$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/339257A0C7951203C012BA5AF19EDB52E6790B03.cer File: 339257A0C7951203C012BA5AF19EDB52E6790B03.cer (raw, json) Hash identifier: CdnX7WBCyOcU3GzUsj/SauS9fz2pXg/pF9BQU/EwBmw= Subject key identifier: 33:92:57:A0:C7:95:12:03:C0:12:BA:5A:F1:9E:DB:52:E6:79:0B:03 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 117C86FAB5BC2D36A94716D0451DE3533557E09F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7ba0b3f1-974f-4205-bdce-0f9f5b7250dc/0/339257A0C7951203C012BA5AF19EDB52E6790B03.mft caRepository: rsync://repo-rpki.idnic.net/repo/7ba0b3f1-974f-4205-bdce-0f9f5b7250dc/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 04 Feb 2025 18:34:40 +0000 Certificate not after: Tue 03 Feb 2026 18:39:40 +0000 Subordinate resources: IP: 103.87.60.0/22 IP: 2400:d140::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:7c:86:fa:b5:bc:2d:36:a9:47:16:d0:45:1d:e3:53:35:57:e0:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Feb 4 18:34:40 2025 GMT Not After : Feb 3 18:39:40 2026 GMT Subject: CN=339257A0C7951203C012BA5AF19EDB52E6790B03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:09:6c:3a:87:c5:6e:dd:9b:c8:d9:a9:67:9d: 79:c3:63:bf:92:03:28:84:f6:56:f5:2f:15:c5:24: 4a:3f:b0:82:f1:d4:ab:54:7f:27:c6:a2:2d:c0:8d: 3f:ea:06:dd:f4:68:59:88:d6:bc:4b:5b:57:ed:94: 6f:d7:74:4e:bf:74:72:7f:d8:0e:af:77:a3:c0:bd: 26:c4:7e:19:3d:42:32:87:76:37:c9:e5:e3:5c:4c: da:46:fe:5b:3d:78:20:7a:0f:42:dd:45:ca:ec:5d: 9b:e1:6b:a0:72:a3:66:20:81:77:5d:8b:01:25:25: 5a:e3:26:1d:aa:15:df:ff:99:5e:a4:b1:2b:8b:a9: cd:cd:ad:e4:cc:68:7b:96:71:23:64:26:5d:75:67: 28:5c:e1:17:d7:6d:57:39:8d:de:88:90:76:e4:cf: 33:c1:2b:af:2c:b6:95:ad:4b:99:fe:f1:10:91:cb: 7f:cc:ec:e8:d1:3f:10:36:9f:6c:08:ae:39:8e:8a: ef:35:27:ad:78:38:02:b6:38:48:21:cb:e8:e8:81: 1c:94:1a:1b:5e:d8:58:d9:0c:d4:b4:49:75:e7:9c: 95:e9:38:2b:8f:fe:f6:c4:79:2f:18:18:20:d0:e1: d6:f8:e2:38:30:23:00:0f:37:30:cd:c0:3f:97:65: 16:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 33:92:57:A0:C7:95:12:03:C0:12:BA:5A:F1:9E:DB:52:E6:79:0B:03 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7ba0b3f1-974f-4205-bdce-0f9f5b7250dc/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7ba0b3f1-974f-4205-bdce-0f9f5b7250dc/0/339257A0C7951203C012BA5AF19EDB52E6790B03.