$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1CC4D0E2E2BC8B0060718A857657AA82D20E5974.cer File: 1CC4D0E2E2BC8B0060718A857657AA82D20E5974.cer (raw, json) Hash identifier: 2JhE3dB2NIGDd3UZEoiLLjuCF2sSqyQiMOWXeZiudBo= Subject key identifier: 1C:C4:D0:E2:E2:BC:8B:00:60:71:8A:85:76:57:AA:82:D2:0E:59:74 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2B0B791803F6CA4651E486C99A3277302A41EA11 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/95df512f-0d1a-4b09-b9a4-a9c525ec2817/0/1CC4D0E2E2BC8B0060718A857657AA82D20E5974.mft caRepository: rsync://repo-rpki.idnic.net/repo/95df512f-0d1a-4b09-b9a4-a9c525ec2817/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 16 Oct 2024 11:48:46 +0000 Certificate not after: Wed 15 Oct 2025 11:53:46 +0000 Subordinate resources: IP: 103.163.13.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:0b:79:18:03:f6:ca:46:51:e4:86:c9:9a:32:77:30:2a:41:ea:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Oct 16 11:48:46 2024 GMT Not After : Oct 15 11:53:46 2025 GMT Subject: CN=1CC4D0E2E2BC8B0060718A857657AA82D20E5974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e1:0f:ef:91:bd:9c:e6:f1:9c:73:5b:54:b0: 2d:af:b5:68:d3:5f:52:4f:4b:c3:25:5c:80:66:1e: 53:ca:81:69:b2:e1:a8:6d:db:55:4f:b2:11:a5:4a: eb:0b:88:41:e0:ad:b5:10:87:f0:d5:01:97:ec:52: 9d:65:e5:55:d1:1b:06:91:59:a1:89:6a:9a:2f:4c: f7:5a:17:84:42:50:3d:1e:6e:46:cd:f3:4d:7e:d9: c2:57:3f:99:12:b0:1d:62:0b:a8:8e:3f:11:e3:8f: 0c:35:9f:f9:26:1f:a0:60:d3:e0:86:32:c3:2b:f2: 89:1e:d3:d8:b1:97:f0:8b:01:1d:f4:ea:4b:12:6e: 8d:2e:4b:e5:64:b8:dd:36:13:3d:64:a7:77:79:86: 09:d1:54:a5:7c:47:9c:e5:97:1d:14:9e:89:f8:cd: 06:77:65:31:d6:f6:e4:85:21:2f:eb:09:55:f3:1b: 02:3f:74:e8:7a:b0:ec:b8:ad:84:db:e4:9a:47:fa: 1d:13:e6:6f:42:65:0d:f4:34:fa:0c:a7:2e:59:d7: 23:5d:01:49:0f:83:ef:9b:13:15:5d:c1:18:59:e7: 45:fa:c5:d2:ea:15:e3:ba:25:c5:3e:e1:8e:8e:4c: b0:cb:9a:d5:a3:18:42:80:5f:6f:6c:3c:bb:1f:62: 17:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1C:C4:D0:E2:E2:BC:8B:00:60:71:8A:85:76:57:AA:82:D2:0E:59:74 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/95df512f-0d1a-4b09-b9a4-a9c525ec2817/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/95df512f-0d1a-4b09-b9a4-a9c525ec2817/0/1CC4D0E2E2BC8B0060718A857657AA82D20E5974.