$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer File: 3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.cer (raw, json) Hash identifier: w2qEalOfBRCbbimoY3+TaOxjzP0gftjC2NnafBjChYs= Subject key identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 72CDA03D2F6DFE751598EE11EFCE1EE6E324E28E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft caRepository: rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 16 Aug 2024 12:02:11 +0000 Certificate not after: Fri 15 Aug 2025 12:07:11 +0000 Subordinate resources: IP: 103.10.253.0/24 IP: 103.28.163.0/24 IP: 103.65.96.0/23 IP: 2001:df0:269::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:cd:a0:3d:2f:6d:fe:75:15:98:ee:11:ef:ce:1e:e6:e3:24:e2:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 16 12:02:11 2024 GMT Not After : Aug 15 12:07:11 2025 GMT Subject: CN=3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a1:01:f0:00:12:89:d4:c3:52:41:f6:5c:79: a2:f0:dc:95:0c:49:e3:f3:7e:03:00:e5:ec:63:b1: 1f:62:d6:95:9b:64:75:4e:6c:c8:cc:c4:fe:33:8f: e3:a0:31:87:93:89:df:ec:c2:c0:c6:af:b6:1a:17: b0:89:90:ca:28:10:55:84:c0:15:4a:40:fe:45:76: 1a:95:7e:5c:21:0f:d7:f0:ee:68:f3:63:48:d5:8d: 07:2e:4d:19:51:03:6c:9e:93:08:9d:98:ba:9e:b0: b9:77:b2:c1:ec:90:b2:d0:c0:b2:2a:0c:18:0b:65: 92:73:ff:28:55:96:12:65:94:76:44:59:45:f1:9e: 97:53:1a:93:eb:b1:23:7c:e2:20:cf:38:5c:8c:8a: 03:9a:80:44:86:82:b7:8a:2e:e6:73:07:f4:4e:8d: 9b:1d:e3:b3:09:d6:1e:2d:18:78:97:da:8d:02:3b: 6f:89:9e:ef:3f:ad:b4:5f:13:16:50:2d:94:03:be: 0a:d4:51:a2:fc:62:6a:4c:38:17:09:36:32:d8:22: e9:8c:86:a7:d6:ce:69:95:c2:56:7c:f4:3e:d8:f2: fc:21:88:2f:ce:bf:68:00:a0:0b:ff:83:a1:49:ac: 26:bc:d9:ac:d9:bd:f9:86:ab:6b:08:d0:ce:7f:bb: 97:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3D:78:9F:AF:5F:7E:BE:69:38:C4:C7:23:DC:D2:EE:D7:85:C3:5E:4F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4d970032-08ea-4890-bdba-6309a497917d/0/3D789FAF5F7EBE6938C4C723DCD2EED785C35E4F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.253.0/24 103.28.163.0/24 103.65.96.0/23 IPv6: 2001:df0:269::/48 Signature Algorithm: sha256WithRSAEncryption 3d:5f:70:5c:e1:92:09:7b:72:32:7e:e8:8c:d3:03:d6:54:c5: b2:ab:39:78:74:e9:fb:72:ec:62:af:4e:81:e8:88:0e:5f:76: 6d:23:f6:62:5e:1b:3a:9d:61:36:c9:b4:11:33:f5:5d:db:6c: 5a:05:b1:a7:e0:3e:5e:e9:6c:7e:b5:50:f3:d4:2c:25:62:16: b6:b0:35:8d:71:91:e4:fb:80:84:c9:85:be:cb:d5:00:b5:01: 89:d9:f7:e0:af:07:e0:66:73:85:1b:05:48:7c:aa:c7:33:08: f0:4c:81:d5:71:63:db:e0:5e:04:71:01:df:0e:99:5f:27:ca: 73:f3:a6:56:b9:f8:66:08:be:96:c8:aa:20:07:36:0f:a3:32: c7:f0:95:b3:6c:04:24:18:b3:86:e3:4f:e2:ed:4e:d5:27:23: 87:8b:3d:af:9e:6c:b2:11:d6:73:ec:3b:5c:df:c5:b2:59:f1: ea:f5:f2:0a:a4:49:26:e0:4b:e0:fa:ce:dc:f9:71:87:b3:bc: f6:61:ce:43:d7:51:39:25:48:bf:68:3a:b4:b2:77:47:8e:8c: 90:36:55:90:eb:4e:a6:43:4b:50:7e:b6:a1:44:fd:bc:f4:89: 56:e6:c5:ea:bb:a0:35:8d:9f:ae:cd:07:4d:24:4c:04:03:1f: 54:1d:70:0d -----BEGIN CERTIFICATE----- MIIF4jCCBMqgAwIBAgIUcs2gPS9t/nUVmO4R784e5uMk4o4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxNjEyMDIxMVoX DTI1MDgxNTEyMDcxMVowMzExMC8GA1UEAxMoM0Q3ODlGQUY1RjdFQkU2OTM4QzRD NzIzRENEMkVFRDc4NUMzNUU0RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWhAfAAEonUw1JB9lx5ovDclQxJ4/N+AwDl7GOxH2LWlZtkdU5syMzE/jOP 46Axh5OJ3+zCwMavthoXsImQyigQVYTAFUpA/kV2GpV+XCEP1/DuaPNjSNWNBy5N GVEDbJ6TCJ2Yup6wuXeyweyQstDAsioMGAtlknP/KFWWEmWUdkRZRfGel1Mak+ux I3ziIM84XIyKA5qARIaCt4ou5nMH9E6Nmx3jswnWHi0YeJfajQI7b4me7z+ttF8T FlAtlAO+CtRRovxiakw4Fwk2Mtgi6YyGp9bOaZXCVnz0Ptjy/CGIL86/aACgC/+D oUmsJrzZrNm9+YarawjQzn+7l9cCAwEAAaOCAtUwggLRMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD14n69ffr5pOMTHI9zS7teFw15PMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZDk3MDAzMi0wOGVhLTQ4OTAtYmRiYS02MzA5YTQ5NzkxN2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkOTcwMDMy LTA4ZWEtNDg5MC1iZGJhLTYzMDlhNDk3OTE3ZC8wLzNENzg5RkFGNUY3RUJFNjkz OEM0QzcyM0RDRDJFRUQ3ODVDMzVFNEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwPAYIKwYBBQUHAQcBAf8ELTArMBgEAgABMBID BABnCv0DBABnHKMDBAFnQWAwDwQCAAIwCQMHACABDfACaTANBgkqhkiG9w0BAQsF AAOCAQEAPV9wXOGSCXtyMn7ojNMD1lTFsqs5eHTp+3LsYq9OgeiIDl92bSP2Yl4b Op1hNsm0ETP1XdtsWgWxp+A+XulsfrVQ89QsJWIWtrA1jXGR5PuAhMmFvsvVALUB idn34K8H4GZzhRsFSHyqxzMI8EyB1XFj2+BeBHEB3w6ZXyfKc/OmVrn4Zgi+lsiq IAc2D6Myx/CVs2wEJBizhuNP4u1O1Scjh4s9r55sshHWc+w7XN/Fslnx6vXyCqRJ JuBL4PrO3Plxh7O89mHOQ9dROSVIv2g6tLJ3R46MkDZVkOtOpkNLUH62oUT9vPSJ VubF6rugNY2frs0HTSRMBAMfVB1wDQ== -----END CERTIFICATE-----Generated at Sun Feb 16 20:57:44 2025 by rpki-client