$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/23F26F571E3865A06A13936555D8DAA27B433933.cer File: 23F26F571E3865A06A13936555D8DAA27B433933.cer (raw, json) Hash identifier: W5LwsnIjeoYSUWwQbr5pTCdrb+ToqaW44ZpGAX24amw= Subject key identifier: 23:F2:6F:57:1E:38:65:A0:6A:13:93:65:55:D8:DA:A2:7B:43:39:33 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7369C7ACEF268075C337E55C2FE5013A2D1CA8E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.mft caRepository: rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 20 Jul 2024 00:58:15 +0000 Certificate not after: Sat 19 Jul 2025 01:03:15 +0000 Subordinate resources: IP: 103.173.138.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:69:c7:ac:ef:26:80:75:c3:37:e5:5c:2f:e5:01:3a:2d:1c:a8:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 20 00:58:15 2024 GMT Not After : Jul 19 01:03:15 2025 GMT Subject: CN=23F26F571E3865A06A13936555D8DAA27B433933 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:9d:7f:70:c6:8e:09:57:a3:20:12:64:64:20: 39:f2:ba:65:57:cc:02:63:f9:98:05:53:73:6c:b1: c1:81:fd:49:2a:24:c8:bc:4b:00:21:af:02:ea:8e: c8:67:42:b5:3d:2e:68:54:1a:00:9a:53:53:3a:b4: 94:b9:8a:f5:94:e6:38:e3:6c:e0:2e:aa:80:81:be: 76:14:35:4a:24:4b:1e:58:84:37:ae:f1:b9:50:f5: 62:17:d6:87:c0:29:9f:7f:71:74:64:50:a5:c5:3a: 9d:62:9a:76:8c:ab:5b:00:8c:94:23:86:95:dc:a5: 72:57:24:7d:7d:d4:40:6b:8a:5a:c2:54:63:ff:97: be:b9:f4:f5:ef:59:62:65:42:14:cb:70:be:14:0c: 5e:25:21:02:8f:6f:08:1b:ac:cf:46:79:a2:f5:37: 27:62:26:8a:2c:01:f3:68:b6:b5:83:b7:ec:f4:f5: 80:e0:4f:04:84:4b:b7:00:f8:8d:0c:e4:97:99:33: 09:94:53:76:07:0b:36:fc:12:99:a6:a0:d6:2e:34: ac:e6:19:e6:a0:19:c2:4f:b9:76:1c:e3:07:8e:31: cb:ee:0a:d4:4c:32:a5:04:ee:8d:80:32:70:55:77: 35:4d:3d:5b:1f:42:3d:df:9c:fd:0c:6b:89:c3:d9: bc:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 23:F2:6F:57:1E:38:65:A0:6A:13:93:65:55:D8:DA:A2:7B:43:39:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/05efcbf0-66ec-48d3-b221-0f09686d5818/0/23F26F571E3865A06A13936555D8DAA27B433933.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.173.138.0/23 Signature Algorithm: sha256WithRSAEncryption 14:0e:35:ba:c3:2d:8f:50:19:90:fb:9c:d6:4a:99:92:e4:98: 3d:22:76:7b:e9:5a:b2:73:ca:cd:3b:7c:c3:ed:cf:f1:bf:48: 91:07:d6:55:28:76:58:ef:ec:36:3a:c3:c4:0e:4e:e1:03:95: 5a:b7:13:8f:44:62:99:f1:fc:c9:ec:e7:a1:e8:e1:45:67:f3: 54:7b:32:39:96:ed:6c:dd:29:d8:81:0a:d7:12:e0:e6:e5:f9: d3:3a:2c:9c:dc:8b:5f:de:f0:3f:8b:53:e6:89:27:6e:97:fc: 03:18:5d:2e:84:9f:c8:a4:78:96:44:ae:72:12:91:d5:cd:33: e9:79:0f:f8:cd:82:05:df:80:1f:c7:b4:88:1b:80:83:04:5c: 40:48:85:bd:43:7c:b5:1a:d3:6c:46:95:a3:c2:f5:f2:a2:eb: b3:f8:63:63:46:b7:f2:a6:55:eb:03:a3:13:51:50:ce:ba:e3: 6b:bd:3c:79:b8:18:e6:94:95:8a:9e:88:7b:fb:74:d6:90:10: 75:f5:a1:8f:22:59:bd:43:7d:5d:a3:4e:0d:15:c3:7f:c5:e5: d8:ec:46:cc:6c:2d:a6:e3:c4:4d:e8:f4:2d:1c:8e:21:a3:dd: 1e:9c:b1:3d:8b:12:ce:90:24:64:f6:bc:74:e6:e5:e9:1b:fa: d4:06:61:db -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUc2nHrO8mgHXDN+VcL+UBOi0cqOkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyMDAwNTgxNVoX DTI1MDcxOTAxMDMxNVowMzExMC8GA1UEAxMoMjNGMjZGNTcxRTM4NjVBMDZBMTM5 MzY1NTVEOERBQTI3QjQzMzkzMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKdf3DGjglXoyASZGQgOfK6ZVfMAmP5mAVTc2yxwYH9SSokyLxLACGvAuqO yGdCtT0uaFQaAJpTUzq0lLmK9ZTmOONs4C6qgIG+dhQ1SiRLHliEN67xuVD1YhfW h8Apn39xdGRQpcU6nWKadoyrWwCMlCOGldylclckfX3UQGuKWsJUY/+Xvrn09e9Z YmVCFMtwvhQMXiUhAo9vCBusz0Z5ovU3J2ImiiwB82i2tYO37PT1gOBPBIRLtwD4 jQzkl5kzCZRTdgcLNvwSmaag1i40rOYZ5qAZwk+5dhzjB44xy+4K1EwypQTujYAy cFV3NU09Wx9CPd+c/QxricPZvF8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCPyb1ceOGWgahOTZVXY2qJ7QzkzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNWVmY2JmMC02NmVjLTQ4ZDMtYjIyMS0wZjA5Njg2ZDU4MTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZWZjYmYw LTY2ZWMtNDhkMy1iMjIxLTBmMDk2ODZkNTgxOC8wLzIzRjI2RjU3MUUzODY1QTA2 QTEzOTM2NTU1RDhEQUEyN0I0MzM5MzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrYowDQYJKoZIhvcNAQELBQADggEBABQONbrDLY9QGZD7nNZKmZLkmD0idnvp WrJzys07fMPtz/G/SJEH1lUodljv7DY6w8QOTuEDlVq3E49EYpnx/Mns56Ho4UVn 81R7MjmW7WzdKdiBCtcS4Obl+dM6LJzci1/e8D+LU+aJJ26X/AMYXS6En8ikeJZE rnISkdXNM+l5D/jNggXfgB/HtIgbgIMEXEBIhb1DfLUa02xGlaPC9fKi67P4Y2NG t/KmVesDoxNRUM6642u9PHm4GOaUlYqeiHv7dNaQEHX1oY8iWb1DfV2jTg0Vw3/F 5djsRsxsLabjxE3o9C0cjiGj3R6csT2LEs6QJGT2vHTm5ekb+tQGYds= -----END CERTIFICATE-----Generated at Sun Feb 16 20:57:19 2025 by rpki-client