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.13.0/24 Signature Algorithm: sha256WithRSAEncryption 61:fb:ff:82:b0:d5:5f:59:d3:c3:27:ca:9a:e9:52:d7:68:d2: c1:36:a2:75:32:02:d2:a6:51:af:e4:00:f1:90:7b:46:12:7b: 30:8c:11:9c:7b:b6:24:62:f4:c4:2a:47:95:c9:12:17:10:b9: 9b:2a:37:15:14:ca:18:89:ae:0b:44:f6:1d:7a:ef:c9:93:04: 83:e7:8d:e4:34:7b:f7:1c:50:2d:ad:64:81:19:a6:b4:9d:1b: 27:24:50:1d:3b:91:5a:85:63:cc:35:aa:b1:80:a9:7b:ff:68: 33:aa:8f:36:18:58:b0:0f:43:ac:ed:63:02:55:f6:46:8b:2c: 0d:6f:2e:44:53:7f:bb:e7:2c:fe:80:df:bb:93:e5:81:40:53: aa:3e:a7:c3:43:96:47:3f:2f:2c:d0:9e:d5:38:cb:42:bd:7d: b9:75:58:19:e1:9f:cc:2c:48:54:01:63:79:5f:3e:3b:e3:d3: 46:1b:57:34:42:de:b0:83:cf:60:c7:da:f8:25:fa:3c:07:c2: ab:2f:a9:7f:87:66:c1:44:19:f3:50:c5:8f:e9:a3:f7:d8:a7: c1:fb:51:dc:34:18:54:20:71:53:9c:17:96:fc:23:96:47:5a: 12:b1:02:b2:ae:6e:df:34:b5:d1:d1:d0:59:9e:f4:0d:69:ce: ef:f7:f5:c8 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKwt5GAP2ykZR5IbJmjJ3MCpB6hEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNjExNDg0NloX DTI1MTAxNTExNTM0NlowMzExMC8GA1UEAxMoMUNDNEQwRTJFMkJDOEIwMDYwNzE4 QTg1NzY1N0FBODJEMjBFNTk3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPhD++RvZzm8ZxzW1SwLa+1aNNfUk9LwyVcgGYeU8qBabLhqG3bVU+yEaVK 6wuIQeCttRCH8NUBl+xSnWXlVdEbBpFZoYlqmi9M91oXhEJQPR5uRs3zTX7Zwlc/ mRKwHWILqI4/EeOPDDWf+SYfoGDT4IYywyvyiR7T2LGX8IsBHfTqSxJujS5L5WS4 3TYTPWSnd3mGCdFUpXxHnOWXHRSeifjNBndlMdb25IUhL+sJVfMbAj906Hqw7Lit hNvkmkf6HRPmb0JlDfQ0+gynLlnXI10BSQ+D75sTFV3BGFnnRfrF0uoV47olxT7h jo5MsMua1aMYQoBfb2w8ux9iF3UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBzE0OLivIsAYHGKhXZXqoLSDll0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85NWRmNTEyZi0wZDFhLTRiMDktYjlhNC1hOWM1MjVlYzI4MTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1ZGY1MTJm LTBkMWEtNGIwOS1iOWE0LWE5YzUyNWVjMjgxNy8wLzFDQzREMEUyRTJCQzhCMDA2 MDcxOEE4NTc2NTdBQTgyRDIwRTU5NzQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnow0wDQYJKoZIhvcNAQELBQADggEBAGH7/4Kw1V9Z08MnyprpUtdo0sE2onUy AtKmUa/kAPGQe0YSezCMEZx7tiRi9MQqR5XJEhcQuZsqNxUUyhiJrgtE9h1678mT BIPnjeQ0e/ccUC2tZIEZprSdGyckUB07kVqFY8w1qrGAqXv/aDOqjzYYWLAPQ6zt YwJV9kaLLA1vLkRTf7vnLP6A37uT5YFAU6o+p8NDlkc/LyzQntU4y0K9fbl1WBnh n8wsSFQBY3lfPjvj00YbVzRC3rCDz2DH2vgl+jwHwqsvqX+HZsFEGfNQxY/po/fY p8H7Udw0GFQgcVOcF5b8I5ZHWhKxArKubt80tdHR0Fme9A1pzu/39cg= -----END CERTIFICATE-----Generated at Sun Feb 16 20:59:17 2025 by rpki-client