$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer File: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer (raw, json) Hash identifier: ikvkMLXfPdW8GKnndqKYPXhtksOHrzpbm675LvN9vwg= Subject key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D0A09555C2DC20C0C87131C84D584BD4FB41979 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft caRepository: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 03 Aug 2024 23:05:40 +0000 Certificate not after: Sat 02 Aug 2025 23:10:40 +0000 Subordinate resources: IP: 103.156.14.0/23 IP: 2406:7b40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:0a:09:55:5c:2d:c2:0c:0c:87:13:1c:84:d5:84:bd:4f:b4:19:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 3 23:05:40 2024 GMT Not After : Aug 2 23:10:40 2025 GMT Subject: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:da:69:e8:fb:d0:22:93:f3:92:50:b4:32:b7: 24:5f:28:56:75:ad:d5:2e:92:bc:dc:ae:76:77:24: d2:bf:79:60:9d:7a:90:3a:68:13:fa:4c:74:a8:c6: c4:f3:97:b4:4c:eb:58:fe:10:89:28:98:c6:07:d5: 5c:fd:fc:05:dc:71:59:dd:b2:c4:80:6c:d5:df:6e: 07:ad:64:04:d1:98:e2:60:1b:2b:c0:46:04:6b:b6: 9f:05:1c:3b:7b:de:2b:04:05:5c:7d:42:da:7a:04: aa:eb:c3:b3:c9:e0:6f:23:21:ea:8f:60:fe:17:8f: 9f:39:8f:fb:c7:45:c0:97:62:c0:f8:65:dc:33:45: 48:6a:80:0d:f8:42:62:28:25:f8:9d:57:dd:61:eb: 9d:b6:43:5a:c1:f2:bc:24:8f:61:1e:2f:7f:4d:fc: e1:1a:13:8c:30:b4:7a:1b:d1:c1:be:32:b0:9d:bc: fb:5f:75:e9:3d:05:c2:dd:58:ac:4b:2b:37:f4:d2: 7f:84:0f:a2:51:a7:68:72:f0:57:c8:43:d6:04:4c: e9:a6:8a:0c:b8:75:0b:34:c3:c2:3f:51:cf:6c:9e: 6d:d8:38:b9:93:87:a8:bb:8f:5f:99:41:7d:20:f6: 50:3d:74:4a:48:04:f2:f2:90:03:99:2d:df:b8:e8: 95:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.14.0/23 IPv6: 2406:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 2d:86:fc:32:e6:b5:37:45:ec:ee:91:05:b4:9c:78:69:89:ee: de:9b:e3:c7:47:e9:8f:ef:e0:15:18:25:20:af:3a:14:2e:f4: 7c:e4:eb:a3:0f:d6:ea:f1:8b:70:84:fd:28:9f:12:22:56:d5: aa:e2:12:02:34:69:2f:63:74:ac:d5:5f:a0:69:66:47:22:cd: 73:45:40:4a:7a:fe:a9:f2:f7:dc:6e:74:c5:c4:45:2b:6e:19: b4:a5:09:95:88:f1:bf:65:f3:23:19:15:a5:b3:6b:bb:1f:eb: 57:1d:de:75:43:65:d6:54:a9:85:50:b0:95:6c:15:1f:29:36: 40:20:7a:9f:6e:24:9e:2e:ec:ec:f2:aa:74:df:ea:3b:f8:0c: 2b:33:3e:47:5a:8f:25:c6:54:b5:69:97:d8:83:f9:74:20:5f: 4a:34:a6:f4:d4:47:83:8b:14:94:06:35:50:26:51:3d:99:3c: d3:37:43:b5:11:06:22:f4:65:f5:88:d1:f6:af:0f:a3:ff:ab: 5e:53:69:f4:37:3d:6d:d2:ab:aa:05:98:b3:07:22:71:b9:7c: 26:18:b5:c7:1a:3a:de:3e:42:a7:7f:e4:82:1e:16:98:1c:dd: f4:3c:da:3f:03:62:ef:d6:12:f8:3d:65:d2:77:05:44:27:cb: b5:d4:bb:6e -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUDQoJVVwtwgwMhxMchNWEvU+0GXkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwMzIzMDU0MFoX DTI1MDgwMjIzMTA0MFowMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0Qx RDQ3OEFFQkE2QTM2OEY4MDQxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLaaej70CKT85JQtDK3JF8oVnWt1S6SvNyudnck0r95YJ16kDpoE/pMdKjG xPOXtEzrWP4QiSiYxgfVXP38BdxxWd2yxIBs1d9uB61kBNGY4mAbK8BGBGu2nwUc O3veKwQFXH1C2noEquvDs8ngbyMh6o9g/hePnzmP+8dFwJdiwPhl3DNFSGqADfhC Yigl+J1X3WHrnbZDWsHyvCSPYR4vf0384RoTjDC0ehvRwb4ysJ28+1916T0Fwt1Y rEsrN/TSf4QPolGnaHLwV8hD1gRM6aaKDLh1CzTDwj9Rz2yebdg4uZOHqLuPX5lB fSD2UD10SkgE8vKQA5kt37jolYcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFB2NnLxSk07wK80dR4rrpqNo+AQZMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlMWVhNTEz LWFjNmUtNGE1Zi1iM2ViLWQ1MzUyY2FmNDg2Yi8wLzFEOEQ5Q0JDNTI5MzRFRjAy QkNEMUQ0NzhBRUJBNkEzNjhGODA0MTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnA4wDQQCAAIwBwMFACQGe0AwDQYJKoZIhvcNAQELBQADggEBAC2G/DLmtTdF 7O6RBbSceGmJ7t6b48dH6Y/v4BUYJSCvOhQu9Hzk66MP1urxi3CE/SifEiJW1ari EgI0aS9jdKzVX6BpZkcizXNFQEp6/qny99xudMXERStuGbSlCZWI8b9l8yMZFaWz a7sf61cd3nVDZdZUqYVQsJVsFR8pNkAgep9uJJ4u7OzyqnTf6jv4DCszPkdajyXG VLVpl9iD+XQgX0o0pvTUR4OLFJQGNVAmUT2ZPNM3Q7URBiL0ZfWI0favD6P/q15T afQ3PW3Sq6oFmLMHInG5fCYYtccaOt4+Qqd/5IIeFpgc3fQ82j8DYu/WEvg9ZdJ3 BUQny7XUu24= -----END CERTIFICATE-----Generated at Sun Feb 16 20:47:42 2025 by rpki-client