$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/245A17CADB2BB2FDC5786C27E5BE959636E7F409.cer File: 245A17CADB2BB2FDC5786C27E5BE959636E7F409.cer (raw, json) Hash identifier: HYOIuL7o4NZ+3DzGoLhqzSIeLJxatqcG5AY9J8ftTwQ= Subject key identifier: 24:5A:17:CA:DB:2B:B2:FD:C5:78:6C:27:E5:BE:95:96:36:E7:F4:09 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2BC8ABDB790F06F38B3402D34E17AB4CA3E975C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0/245A17CADB2BB2FDC5786C27E5BE959636E7F409.mft caRepository: rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 06 Dec 2024 14:01:20 +0000 Certificate not after: Fri 05 Dec 2025 14:06:20 +0000 Subordinate resources: IP: 103.51.98.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c8:ab:db:79:0f:06:f3:8b:34:02:d3:4e:17:ab:4c:a3:e9:75:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 6 14:01:20 2024 GMT Not After : Dec 5 14:06:20 2025 GMT Subject: CN=245A17CADB2BB2FDC5786C27E5BE959636E7F409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:20:42:7f:3d:30:f0:11:af:ca:2c:01:28:46: 57:d0:e4:95:0a:a1:ae:6a:37:b5:61:14:7b:d1:6a: d6:3c:55:b4:7d:83:1d:57:2a:d3:0b:c7:1e:10:b3: 83:61:11:85:9b:eb:91:1f:1e:c7:ab:84:05:b0:f1: ce:d4:94:20:b1:62:72:21:52:7f:96:c6:81:b8:52: 33:4e:fd:59:ea:9d:c8:68:e9:b1:d4:7f:a6:c1:1c: f0:02:fd:fc:1f:10:97:bd:61:5e:1f:16:e7:e6:b8: 1b:42:74:12:15:d2:70:b1:b5:31:ca:00:9b:ac:67: 51:ed:f9:e6:f6:05:29:88:18:18:22:53:42:78:2a: 0d:9b:ec:48:5e:e2:b4:cd:8d:07:3a:bf:f8:3a:28: a1:64:5d:6a:42:61:3c:e1:bc:5e:f1:3d:06:24:e5: 51:0f:61:59:40:40:10:5a:c7:39:a1:18:6a:39:bc: 64:6a:b8:96:92:16:f3:89:c5:ee:d0:c6:a5:c8:0a: c6:3e:57:43:c1:94:c4:ff:20:c4:e1:eb:c6:e9:3a: 0e:65:63:83:1b:cd:4f:b5:d1:73:83:30:ec:42:2e: 80:80:21:97:0f:e0:22:0d:9f:04:56:dc:1d:e1:8d: 8a:4b:0f:3e:78:88:6d:3d:3e:3a:0e:26:87:18:b5: 30:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 24:5A:17:CA:DB:2B:B2:FD:C5:78:6C:27:E5:BE:95:96:36:E7:F4:09 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0/245A17CADB2BB2FDC5786C27E5BE959636E7F409.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.51.98.0/23 Signature Algorithm: sha256WithRSAEncryption 68:52:2a:41:87:72:e5:29:f7:2b:cb:55:37:54:48:fd:aa:db: f7:1d:4a:19:c5:b6:07:94:16:90:0f:2b:eb:dd:39:f8:67:3c: 25:eb:49:98:5f:30:b9:d4:6d:04:87:85:d2:78:9b:77:7a:f8: 8b:8a:9f:28:ba:26:c3:f1:71:c3:bb:9e:0c:7a:af:bc:94:38: 39:f3:d5:b1:fd:bc:0d:b0:4d:df:2d:8c:a1:ae:20:49:7e:b6: b2:df:d1:18:bf:ef:a6:c7:ca:89:99:f1:74:56:93:93:23:79: 0b:28:de:cf:fb:d5:84:a5:9b:04:bb:50:b8:10:2b:42:18:c2: bc:3c:b1:71:ba:a8:48:1c:25:fe:36:ff:15:0d:95:4f:0d:87: 69:0d:e1:ca:73:ba:9c:d2:90:eb:6e:f3:bc:32:9b:f3:7d:53: 4b:dd:be:b4:ec:db:d5:58:1b:7d:f9:ba:85:30:5a:3c:a7:e4: 26:14:b4:27:8e:ec:a6:54:22:81:0b:8a:01:2d:e1:18:a6:f0: 7a:c2:ab:e0:e5:90:70:8f:a6:b3:6f:63:4a:cb:fa:01:eb:69: 25:73:00:34:9e:0e:bd:76:4b:12:15:4b:21:67:a2:0b:a6:19: 75:b2:6e:aa:d6:17:5c:8d:6d:26:ee:27:05:b3:c7:dd:12:a0: 81:c9:c5:4a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUK8ir23kPBvOLNALTTherTKPpdcAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNjE0MDEyMFoX DTI1MTIwNTE0MDYyMFowMzExMC8GA1UEAxMoMjQ1QTE3Q0FEQjJCQjJGREM1Nzg2 QzI3RTVCRTk1OTYzNkU3RjQwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYgQn89MPARr8osAShGV9DklQqhrmo3tWEUe9Fq1jxVtH2DHVcq0wvHHhCz g2ERhZvrkR8ex6uEBbDxztSUILFiciFSf5bGgbhSM079WeqdyGjpsdR/psEc8AL9 /B8Ql71hXh8W5+a4G0J0EhXScLG1McoAm6xnUe355vYFKYgYGCJTQngqDZvsSF7i tM2NBzq/+DoooWRdakJhPOG8XvE9BiTlUQ9hWUBAEFrHOaEYajm8ZGq4lpIW84nF 7tDGpcgKxj5XQ8GUxP8gxOHrxuk6DmVjgxvNT7XRc4Mw7EIugIAhlw/gIg2fBFbc HeGNiksPPniIbT0+Og4mhxi1MI8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCRaF8rbK7L9xXhsJ+W+lZY25/QJMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZjEzYTZlZi0zNDM0LTQ0MDEtYjNlMS02NTE1MzA2NmZiM2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmMTNhNmVm LTM0MzQtNDQwMS1iM2UxLTY1MTUzMDY2ZmIzZS8wLzI0NUExN0NBREIyQkIyRkRD NTc4NkMyN0U1QkU5NTk2MzZFN0Y0MDkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnM2IwDQYJKoZIhvcNAQELBQADggEBAGhSKkGHcuUp9yvLVTdUSP2q2/cdShnF tgeUFpAPK+vdOfhnPCXrSZhfMLnUbQSHhdJ4m3d6+IuKnyi6JsPxccO7ngx6r7yU ODnz1bH9vA2wTd8tjKGuIEl+trLf0Ri/76bHyomZ8XRWk5MjeQso3s/71YSlmwS7 ULgQK0IYwrw8sXG6qEgcJf42/xUNlU8Nh2kN4cpzupzSkOtu87wym/N9U0vdvrTs 29VYG335uoUwWjyn5CYUtCeO7KZUIoELigEt4Rim8HrCq+DlkHCPprNvY0rL+gHr aSVzADSeDr12SxIVSyFnogumGXWybqrWF1yNbSbuJwWzx90SoIHJxUo= -----END CERTIFICATE-----Generated at Sun Feb 16 20:54:12 2025 by rpki-client