$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3D93688202931D72322A7EE0053964A2DD8EB457.cer File: 3D93688202931D72322A7EE0053964A2DD8EB457.cer (raw, json) Hash identifier: mJRQkF3UjSg5WVJeLm1yGWZX4sg5tg2ZWKRZRYvttfQ= Subject key identifier: 3D:93:68:82:02:93:1D:72:32:2A:7E:E0:05:39:64:A2:DD:8E:B4:57 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 40CE75E6E465CA27DC6E6149E57DEC81F96FE902 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3D93688202931D72322A7EE0053964A2DD8EB457.mft caRepository: rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 31 Dec 2024 00:04:16 +0000 Certificate not after: Tue 30 Dec 2025 00:09:16 +0000 Subordinate resources: IP: 103.184.64.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ce:75:e6:e4:65:ca:27:dc:6e:61:49:e5:7d:ec:81:f9:6f:e9:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 31 00:04:16 2024 GMT Not After : Dec 30 00:09:16 2025 GMT Subject: CN=3D93688202931D72322A7EE0053964A2DD8EB457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c5:2d:11:78:3a:84:0b:dd:a6:3e:67:94:b0: bf:7c:79:7a:7f:25:bd:b1:f2:b7:f5:7b:f2:c1:3a: aa:97:b7:64:b7:3c:fc:c1:97:92:34:81:41:26:3d: e4:76:66:35:cc:8d:e1:e8:e4:97:55:0d:db:fa:95: b9:00:77:00:61:98:be:2f:9b:44:5e:5f:90:f0:5f: c3:9e:19:e8:a8:b4:93:f6:21:80:5f:c7:5d:b3:04: f8:fa:95:6c:67:0b:4f:e1:17:58:19:e6:d9:0e:be: 68:b4:d9:af:30:c8:75:7a:91:f6:97:49:e5:c9:04: 07:4b:99:2b:66:e6:51:2d:80:b3:90:fb:2e:eb:91: ed:33:bc:47:a1:68:94:70:24:f7:e4:43:04:bc:f7: b5:fa:ba:b3:97:d3:0d:6d:da:07:57:e1:ea:74:38: 62:75:bc:43:06:2d:cd:46:c0:8f:b1:8d:e7:62:36: 11:4c:51:f9:cc:ba:88:ff:a5:f8:07:da:27:fb:55: 9e:50:55:52:4d:16:d7:c9:f5:5a:86:13:d7:c7:75: 3d:97:4c:f6:f9:d5:32:3b:4c:01:a7:60:2a:a0:64: b3:6c:af:15:93:fa:3c:0a:27:40:74:70:d0:77:df: 96:94:37:ff:a2:44:c5:30:ab:a2:46:db:ff:47:c5: 65:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3D:93:68:82:02:93:1D:72:32:2A:7E:E0:05:39:64:A2:DD:8E:B4:57 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3D93688202931D72322A7EE0053964A2DD8EB457.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.64.0/23 Signature Algorithm: sha256WithRSAEncryption 72:09:7d:57:a0:ec:c7:5f:a8:35:2d:1b:b4:85:03:f7:bc:87: 7e:bf:3f:eb:92:51:7b:20:6c:da:d1:20:ac:ff:82:74:ca:51: f4:1d:c5:ed:a8:64:6f:68:e5:3c:e0:ee:f9:c5:0c:3a:0b:c4: c8:ff:eb:eb:41:fb:4f:62:6a:91:35:c7:da:89:b2:a1:1d:de: d7:62:98:f4:28:34:b5:87:1b:a7:a2:78:f1:25:0b:f2:44:a8: 06:00:ca:6d:28:5e:5e:26:e1:2b:76:ea:ab:2b:55:d4:14:7b: 69:c6:e4:aa:43:55:62:42:39:8e:74:f4:a5:94:2c:a6:04:c3: b4:82:6b:cf:cc:3e:fd:88:32:5f:b2:78:d9:a5:25:e5:28:00: e3:04:98:92:2c:00:af:67:f2:08:d2:e2:61:03:db:a6:20:96: 57:7b:9a:9f:50:50:c1:9c:c3:83:7a:25:7e:9c:b9:bf:67:8b: 40:ba:bd:de:ad:b7:46:89:9b:26:59:99:13:02:46:d2:0d:e0: cf:3f:ef:d8:77:7b:9a:60:c9:b6:09:a4:a2:bc:8d:0b:a9:e7: 68:b4:ad:ea:b9:21:9f:33:f0:79:22:a6:88:36:3d:c1:7c:bc: 60:2a:f7:40:7c:57:16:c7:8d:43:bf:17:46:4e:91:33:59:4a: 50:d0:c1:f3 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQM515uRlyifcbmFJ5X3sgflv6QIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIzMTAwMDQxNloX DTI1MTIzMDAwMDkxNlowMzExMC8GA1UEAxMoM0Q5MzY4ODIwMjkzMUQ3MjMyMkE3 RUUwMDUzOTY0QTJERDhFQjQ1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7FLRF4OoQL3aY+Z5Swv3x5en8lvbHyt/V78sE6qpe3ZLc8/MGXkjSBQSY9 5HZmNcyN4ejkl1UN2/qVuQB3AGGYvi+bRF5fkPBfw54Z6Ki0k/YhgF/HXbME+PqV bGcLT+EXWBnm2Q6+aLTZrzDIdXqR9pdJ5ckEB0uZK2bmUS2As5D7LuuR7TO8R6Fo lHAk9+RDBLz3tfq6s5fTDW3aB1fh6nQ4YnW8QwYtzUbAj7GN52I2EUxR+cy6iP+l +AfaJ/tVnlBVUk0W18n1WoYT18d1PZdM9vnVMjtMAadgKqBks2yvFZP6PAonQHRw 0HfflpQ3/6JExTCrokbb/0fFZRcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD2TaIICkx1yMip+4AU5ZKLdjrRXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iNmQ4ODQ5Ni1iMmJhLTRkMTMtOTgyNS1hZTM4YWZmMWRhMTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2ZDg4NDk2 LWIyYmEtNGQxMy05ODI1LWFlMzhhZmYxZGExNS8wLzNEOTM2ODgyMDI5MzFENzIz MjJBN0VFMDA1Mzk2NEEyREQ4RUI0NTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuEAwDQYJKoZIhvcNAQELBQADggEBAHIJfVeg7MdfqDUtG7SFA/e8h36/P+uS UXsgbNrRIKz/gnTKUfQdxe2oZG9o5Tzg7vnFDDoLxMj/6+tB+09iapE1x9qJsqEd 3tdimPQoNLWHG6eiePElC/JEqAYAym0oXl4m4St26qsrVdQUe2nG5KpDVWJCOY50 9KWULKYEw7SCa8/MPv2IMl+yeNmlJeUoAOMEmJIsAK9n8gjS4mED26Yglld7mp9Q UMGcw4N6JX6cub9ni0C6vd6tt0aJmyZZmRMCRtIN4M8/79h3e5pgybYJpKK8jQup 52i0req5IZ8z8Hkipog2PcF8vGAq90B8VxbHjUO/F0ZOkTNZSlDQwfM= -----END CERTIFICATE-----Generated at Sat Apr 5 10:15:41 2025 by rpki-client