$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer File: 25F283F3EEC39D541DF359689045D2073EBB3FE0.cer (raw, json) Hash identifier: q2L4SwjeGeIUEwpX6QfngCO6sjnhjlsWKokyfJvH3pc= Subject key identifier: 25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7DF398176BBC2CBAAF0985377ABC08920B5EB1B5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.mft caRepository: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 26 Jul 2024 16:42:01 +0000 Certificate not after: Fri 25 Jul 2025 16:47:01 +0000 Subordinate resources: IP: 103.174.122.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:f3:98:17:6b:bc:2c:ba:af:09:85:37:7a:bc:08:92:0b:5e:b1:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 26 16:42:01 2024 GMT Not After : Jul 25 16:47:01 2025 GMT Subject: CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:aa:36:c2:9d:72:5a:2c:73:a9:28:9d:da:90: b5:36:59:59:f0:1f:ce:a0:57:23:92:0e:07:17:fe: 43:63:51:7f:7e:92:93:f2:2a:e7:54:fa:fb:95:61: c5:e9:39:6f:0f:98:fc:a9:45:be:86:70:3d:b2:f5: d6:2a:d7:5f:52:70:09:a5:50:0a:49:8d:b8:1e:8d: 30:cf:1b:5d:54:7a:1d:4f:62:7b:aa:c9:63:41:fe: 4e:9c:60:b6:e6:24:f5:c6:20:f6:99:f4:ca:6f:2d: d9:eb:28:9d:3f:69:c2:ae:d8:b3:33:29:dd:47:ff: 9e:8d:66:37:7f:51:82:eb:8e:35:c6:d1:7f:5f:e9: 14:2e:38:4a:ad:a1:90:36:1a:9a:8a:22:32:30:90: c0:1a:d7:71:21:3c:1e:63:71:b2:c9:a8:66:02:08: 88:31:bf:5c:c5:c8:20:76:0b:46:b3:d0:67:f7:27: 50:af:dd:51:9b:3b:4c:ac:9e:ea:52:d1:4c:1a:2d: 8a:b5:4d:df:ec:4d:de:54:75:b1:b9:ab:c8:a9:7f: b1:a8:18:7c:46:e2:7f:a4:a7:c4:1d:52:7f:ca:50: e8:1e:1c:ea:0f:1d:12:d6:35:39:ed:b8:69:e6:ba: 73:46:57:d2:d1:31:20:d1:3f:1d:38:6e:bd:a2:36: 7c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.122.0/23 Signature Algorithm: sha256WithRSAEncryption 00:9a:94:5a:3f:3e:44:16:14:84:05:cf:4d:28:a9:60:2d:5f: ff:55:43:cd:d2:cb:eb:09:d9:f3:0b:d8:c1:e0:13:d3:a7:da: e3:50:3f:87:7a:1d:82:01:36:4f:cf:ee:ce:e7:a8:75:c6:d7: e2:54:61:62:5a:75:45:ab:79:e3:8a:67:e5:48:49:d3:1e:a5: 38:d1:89:3c:ba:bd:82:0c:98:86:24:51:e4:ba:f5:91:18:ec: fe:33:b6:e7:46:0e:4d:50:ac:2b:23:ba:eb:11:aa:59:83:7f: c5:f3:82:9d:77:fd:64:c8:1b:a7:2d:4b:71:97:eb:e2:2b:0f: d5:72:09:8b:4b:c9:17:35:c0:17:f1:ed:d1:70:27:37:a0:57: 2e:09:60:9a:48:65:40:70:27:e8:bc:d8:33:40:43:fe:4f:05: e5:57:85:33:aa:69:0e:70:fb:97:a9:48:a3:5b:5c:0c:c2:ec: 58:7d:5e:5a:fa:3f:3b:a0:01:a8:4d:a2:a7:4a:5d:de:be:60: f5:aa:9a:00:4b:7a:53:83:69:61:95:5c:70:72:ce:f2:f3:05: 13:d4:08:36:2d:ab:e7:1d:e0:d7:e2:8e:f6:4c:3c:96:96:e8: e3:e6:89:9d:1d:d4:59:0e:65:13:08:9b:fe:a2:4d:28:d6:fb: 10:4f:e1:02 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUffOYF2u8LLqvCYU3erwIkgtesbUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyNjE2NDIwMVoX DTI1MDcyNTE2NDcwMVowMzExMC8GA1UEAxMoMjVGMjgzRjNFRUMzOUQ1NDFERjM1 OTY4OTA0NUQyMDczRUJCM0ZFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM6qNsKdclosc6kondqQtTZZWfAfzqBXI5IOBxf+Q2NRf36Sk/Iq51T6+5Vh xek5bw+Y/KlFvoZwPbL11irXX1JwCaVQCkmNuB6NMM8bXVR6HU9ie6rJY0H+Tpxg tuYk9cYg9pn0ym8t2esonT9pwq7YszMp3Uf/no1mN39RguuONcbRf1/pFC44Sq2h kDYamooiMjCQwBrXcSE8HmNxssmoZgIIiDG/XMXIIHYLRrPQZ/cnUK/dUZs7TKye 6lLRTBotirVN3+xN3lR1sbmryKl/sagYfEbif6SnxB1Sf8pQ6B4c6g8dEtY1Oe24 aea6c0ZX0tExINE/HThuvaI2fAkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCXyg/Puw51UHfNZaJBF0gc+uz/gMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yMjczMDI3YS0wOTZiLTRlOTUtYTY1Ni1kYWJlOThhYzZmNmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyNzMwMjdh LTA5NmItNGU5NS1hNjU2LWRhYmU5OGFjNmY2ZC8wLzI1RjI4M0YzRUVDMzlENTQx REYzNTk2ODkwNDVEMjA3M0VCQjNGRTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrnowDQYJKoZIhvcNAQELBQADggEBAACalFo/PkQWFIQFz00oqWAtX/9VQ83S y+sJ2fML2MHgE9On2uNQP4d6HYIBNk/P7s7nqHXG1+JUYWJadUWreeOKZ+VISdMe pTjRiTy6vYIMmIYkUeS69ZEY7P4ztudGDk1QrCsjuusRqlmDf8Xzgp13/WTIG6ct S3GX6+IrD9VyCYtLyRc1wBfx7dFwJzegVy4JYJpIZUBwJ+i82DNAQ/5PBeVXhTOq aQ5w+5epSKNbXAzC7Fh9Xlr6PzugAahNoqdKXd6+YPWqmgBLelODaWGVXHByzvLz BRPUCDYtq+cd4NfijvZMPJaW6OPmiZ0d1FkOZRMIm/6iTSjW+xBP4QI= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:19 2024 by rpki-client on console-ams.rpki-client.org