier: IIn22QR1zMH2miYkyI8hWlGS+n/6Ljdg4MDe8juxhd0= Subject key identifier: 1A:88:81:5F:25:C9:AD:C8:E6:8E:21:45:CC:20:A0:00:96:65:73:47 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 419C2DA94F2A6794F477271D8994E65004096369 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.mft caRepository: rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 08 Nov 2024 16:18:23 +0000 Certificate not after: Fri 07 Nov 2025 16:23:23 +0000 Subordinate resources: IP: 103.175.84.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:9c:2d:a9:4f:2a:67:94:f4:77:27:1d:89:94:e6:50:04:09:63:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 8 16:18:23 2024 GMT Not After : Nov 7 16:23:23 2025 GMT Subject: CN=1A88815F25C9ADC8E68E2145CC20A00096657347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b5:6e:03:f0:cd:1e:81:f3:39:74:15:8b:a8: 90:92:99:02:6c:39:ae:90:ae:da:d4:fd:9b:6a:49: b0:5a:a6:ba:5d:5d:e1:20:d0:61:63:70:4c:36:b5: f5:bc:0c:2f:ef:1d:2d:2d:19:71:2a:76:68:74:ac: 7e:39:fe:6c:fa:42:ec:24:4d:33:f6:c2:ce:96:e9: 4e:4d:71:cb:28:05:76:f2:36:dc:6a:cf:6f:aa:09: 1a:56:6e:a9:bb:77:6d:8d:b9:0f:4f:78:45:c6:67: 77:06:29:6a:62:db:e8:31:18:19:fe:15:88:80:54: 46:67:b0:36:58:b6:16:f3:48:60:75:2f:7b:7d:47: 22:7f:c2:78:2d:5a:3c:92:02:bf:b7:52:79:2c:e3: b7:c0:25:03:04:25:e4:21:5c:19:b8:25:d4:aa:d5: 10:6e:ac:49:b9:db:39:e8:75:81:c0:d4:09:76:b5: 30:26:12:3f:cc:44:6b:8b:27:35:f4:62:ea:ed:c2: 27:1c:e7:92:d7:ab:1c:6c:d1:16:c6:a7:76:82:5c: 21:c8:04:ad:4b:f2:a5:97:44:b0:4a:77:0d:83:71: 78:e8:99:ea:5a:eb:80:46:ba:ec:2a:13:a0:3b:66: e8:fd:c8:ee:5b:ed:a0:dd:fd:77:ec:79:4a:91:bc: e1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1A:88:81:5F:25:C9:AD:C8:E6:8E:21:45:CC:20:A0:00:96:65:73:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.84.0/23 Signature Algorithm: sha256WithRSAEncryption 24:a5:ca:cf:64:2e:97:d5:6d:3e:2b:ca:91:e0:3c:96:2b:0e: 72:bd:c7:78:bd:86:ce:84:21:28:6d:38:47:9d:99:fd:16:15: 53:2e:0c:02:5b:27:7a:e6:50:90:ea:06:3d:90:55:b5:65:d3: 0d:bb:a2:64:6b:8a:51:06:7c:cd:05:ab:0c:c7:68:73:a6:62: cd:2a:46:0e:3b:02:3c:4f:87:c0:a1:74:51:99:c3:b2:71:86: a0:9e:c4:38:d8:77:62:17:36:78:78:04:70:38:a9:c0:2d:fc: 93:03:f3:dd:da:1d:d0:54:05:2a:55:60:8f:e6:97:06:2a:61: 9f:fa:ef:9b:98:05:1e:4f:8b:0f:39:53:f6:b7:1a:da:ab:b9: fa:3d:4b:dd:32:d5:56:ee:11:e9:bc:3c:a1:d0:ad:c2:45:3f: 17:f2:eb:15:0c:a4:6d:f1:f3:8d:fd:41:45:78:b7:cd:80:29: 5e:63:d6:ad:ed:57:25:05:4a:58:91:f2:96:7d:ba:e8:80:4e: 33:01:bd:f4:6b:c3:ab:23:b1:12:cd:8b:15:d0:2e:59:60:1a: b0:fe:b2:c7:69:9f:26:60:0f:dd:bd:9b:11:c1:4b:af:8c:62: 12:dc:79:97:e5:20:84:58:71:98:7a:e8:9b:2e:76:65:f3:11: 97:a8:32:ab -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQZwtqU8qZ5T0dycdiZTmUAQJY2kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwODE2MTgyM1oX DTI1MTEwNzE2MjMyM1owMzExMC8GA1UEAxMoMUE4ODgxNUYyNUM5QURDOEU2OEUy MTQ1Q0MyMEEwMDA5NjY1NzM0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKu1bgPwzR6B8zl0FYuokJKZAmw5rpCu2tT9m2pJsFqmul1d4SDQYWNwTDa1 9bwML+8dLS0ZcSp2aHSsfjn+bPpC7CRNM/bCzpbpTk1xyygFdvI23GrPb6oJGlZu qbt3bY25D094RcZndwYpamLb6DEYGf4ViIBURmewNli2FvNIYHUve31HIn/CeC1a PJICv7dSeSzjt8AlAwQl5CFcGbgl1KrVEG6sSbnbOeh1gcDUCXa1MCYSP8xEa4sn NfRi6u3CJxznkterHGzRFsandoJcIcgErUvypZdEsEp3DYNxeOiZ6lrrgEa67CoT oDtm6P3I7lvtoN39d+x5SpG84d8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBqIgV8lya3I5o4hRcwgoACWZXNHMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81NGM3NzY2Ni00Yzc0LTQ0MGQtOTE2Ny1hZjYzZmFhNmViOWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0Yzc3NjY2 LTRjNzQtNDQwZC05MTY3LWFmNjNmYWE2ZWI5ZS8wLzFBODg4MTVGMjVDOUFEQzhF NjhFMjE0NUNDMjBBMDAwOTY2NTczNDcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnr1QwDQYJKoZIhvcNAQELBQADggEBACSlys9kLpfVbT4rypHgPJYrDnK9x3i9 hs6EIShtOEedmf0WFVMuDAJbJ3rmUJDqBj2QVbVl0w27omRrilEGfM0FqwzHaHOm Ys0qRg47AjxPh8ChdFGZw7JxhqCexDjYd2IXNnh4BHA4qcAt/JMD893aHdBUBSpV YI/mlwYqYZ/675uYBR5Piw85U/a3Gtqrufo9S90y1VbuEem8PKHQrcJFPxfy6xUM pG3x8439QUV4t82AKV5j1q3tVyUFSliR8pZ9uuiATjMBvfRrw6sjsRLNixXQLllg GrD+ssdpnyZgD929mxHBS6+MYhLceZflIIRYcZh66JsudmXzEZeoMqs= -----END CERTIFICATE-----Generated at Sun Feb 16 20:55:45 2025 by rpki-client