$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer File: 2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer (raw, json) Hash identifier: 3b+BCWmZL2Y8GsrEVFuH8qs0rYB/DIVaVlfNzrkwkmA= Subject key identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0CBE087BC80452763833983D97E0A46809FC31C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft caRepository: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 27 Nov 2024 04:39:11 +0000 Certificate not after: Wed 26 Nov 2025 04:44:11 +0000 Subordinate resources: IP: 103.181.250.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:be:08:7b:c8:04:52:76:38:33:98:3d:97:e0:a4:68:09:fc:31:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 27 04:39:11 2024 GMT Not After : Nov 26 04:44:11 2025 GMT Subject: CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:48:8b:14:a8:fb:1e:8e:02:eb:2e:7e:2d:e8: a3:8b:07:49:39:1f:9c:25:f8:6a:42:b6:da:67:bb: 81:a6:f5:92:6b:71:4e:b9:d3:d0:bc:94:81:b4:61: 82:93:5b:ca:8c:b9:2a:4e:f4:4a:10:50:2c:bb:b4: e4:59:b0:a9:c0:00:0a:04:8a:fb:7a:86:e9:d6:c3: be:e7:63:3d:33:0a:ba:db:69:a2:5a:cd:ec:af:2c: 20:6f:48:a2:fb:97:a5:3e:4c:dd:ed:91:58:3c:3e: b8:a2:c8:40:b2:1b:c6:8f:15:ed:30:9a:27:cc:60: 21:78:92:02:cd:36:4b:37:d0:f1:dd:a4:af:25:bb: 09:29:50:26:da:76:0c:14:d1:d4:56:18:fc:70:b3: fc:3a:68:c3:5b:56:da:da:fe:ff:e5:03:33:70:89: ea:89:6d:86:c9:d2:e8:66:51:d1:1f:62:16:58:3e: 07:9e:72:c7:40:07:25:80:a2:62:02:18:17:e8:7a: 5c:e7:fc:92:22:95:41:09:f9:22:d5:7a:06:90:9e: 56:dd:09:79:d3:62:dd:33:90:5a:b1:11:94:6c:34: b7:50:27:45:09:f3:16:b5:c8:c8:1b:26:51:ef:31: 32:ce:e4:33:01:82:17:91:bd:e3:f0:2e:92:f4:be: 1c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.250.0/23 Signature Algorithm: sha256WithRSAEncryption 08:19:50:c5:05:0b:a2:d0:81:60:5e:47:57:12:9b:26:27:e1: 33:d3:fd:ea:fa:28:ed:25:9a:c9:d0:71:3a:34:5a:86:2b:a2: 57:49:d0:93:15:41:32:d8:0b:0e:25:9a:2c:0b:43:1a:58:58: 58:ad:f8:36:2d:2c:89:cc:a8:1b:d5:d5:8b:1b:9e:83:c0:84: 3c:6a:83:24:72:50:b3:62:0b:cc:0b:24:bc:6e:74:1c:9f:0e: 17:74:20:72:e5:93:f6:3d:b3:b0:32:7c:36:04:f5:fb:ff:db: 5a:69:1d:e2:a4:fa:9f:7e:4e:bc:8c:98:18:b7:fb:f5:61:07: b1:5a:22:b1:6e:55:d6:f0:d9:2a:e5:c3:a9:e2:ce:ac:66:6e: 77:af:df:5a:78:e5:e0:31:af:cd:9d:47:b3:b8:0f:61:ea:b2: 86:f0:1c:d4:7d:f9:91:c9:97:ee:8f:ee:00:07:b0:3a:61:1d: e0:5e:e2:c5:02:13:4e:1a:fa:eb:c3:f9:61:3a:0b:61:3b:64: e7:38:6f:7f:b6:ce:2e:74:b7:b7:0e:21:d0:f7:d5:2a:fd:fe: ad:62:f4:b2:50:b6:92:7f:08:3e:8d:fd:0f:55:71:da:db:fb: 83:ef:18:94:6e:90:75:8a:11:c4:55:35:95:95:5a:ab:c1:f7: 0f:d4:e3:ce -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDL4Ie8gEUnY4M5g9l+CkaAn8McYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyNzA0MzkxMVoX DTI1MTEyNjA0NDQxMVowMzExMC8GA1UEAxMoMkUyRDkyNjkzMkM1QzdFMjk2OTMx RDg4MTkwOEE0QkIxRTk4RUI2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhIixSo+x6OAusufi3oo4sHSTkfnCX4akK22me7gab1kmtxTrnT0LyUgbRh gpNbyoy5Kk70ShBQLLu05FmwqcAACgSK+3qG6dbDvudjPTMKuttpolrN7K8sIG9I ovuXpT5M3e2RWDw+uKLIQLIbxo8V7TCaJ8xgIXiSAs02SzfQ8d2kryW7CSlQJtp2 DBTR1FYY/HCz/Dpow1tW2tr+/+UDM3CJ6olthsnS6GZR0R9iFlg+B55yx0AHJYCi YgIYF+h6XOf8kiKVQQn5ItV6BpCeVt0JedNi3TOQWrERlGw0t1AnRQnzFrXIyBsm Ue8xMs7kMwGCF5G94/AukvS+HNcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC4tkmkyxcfilpMdiBkIpLsemOttMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZmE1ODllZi05ZjNkLTQzYmMtYmEzMC1mYTMyNmI3MWY3ODcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmYTU4OWVm LTlmM2QtNDNiYy1iYTMwLWZhMzI2YjcxZjc4Ny8wLzJFMkQ5MjY5MzJDNUM3RTI5 NjkzMUQ4ODE5MDhBNEJCMUU5OEVCNkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFntfowDQYJKoZIhvcNAQELBQADggEBAAgZUMUFC6LQgWBeR1cSmyYn4TPT/er6 KO0lmsnQcTo0WoYroldJ0JMVQTLYCw4lmiwLQxpYWFit+DYtLInMqBvV1YsbnoPA hDxqgyRyULNiC8wLJLxudByfDhd0IHLlk/Y9s7AyfDYE9fv/21ppHeKk+p9+TryM mBi3+/VhB7FaIrFuVdbw2Srlw6nizqxmbnev31p45eAxr82dR7O4D2HqsobwHNR9 +ZHJl+6P7gAHsDphHeBe4sUCE04a+uvD+WE6C2E7ZOc4b3+2zi50t7cOIdD31Sr9 /q1i9LJQtpJ/CD6N/Q9Vcdrb+4PvGJRukHWKEcRVNZWVWqvB9w/U484= -----END CERTIFICATE-----Generated at Sat Apr 5 06:20:08 2025 by rpki-client