$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer File: 25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer (raw, json) Hash identifier: WwY3yW2zZBpDTvWGqnr8/16NPomC6aTMEBTJh0LDfwE= Subject key identifier: 25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 387A4E81DA11594C44F47925953CF918D87949A0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.mft caRepository: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 29 Aug 2024 21:36:34 +0000 Certificate not after: Thu 28 Aug 2025 21:41:34 +0000 Subordinate resources: IP: 103.176.180.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:7a:4e:81:da:11:59:4c:44:f4:79:25:95:3c:f9:18:d8:79:49:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 29 21:36:34 2024 GMT Not After : Aug 28 21:41:34 2025 GMT Subject: CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0d:01:f2:5f:e2:93:72:fc:c5:1c:e4:9a:22: 68:b7:61:89:01:82:df:a8:1b:f2:74:37:d8:c8:b5: e3:d8:76:f1:02:a6:70:e3:05:e5:03:74:97:96:0a: 5f:99:42:26:99:9c:9f:23:03:d6:c8:d4:72:5a:a2: 8d:23:41:3d:5f:9a:7e:54:e3:73:cc:a1:4d:c6:96: 62:f1:e7:3a:3e:5a:bf:a4:20:07:be:d3:36:69:d5: 49:4a:f5:9e:6f:fc:89:a7:c0:2c:a4:43:be:25:7a: c5:e4:03:b5:5b:9f:86:12:e7:a4:c0:8d:95:d9:a1: 02:f5:36:c0:63:34:5e:e6:cc:f4:b4:93:23:bb:97: c8:4c:5d:2f:0a:d0:72:a8:21:48:b7:c4:41:c7:65: b8:38:d6:a9:ce:78:48:4c:48:8a:96:ef:58:17:da: 25:a3:82:92:ac:71:8e:10:f7:fc:ab:d5:c3:1c:58: 86:20:19:28:4e:9e:65:4e:d0:11:b1:d5:fc:28:29: e0:12:58:5a:ea:e8:0f:60:08:7e:d2:db:41:d3:40: 04:f0:c4:dc:22:51:d5:f3:26:16:a2:11:cb:5d:a2: c2:08:ea:bf:18:78:6a:21:49:39:91:18:4b:d7:02: 8b:26:75:1c:c5:0d:15:1e:49:51:02:11:ff:99:5a: e6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.180.0/23 Signature Algorithm: sha256WithRSAEncryption 92:76:57:50:fe:d4:50:f5:1e:4e:f1:98:0c:0d:f7:ef:e1:5f: 61:3d:6d:4f:b9:14:33:3b:5a:68:2a:c1:75:e7:db:a0:85:9c: af:75:57:cf:b8:6f:1a:e4:24:db:a6:7c:b5:8a:93:27:1d:82: 63:c2:06:92:58:cb:5f:d0:7a:50:a9:b9:66:3b:72:75:b3:49: 58:1a:67:cc:97:b9:13:9c:31:2f:1a:9a:a2:fc:6e:47:ca:9d: f4:ac:5c:a9:99:7f:09:45:d3:48:8b:d1:e1:00:45:64:cc:17: 89:93:a3:51:a1:f3:32:b0:ce:1d:c4:21:6d:db:10:ec:a2:75: 81:a7:e3:ca:6b:23:09:f4:d6:e7:cc:bc:e3:a6:09:b0:25:9f: 82:2b:79:55:32:90:1a:2a:3d:d5:ce:71:a4:81:44:e0:38:61: c1:1e:12:e4:6a:9e:0b:28:0e:41:ee:a3:54:06:4c:f3:05:44: 33:79:a1:50:2e:b1:0b:6e:d4:39:c2:f6:8e:e8:c8:87:4f:10: 64:a4:50:99:93:49:ce:b3:3e:83:c3:bc:ff:83:e2:6b:c4:50: eb:13:44:1d:ed:ae:15:68:b4:75:7c:c0:94:15:92:42:8f:68: 73:ac:34:b8:5e:26:9d:57:ee:8b:3f:31:e8:55:92:8a:2e:37: 1d:cf:bf:e4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUOHpOgdoRWUxE9HkllTz5GNh5SaAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgyOTIxMzYzNFoX DTI1MDgyODIxNDEzNFowMzExMC8GA1UEAxMoMjVGNDY0MDIwRDlDQkI4RDE4QkM3 QzQ3MTY5Rjk3OEQyNEY0RjFCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0NAfJf4pNy/MUc5JoiaLdhiQGC36gb8nQ32Mi149h28QKmcOMF5QN0l5YK X5lCJpmcnyMD1sjUclqijSNBPV+aflTjc8yhTcaWYvHnOj5av6QgB77TNmnVSUr1 nm/8iafALKRDviV6xeQDtVufhhLnpMCNldmhAvU2wGM0XubM9LSTI7uXyExdLwrQ cqghSLfEQcdluDjWqc54SExIipbvWBfaJaOCkqxxjhD3/KvVwxxYhiAZKE6eZU7Q EbHV/Cgp4BJYWuroD2AIftLbQdNABPDE3CJR1fMmFqIRy12iwgjqvxh4aiFJOZEY S9cCiyZ1HMUNFR5JUQIR/5la5lUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCX0ZAINnLuNGLx8Rxafl40k9PG+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82MjhkZTg2Yi1hMjZlLTRiMGYtYTgzYy0wNWZhYjRhMzBjNzcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyOGRlODZi LWEyNmUtNGIwZi1hODNjLTA1ZmFiNGEzMGM3Ny8wLzI1RjQ2NDAyMEQ5Q0JCOEQx OEJDN0M0NzE2OUY5NzhEMjRGNEYxQkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsLQwDQYJKoZIhvcNAQELBQADggEBAJJ2V1D+1FD1Hk7xmAwN9+/hX2E9bU+5 FDM7WmgqwXXn26CFnK91V8+4bxrkJNumfLWKkycdgmPCBpJYy1/QelCpuWY7cnWz SVgaZ8yXuROcMS8amqL8bkfKnfSsXKmZfwlF00iL0eEARWTMF4mTo1Gh8zKwzh3E IW3bEOyidYGn48prIwn01ufMvOOmCbAln4IreVUykBoqPdXOcaSBROA4YcEeEuRq ngsoDkHuo1QGTPMFRDN5oVAusQtu1DnC9o7oyIdPEGSkUJmTSc6zPoPDvP+D4mvE UOsTRB3trhVotHV8wJQVkkKPaHOsNLheJp1X7os/MehVkoouNx3Pv+Q= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:39 2024 by rpki-client on console-ams.rpki-client.org