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.60.0/22 IPv6: 2400:d140::/32 Signature Algorithm: sha256WithRSAEncryption 55:a4:52:d1:f6:13:a6:da:ce:e3:51:c7:7d:05:42:87:15:b1: 97:06:72:97:30:0b:20:54:53:6e:b0:c0:53:90:c9:49:5c:4e: 15:cb:81:99:31:73:5d:05:b8:ab:cc:63:8a:fd:08:58:65:3b: a9:0a:3e:30:37:dc:ae:18:79:cc:8a:42:45:63:18:4c:7d:3f: af:6f:08:03:51:fa:d4:6c:9c:0c:00:b5:ec:92:b1:7f:67:53: 09:3f:06:45:90:7d:0d:b1:8a:3d:4a:ec:f1:8b:98:db:df:50: bd:be:04:26:02:66:54:6b:7b:46:72:c0:91:b9:75:49:ac:f9: 92:c1:6d:1a:fe:ae:70:9a:82:44:b2:fc:0d:bb:27:1a:bf:e7: 15:b6:bb:d2:97:d3:bc:13:43:bf:4b:bb:94:35:87:43:7f:6f: 8f:a8:b5:3a:24:62:30:e8:b9:9c:4b:2e:02:fb:42:09:eb:ac: bc:67:2f:0a:8f:28:bf:57:59:1d:31:bd:01:06:87:b7:bd:b8: 7b:73:28:3f:1e:c5:df:ff:ee:b4:46:d2:c6:3c:d6:4f:a9:83: b7:d2:bb:a3:31:68:57:de:b1:cd:da:a7:df:a5:83:f6:4c:8d: 31:83:aa:35:3e:f6:51:77:ad:ca:88:56:24:f2:8b:8c:a6:2d: 3b:82:41:e9 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUEXyG+rW8LTapRxbQRR3jUzVX4J8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDIwNDE4MzQ0MFoX DTI2MDIwMzE4Mzk0MFowMzExMC8GA1UEAxMoMzM5MjU3QTBDNzk1MTIwM0MwMTJC QTVBRjE5RURCNTJFNjc5MEIwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAJbDqHxW7dm8jZqWedecNjv5IDKIT2VvUvFcUkSj+wgvHUq1R/J8aiLcCN P+oG3fRoWYjWvEtbV+2Ub9d0Tr90cn/YDq93o8C9JsR+GT1CMod2N8nl41xM2kb+ Wz14IHoPQt1Fyuxdm+FroHKjZiCBd12LASUlWuMmHaoV3/+ZXqSxK4upzc2t5Mxo e5ZxI2QmXXVnKFzhF9dtVzmN3oiQduTPM8Erryy2la1Lmf7xEJHLf8zs6NE/EDaf bAiuOY6K7zUnrXg4ArY4SCHL6OiBHJQaG17YWNkM1LRJdeeclek4K4/+9sR5LxgY INDh1vjiODAjAA83MM3AP5dlFiECAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDOSV6DHlRIDwBK6WvGe21LmeQsDMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YmEwYjNmMS05NzRmLTQyMDUtYmRjZS0wZjlmNWI3MjUwZGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiYTBiM2Yx LTk3NGYtNDIwNS1iZGNlLTBmOWY1YjcyNTBkYy8wLzMzOTI1N0EwQzc5NTEyMDND MDEyQkE1QUYxOUVEQjUyRTY3OTBCMDMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnVzwwDQQCAAIwBwMFACQA0UAwDQYJKoZIhvcNAQELBQADggEBAFWkUtH2E6ba zuNRx30FQocVsZcGcpcwCyBUU26wwFOQyUlcThXLgZkxc10FuKvMY4r9CFhlO6kK PjA33K4YecyKQkVjGEx9P69vCANR+tRsnAwAteySsX9nUwk/BkWQfQ2xij1K7PGL mNvfUL2+BCYCZlRre0ZywJG5dUms+ZLBbRr+rnCagkSy/A27Jxq/5xW2u9KX07wT Q79Lu5Q1h0N/b4+otTokYjDouZxLLgL7QgnrrLxnLwqPKL9XWR0xvQEGh7e9uHtz KD8exd//7rRG0sY81k+pg7fSu6MxaFfesc3ap9+lg/ZMjTGDqjU+9lF3rcqIViTy i4ymLTuCQek= -----END CERTIFICATE-----Generated at Sun Feb 16 20:37:40 2025 by rpki-client