$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2A2780233BF2E06D533EC6B05F500206FBB06D6D.cer File: 2A2780233BF2E06D533EC6B05F500206FBB06D6D.cer (raw, json) Hash identifier: crZipnCHqQk35yARXA38gNCdbk9nP/2xGKrH07KGuvw= Subject key identifier: 2A:27:80:23:3B:F2:E0:6D:53:3E:C6:B0:5F:50:02:06:FB:B0:6D:6D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2D2B58300600FFAFBE227E925E87EE563F664EA5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/2A2780233BF2E06D533EC6B05F500206FBB06D6D.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 02 Dec 2024 16:57:14 +0000 Certificate not after: Mon 01 Dec 2025 17:02:14 +0000 Subordinate resources: IP: 103.141.170.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:2b:58:30:06:00:ff:af:be:22:7e:92:5e:87:ee:56:3f:66:4e:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 2 16:57:14 2024 GMT Not After : Dec 1 17:02:14 2025 GMT Subject: CN=2A2780233BF2E06D533EC6B05F500206FBB06D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:25:54:51:be:18:59:0a:e7:e9:99:91:94:e5: ae:cd:ee:79:f6:0a:55:bb:e5:38:b8:f6:f0:34:42: 6b:a3:dd:54:94:22:3f:ec:a6:a4:06:7c:19:f1:c7: c1:21:c1:5b:cc:73:50:d9:d8:30:3e:b6:0a:0f:de: bf:97:ad:cc:7a:5c:01:ff:5d:72:21:37:87:c9:19: 41:50:49:93:60:20:22:10:22:bf:b2:7f:fd:22:9e: 2d:89:04:7a:16:15:79:09:a0:24:b8:18:b6:33:c5: c2:6f:72:8d:2f:8a:1a:d7:c7:a0:50:48:42:ac:f0: fa:c2:ee:0a:e4:0e:80:2d:e9:94:fc:db:47:41:6d: de:56:1a:18:05:c7:3e:f9:17:f0:62:a9:8f:3b:79: e5:1b:2b:87:42:e9:12:ed:cb:82:5f:b8:d1:cc:29: 2a:9b:87:2f:68:13:a4:bc:ff:7e:08:ed:03:ba:78: a5:96:f7:15:1d:ca:ce:46:97:e4:f0:45:17:a9:7c: 0e:27:92:8a:12:c9:4c:75:94:70:58:fe:e1:e0:c5: c9:fe:99:e2:6c:44:16:18:63:ad:ca:56:83:c7:2d: dd:cf:74:a4:7b:19:8e:64:b1:7b:ca:07:fc:22:6a: 07:8e:e7:56:99:13:8a:30:ab:0a:2d:9b:b4:51:a8: a7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2A:27:80:23:3B:F2:E0:6D:53:3E:C6:B0:5F:50:02:06:FB:B0:6D:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/2A2780233BF2E06D533EC6B05F500206FBB06D6D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.170.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:d9:77:c5:d1:38:24:97:cb:e5:b1:54:cd:73:14:95:be:6c: 8e:c2:34:3c:b7:54:7b:ab:86:3b:a0:8d:ec:06:35:aa:11:44: 2a:b1:b8:73:8f:3f:38:d3:bd:97:1f:4a:ec:d2:d1:63:40:b0: 0d:1f:72:53:ba:d5:10:8f:d1:a2:7c:a9:27:24:47:56:c6:bd: 39:be:d9:ef:52:98:88:1c:cf:96:24:c3:df:d8:44:dd:e6:17: ce:aa:d9:08:6e:30:ba:bd:8e:e4:d0:e3:bf:b8:5c:bb:e2:d0: 0b:00:5f:ef:9b:72:f1:c0:13:9f:8f:f7:dc:57:4b:b6:e3:df: 3a:ce:4c:4f:71:78:7f:bb:b9:00:f3:35:93:23:9a:1f:5c:06: 6b:67:fe:ae:50:52:0b:13:a2:25:c3:b2:59:d6:63:dc:d5:ff: 4a:5f:95:55:d3:a4:41:91:cd:ca:80:86:1d:37:a3:82:3d:7e: 6f:73:0f:63:a2:64:68:10:21:72:d5:6c:dd:53:9e:dd:53:f3: d0:d9:97:8e:da:0a:f3:35:6b:9a:da:86:9d:9e:d3:37:de:d1: 84:0c:a7:ee:c1:cd:41:81:05:3e:6e:ea:c0:34:fb:c7:5b:14: b2:f7:d8:85:36:41:43:12:8e:41:4e:e3:3c:7c:9c:ad:20:c8: 31:66:f9:ab -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULStYMAYA/6++In6SXofuVj9mTqUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwMjE2NTcxNFoX DTI1MTIwMTE3MDIxNFowMzExMC8GA1UEAxMoMkEyNzgwMjMzQkYyRTA2RDUzM0VD NkIwNUY1MDAyMDZGQkIwNkQ2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPQlVFG+GFkK5+mZkZTlrs3uefYKVbvlOLj28DRCa6PdVJQiP+ympAZ8GfHH wSHBW8xzUNnYMD62Cg/ev5etzHpcAf9dciE3h8kZQVBJk2AgIhAiv7J//SKeLYkE ehYVeQmgJLgYtjPFwm9yjS+KGtfHoFBIQqzw+sLuCuQOgC3plPzbR0Ft3lYaGAXH PvkX8GKpjzt55Rsrh0LpEu3Lgl+40cwpKpuHL2gTpLz/fgjtA7p4pZb3FR3KzkaX 5PBFF6l8DieSihLJTHWUcFj+4eDFyf6Z4mxEFhhjrcpWg8ct3c90pHsZjmSxe8oH /CJqB47nVpkTijCrCi2btFGop+0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCongCM78uBtUz7GsF9QAgb7sG1tMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzZmOGMwYS1lMDNmLTQxNDAtYmExNi04MzNhYzIyNDFhZmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNmY4YzBh LWUwM2YtNDE0MC1iYTE2LTgzM2FjMjI0MWFmYi8wLzJBMjc4MDIzM0JGMkUwNkQ1 MzNFQzZCMDVGNTAwMjA2RkJCMDZENkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnjaowDQYJKoZIhvcNAQELBQADggEBAFzZd8XROCSXy+WxVM1zFJW+bI7CNDy3 VHurhjugjewGNaoRRCqxuHOPPzjTvZcfSuzS0WNAsA0fclO61RCP0aJ8qSckR1bG vTm+2e9SmIgcz5Ykw9/YRN3mF86q2QhuMLq9juTQ47+4XLvi0AsAX++bcvHAE5+P 99xXS7bj3zrOTE9xeH+7uQDzNZMjmh9cBmtn/q5QUgsToiXDslnWY9zV/0pflVXT pEGRzcqAhh03o4I9fm9zD2OiZGgQIXLVbN1Tnt1T89DZl47aCvM1a5rahp2e0zfe 0YQMp+7BzUGBBT5u6sA0+8dbFLL32IU2QUMSjkFO4zx8nK0gyDFm+as= -----END CERTIFICATE-----Generated at Sat Apr 5 06:29:21 2025 by rpki-client