$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.cer File: 3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.cer (raw, json) Hash identifier: xXBv/eaH9l2E4UUTqz/7P5Uz/1i2oNEj3nAEPjgHFJU= Subject key identifier: 3C:52:D4:A8:6A:BD:DD:0D:6D:A6:31:73:7F:78:DC:20:5E:EC:23:9B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C1124D7915A4EDB09A9557E8F1CB20BF4E4B8F2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.mft caRepository: rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 05 Dec 2024 11:24:28 +0000 Certificate not after: Thu 04 Dec 2025 11:29:28 +0000 Subordinate resources: IP: 103.54.170.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:11:24:d7:91:5a:4e:db:09:a9:55:7e:8f:1c:b2:0b:f4:e4:b8:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 5 11:24:28 2024 GMT Not After : Dec 4 11:29:28 2025 GMT Subject: CN=3C52D4A86ABDDD0D6DA631737F78DC205EEC239B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:3d:a9:48:bd:b7:20:b0:77:9f:62:2f:1f:20: ef:d5:b6:d8:e5:cd:b9:c5:f0:9b:a9:7c:07:2d:88: 2c:9c:80:2b:6d:b7:91:f4:62:97:3f:8b:ab:56:11: 61:3c:be:e0:ee:cd:1e:95:77:ae:45:db:4e:14:51: dc:aa:9c:e2:7b:48:3e:15:42:6c:6c:2e:13:2f:a2: 6f:9f:aa:85:a0:e2:02:8d:d2:03:43:43:88:08:02: 8c:d4:90:9f:71:a1:21:69:e6:78:bc:8b:88:d7:01: 72:38:67:bc:65:b8:38:36:85:97:53:e3:1f:ff:93: a9:b9:5e:01:4e:60:62:54:57:06:87:08:1b:1d:7d: 2c:5b:c9:a4:5e:1d:27:91:a7:d9:64:da:18:2d:d1: 3a:d0:2e:24:a2:fa:be:08:bb:92:3d:fe:57:16:3f: 04:91:1d:41:b4:69:ca:d0:a1:44:ec:6a:61:58:11: 10:5b:9e:93:62:2a:c0:e5:86:81:2a:82:dd:33:6a: 69:74:dd:87:dc:0d:db:43:69:0a:83:a6:0b:e4:ac: 0b:9f:13:9e:d9:b0:37:b0:71:39:93:0f:0c:ee:6d: 26:00:d2:5c:50:af:57:a2:a2:7c:f6:11:d6:90:77: 2e:33:8a:10:d3:cd:19:5a:71:a0:f9:08:30:c3:50: 08:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3C:52:D4:A8:6A:BD:DD:0D:6D:A6:31:73:7F:78:DC:20:5E:EC:23:9B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/837694b7-3256-4666-a3fe-6e82e783b1e1/0/3C52D4A86ABDDD0D6DA631737F78DC205EEC239B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.54.170.0/23 Signature Algorithm: sha256WithRSAEncryption 01:07:ba:a5:8a:db:91:4f:37:83:02:7d:31:23:b7:62:d5:ab: b5:cb:21:a5:94:55:51:b0:6c:50:15:ba:9f:00:ad:a0:a8:fc: 91:54:ac:8c:34:3b:7e:6f:bb:80:e6:a2:49:20:24:d5:39:36: 02:82:7c:42:85:57:ad:b3:fc:a5:48:36:d7:eb:15:e6:75:79: 2f:07:af:86:2d:84:3b:65:a1:b0:d8:f9:d8:2a:be:3c:16:81: 1a:f8:27:00:c6:7e:84:07:30:b6:51:24:28:ca:a8:04:39:76: d6:92:38:d3:2c:ec:23:99:89:2a:d9:31:1e:26:54:ac:3d:f4: b6:ed:32:c2:3d:17:91:ec:67:d0:2a:26:c2:99:a5:4a:af:e5: b3:19:3d:c9:26:59:21:f7:0b:02:af:c8:16:29:8b:6d:26:0d: 80:66:f0:10:c1:6d:80:01:51:bf:e5:00:52:93:e6:73:6a:26: 36:35:10:54:83:15:aa:79:1f:39:77:12:0f:85:8a:29:a4:3d: ad:53:45:03:67:5b:ee:c3:52:39:21:1f:55:ad:86:4b:a9:b6: 3c:9b:09:b5:7f:b5:12:13:9a:99:b9:2a:83:25:cb:c3:5a:fc: 01:ef:02:4a:8b:d4:0e:b9:d5:88:0f:b2:92:09:6a:ac:9a:56: 48:05:0e:81 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHBEk15FaTtsJqVV+jxyyC/TkuPIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNTExMjQyOFoX DTI1MTIwNDExMjkyOFowMzExMC8GA1UEAxMoM0M1MkQ0QTg2QUJEREQwRDZEQTYz MTczN0Y3OERDMjA1RUVDMjM5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAME9qUi9tyCwd59iLx8g79W22OXNucXwm6l8By2ILJyAK223kfRilz+Lq1YR YTy+4O7NHpV3rkXbThRR3Kqc4ntIPhVCbGwuEy+ib5+qhaDiAo3SA0NDiAgCjNSQ n3GhIWnmeLyLiNcBcjhnvGW4ODaFl1PjH/+TqbleAU5gYlRXBocIGx19LFvJpF4d J5Gn2WTaGC3ROtAuJKL6vgi7kj3+VxY/BJEdQbRpytChROxqYVgREFuek2IqwOWG gSqC3TNqaXTdh9wN20NpCoOmC+SsC58TntmwN7BxOZMPDO5tJgDSXFCvV6KifPYR 1pB3LjOKENPNGVpxoPkIMMNQCM8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDxS1Khqvd0NbaYxc3943CBe7CObMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84Mzc2OTRiNy0zMjU2LTQ2NjYtYTNmZS02ZTgyZTc4M2IxZTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgzNzY5NGI3 LTMyNTYtNDY2Ni1hM2ZlLTZlODJlNzgzYjFlMS8wLzNDNTJENEE4NkFCREREMEQ2 REE2MzE3MzdGNzhEQzIwNUVFQzIzOUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnNqowDQYJKoZIhvcNAQELBQADggEBAAEHuqWK25FPN4MCfTEjt2LVq7XLIaWU VVGwbFAVup8AraCo/JFUrIw0O35vu4DmokkgJNU5NgKCfEKFV62z/KVINtfrFeZ1 eS8Hr4YthDtlobDY+dgqvjwWgRr4JwDGfoQHMLZRJCjKqAQ5dtaSONMs7COZiSrZ MR4mVKw99LbtMsI9F5HsZ9AqJsKZpUqv5bMZPckmWSH3CwKvyBYpi20mDYBm8BDB bYABUb/lAFKT5nNqJjY1EFSDFap5Hzl3Eg+FiimkPa1TRQNnW+7DUjkhH1Wthkup tjybCbV/tRITmpm5KoMly8Na/AHvAkqL1A651YgPspIJaqyaVkgFDoE= -----END CERTIFICATE-----Generated at Sun Feb 16 20:45:18 2025 by rpki-client