$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer File: 357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer (raw, json) Hash identifier: 384qlWh83n8QG6JC9plvxuQNQ7C+5W9pWgeu5sXOCEA= Subject key identifier: 35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 25EADD23F23A604B88D3F0A3384FB59EF4EC1F5D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.mft caRepository: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 18 Aug 2024 08:42:51 +0000 Certificate not after: Sun 17 Aug 2025 08:47:51 +0000 Subordinate resources: IP: 103.167.168.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:ea:dd:23:f2:3a:60:4b:88:d3:f0:a3:38:4f:b5:9e:f4:ec:1f:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 18 08:42:51 2024 GMT Not After : Aug 17 08:47:51 2025 GMT Subject: CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:83:88:bd:a7:b6:a7:1c:47:a4:a6:99:75:e2: 3e:54:6d:3a:e8:12:95:b2:d3:03:a7:b4:67:44:ba: 06:68:88:9a:59:88:0b:f1:01:29:4c:2f:1a:a0:2d: 3e:cb:09:fc:bc:fd:f4:f8:12:b8:2a:c0:7b:8c:a2: bc:d1:d5:92:4a:03:ce:ea:42:49:c7:51:48:d1:3a: 33:05:e8:c9:e3:1b:3c:b3:73:c5:bb:e1:49:05:b5: 0b:65:dc:8a:7e:2c:66:02:f0:de:26:95:00:e8:31: ad:e0:aa:3f:4a:de:61:05:e4:15:a0:bc:03:4b:3b: 0b:e0:bf:f2:99:45:9e:8b:46:03:6c:81:5e:cd:9c: b5:83:80:0b:1e:84:7a:df:65:ae:8a:53:73:fc:f7: 9b:cd:28:1e:ca:15:0f:d6:c0:8d:ca:a9:bf:2f:08: 78:21:ab:3f:53:b3:9d:ec:92:2e:91:e0:3e:d2:5b: 2e:0e:73:a4:a0:9e:df:65:8d:2a:5e:96:25:32:a5: 15:c0:90:5a:33:b3:4a:33:98:a1:60:83:4a:18:fa: 13:8a:e0:d6:6c:10:4b:e4:e1:d3:c3:d3:af:db:88: 6d:27:c3:b6:80:8d:7d:81:c7:2a:13:d5:a7:c3:74: 06:b4:12:7d:22:53:3a:ac:35:6f:c4:78:67:9a:7a: be:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.168.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:48:66:21:59:72:3b:30:f5:52:25:0c:02:e5:01:b7:7e:94: 7a:18:3a:e7:23:94:71:43:a9:45:c2:36:0f:7d:82:f5:06:15: 24:34:b6:fc:de:55:dd:5f:8b:c6:9d:1d:0b:50:3f:b4:40:90: f2:21:51:d1:01:25:9b:5b:70:1d:71:12:67:15:55:f0:06:76: e3:40:55:09:2c:19:0c:d8:6e:cd:c3:d0:50:b7:19:30:e9:10: e7:36:17:d2:2b:36:bb:97:32:af:b9:d3:1e:1c:1d:cc:47:50: 56:39:1e:69:0f:46:db:14:91:3d:d6:0f:db:a5:4a:c8:63:06: 15:61:5f:a8:cc:5a:7c:b5:3d:d8:af:49:c4:d7:7f:06:1f:f9: 81:a6:2f:e5:30:8f:6c:8d:8f:1c:dc:89:d5:43:e1:b6:37:fe: 0c:9e:6d:87:65:24:95:72:3c:a7:68:62:ed:9e:d1:e2:e3:75: ae:d0:f1:16:90:2a:f6:fc:68:13:c1:c4:13:6a:c0:b4:32:b2: a4:39:e7:fa:a0:81:28:86:73:49:71:d0:c3:a8:f3:a7:ec:b1: 15:70:96:3e:25:89:5e:56:5a:bc:7d:bc:0f:59:1a:9f:00:59: 9c:ca:af:b0:f3:f1:86:bd:e8:af:2e:6e:2f:b9:04:78:74:b9: 71:22:af:db -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJerdI/I6YEuI0/CjOE+1nvTsH10wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxODA4NDI1MVoX DTI1MDgxNzA4NDc1MVowMzExMC8GA1UEAxMoMzU3REVBQzVFNkMxMUIzQzNFMTUy RDVBMjRGOEQ4MzE1RUE0M0UyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2DiL2ntqccR6SmmXXiPlRtOugSlbLTA6e0Z0S6BmiImlmIC/EBKUwvGqAt PssJ/Lz99PgSuCrAe4yivNHVkkoDzupCScdRSNE6MwXoyeMbPLNzxbvhSQW1C2Xc in4sZgLw3iaVAOgxreCqP0reYQXkFaC8A0s7C+C/8plFnotGA2yBXs2ctYOACx6E et9lropTc/z3m80oHsoVD9bAjcqpvy8IeCGrP1OzneySLpHgPtJbLg5zpKCe32WN Kl6WJTKlFcCQWjOzSjOYoWCDShj6E4rg1mwQS+Th08PTr9uIbSfDtoCNfYHHKhPV p8N0BrQSfSJTOqw1b8R4Z5p6vm0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDV96sXmwRs8PhUtWiT42DFepD4rMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZDRiNjEyZi1mOTI0LTRlYzItYjFmMS1hMTMwNWQyM2Q1M2EvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNGI2MTJm LWY5MjQtNGVjMi1iMWYxLWExMzA1ZDIzZDUzYS8wLzM1N0RFQUM1RTZDMTFCM0Mz RTE1MkQ1QTI0RjhEODMxNUVBNDNFMkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnp6gwDQYJKoZIhvcNAQELBQADggEBAApIZiFZcjsw9VIlDALlAbd+lHoYOucj lHFDqUXCNg99gvUGFSQ0tvzeVd1fi8adHQtQP7RAkPIhUdEBJZtbcB1xEmcVVfAG duNAVQksGQzYbs3D0FC3GTDpEOc2F9IrNruXMq+50x4cHcxHUFY5HmkPRtsUkT3W D9ulSshjBhVhX6jMWny1PdivScTXfwYf+YGmL+Uwj2yNjxzcidVD4bY3/gyebYdl JJVyPKdoYu2e0eLjda7Q8RaQKvb8aBPBxBNqwLQysqQ55/qggSiGc0lx0MOo86fs sRVwlj4liV5WWrx9vA9ZGp8AWZzKr7Dz8Ya96K8ubi+5BHh0uXEir9s= -----END CERTIFICATE-----Generated at Sun Feb 16 20:46:03 2025 by rpki-client