$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/33D26363FA5B5B53C17981915CBADB375AE27253.cer File: 33D26363FA5B5B53C17981915CBADB375AE27253.cer (raw, json) Hash identifier: jUXI0/fbb8VJPKXPRaObenNogMIZ/lHBxxBSHEIj+1o= Subject key identifier: 33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 375E461C32A69E678B2D6C3A90911524EB34B393 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft caRepository: rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 05 Dec 2024 18:38:50 +0000 Certificate not after: Thu 04 Dec 2025 18:43:50 +0000 Subordinate resources: IP: 2001:df4:5f40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 25 Feb 2025 10:14:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:5e:46:1c:32:a6:9e:67:8b:2d:6c:3a:90:91:15:24:eb:34:b3:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 5 18:38:50 2024 GMT Not After : Dec 4 18:43:50 2025 GMT Subject: CN=33D26363FA5B5B53C17981915CBADB375AE27253 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:46:88:ad:44:73:0f:38:29:5d:01:ba:48:6f: 60:45:2c:94:ab:15:b2:fb:f6:3c:80:89:b7:7a:c0: 2e:19:8a:c7:05:97:7b:2b:ba:78:f5:8a:a4:94:41: 98:1d:69:95:8e:98:cc:15:b8:1a:23:24:92:08:8a: 6c:f5:81:e5:a3:30:9b:39:5b:1c:c9:f9:01:0d:a0: cc:90:bf:06:3e:f3:44:e1:53:26:4d:fc:19:9e:3e: 33:88:81:7e:79:e6:15:2f:53:f1:61:da:df:6d:6f: 81:25:db:a3:fb:b9:f0:e4:3c:bf:e8:36:ee:dc:1a: e9:b3:38:37:e4:c0:7c:a3:3f:9c:f4:3f:30:96:67: e0:9f:d6:87:e4:24:29:b1:c2:5f:a4:ec:38:c4:55: aa:c0:a6:aa:f4:d6:04:0a:cf:0a:d4:b3:2e:f1:75: 47:13:1e:ae:0c:4f:d3:ec:2a:60:0c:89:04:fb:78: 5c:3b:1d:2e:ac:8a:bb:fd:ac:15:7f:86:04:05:b7: f6:a9:b7:18:11:ac:69:50:a7:63:f7:30:b1:4f:91: 17:2b:f7:4b:2c:ec:38:e3:ee:58:00:ae:e6:48:5b: eb:87:2c:23:7f:19:54:ef:9a:50:e1:86:56:55:64: c3:4b:aa:01:94:5f:07:15:c3:6e:f1:e8:cd:d5:96: 2d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 33:D2:63:63:FA:5B:5B:53:C1:79:81:91:5C:BA:DB:37:5A:E2:72:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4c58fb7c-67b8-4bce-96d9-be912e3f73dd/1/33D26363FA5B5B53C17981915CBADB375AE27253.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df4:5f40::/48 Signature Algorithm: sha256WithRSAEncryption 91:1b:16:97:28:b3:79:bd:34:04:1e:11:65:d0:8e:dd:e1:0e: d8:c6:f5:ce:7f:a0:59:a6:5f:28:25:5c:60:53:52:88:69:25: 90:38:31:f2:50:bb:53:de:65:4a:ac:7b:7a:56:3d:40:ed:99: 6a:c5:66:54:74:87:29:0b:cb:ae:b0:50:ac:70:a9:9c:aa:5b: 42:b6:fd:b6:0e:d2:06:5f:90:e5:16:05:7f:db:cb:dd:76:ec: 6a:63:73:8a:68:90:61:95:f0:d3:d7:82:27:2f:5e:f1:db:fb: 40:3c:77:bb:e6:b4:28:b7:23:37:fd:02:2f:00:61:b4:d2:35: c9:a7:0b:e2:90:ef:7f:da:2c:85:3b:de:2c:28:62:41:bc:97: 85:56:ef:68:ce:20:37:ef:98:8f:35:1a:b5:14:84:28:2f:c7: 92:64:da:2b:4c:46:de:76:9b:81:94:ae:a7:59:7d:d4:65:15: c9:2c:43:c8:f6:d8:d2:82:30:f5:bb:8d:ba:7e:79:ba:79:92: 32:7a:ff:dd:7f:05:24:1f:ac:83:d1:4c:d6:f6:0f:bb:0a:44: c6:a6:39:6f:a6:63:23:64:6d:9e:c5:a9:ef:4b:0b:31:9a:86: 10:61:66:5f:09:bd:b6:b4:e2:93:65:8c:4e:91:23:e9:7d:a2: 99:63:62:6c -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUN15GHDKmnmeLLWw6kJEVJOs0s5MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNTE4Mzg1MFoX DTI1MTIwNDE4NDM1MFowMzExMC8GA1UEAxMoMzNEMjYzNjNGQTVCNUI1M0MxNzk4 MTkxNUNCQURCMzc1QUUyNzI1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1GiK1Ecw84KV0BukhvYEUslKsVsvv2PICJt3rALhmKxwWXeyu6ePWKpJRB mB1plY6YzBW4GiMkkgiKbPWB5aMwmzlbHMn5AQ2gzJC/Bj7zROFTJk38GZ4+M4iB fnnmFS9T8WHa321vgSXbo/u58OQ8v+g27twa6bM4N+TAfKM/nPQ/MJZn4J/Wh+Qk KbHCX6TsOMRVqsCmqvTWBArPCtSzLvF1RxMergxP0+wqYAyJBPt4XDsdLqyKu/2s FX+GBAW39qm3GBGsaVCnY/cwsU+RFyv3SyzsOOPuWACu5khb64csI38ZVO+aUOGG VlVkw0uqAZRfBxXDbvHozdWWLd8CAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDPSY2P6W1tTwXmBkVy62zda4nJTMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YzU4ZmI3Yy02N2I4LTRiY2UtOTZkOS1iZTkxMmUzZjczZGQvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRjNThmYjdj LTY3YjgtNGJjZS05NmQ5LWJlOTEyZTNmNzNkZC8xLzMzRDI2MzYzRkE1QjVCNTND MTc5ODE5MTVDQkFEQjM3NUFFMjcyNTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ30X0AwDQYJKoZIhvcNAQELBQADggEBAJEbFpcos3m9NAQeEWXQjt3hDtjG 9c5/oFmmXyglXGBTUohpJZA4MfJQu1PeZUqse3pWPUDtmWrFZlR0hykLy66wUKxw qZyqW0K2/bYO0gZfkOUWBX/by9127Gpjc4pokGGV8NPXgicvXvHb+0A8d7vmtCi3 Izf9Ai8AYbTSNcmnC+KQ73/aLIU73iwoYkG8l4VW72jOIDfvmI81GrUUhCgvx5Jk 2itMRt52m4GUrqdZfdRlFcksQ8j22NKCMPW7jbp+ebp5kjJ6/91/BSQfrIPRTNb2 D7sKRMamOW+mYyNkbZ7Fqe9LCzGahhBhZl8Jvba04pNljE6RI+l9opljYmw= -----END CERTIFICATE-----Generated at Sat Feb 22 14:50:14 2025 by rpki-client