$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/407919FF69A512DDAE7CCD48BE288F17073A5512.cer File: 407919FF69A512DDAE7CCD48BE288F17073A5512.cer (raw, json) Hash identifier: y0sQm87b2RBj4TMN2NQxY2yIAqS9T8e7MetQe0yX7aM= Subject key identifier: 40:79:19:FF:69:A5:12:DD:AE:7C:CD:48:BE:28:8F:17:07:3A:55:12 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 693BEA2BC7062255F142D7E71FFA5E33DB337956 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/72c00f79-49eb-4525-9026-a238ff448070/0/407919FF69A512DDAE7CCD48BE288F17073A5512.mft caRepository: rsync://repo-rpki.idnic.net/repo/72c00f79-49eb-4525-9026-a238ff448070/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 14 Aug 2024 05:02:49 +0000 Certificate not after: Wed 13 Aug 2025 05:07:49 +0000 Subordinate resources: IP: 103.120.232.0/24 IP: 2001:df6:2700::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:3b:ea:2b:c7:06:22:55:f1:42:d7:e7:1f:fa:5e:33:db:33:79:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 14 05:02:49 2024 GMT Not After : Aug 13 05:07:49 2025 GMT Subject: CN=407919FF69A512DDAE7CCD48BE288F17073A5512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:79:1a:8e:bc:25:e1:d3:85:e6:0d:d0:28:b9: 67:c8:21:52:e8:0c:0d:9b:e1:89:d9:c3:66:3b:c8: ac:35:fd:5f:ff:95:da:ac:0c:cf:af:2a:9f:11:26: 11:d7:69:1a:9a:86:e3:8f:d5:3a:75:c4:2d:a8:3b: f2:fb:a2:c3:3f:12:8b:54:c3:a8:1d:df:f8:d1:1b: 89:31:f0:4c:cc:04:9e:b9:22:52:a6:13:0f:81:9b: b9:bf:72:0f:41:49:5b:d1:c8:cb:80:2a:52:7e:48: 9a:79:dc:8f:ea:2d:20:c3:06:c0:b6:90:f3:4e:7b: 3f:51:1b:4e:61:1d:c8:f9:6f:9e:ff:63:43:df:fb: 72:e8:f4:72:17:79:bb:78:4f:dc:c0:19:1b:b1:6a: ff:d6:18:fc:6f:6f:bd:17:7e:ee:04:8e:21:d4:b2: fb:8d:a8:fe:f7:e2:f8:4c:41:5f:6b:f6:3c:7c:06: 95:e9:a6:c7:c2:9c:93:cf:fe:a8:71:30:79:42:7c: bd:d8:01:74:31:9f:3e:08:dc:bd:42:90:76:97:12: 9d:c3:d3:59:17:a5:1b:78:d1:6d:ca:87:a7:3f:ea: c3:40:80:17:89:32:39:8b:7e:54:d3:e7:19:70:05: d7:47:a7:d7:f1:ed:1a:e8:c8:79:7f:d1:ee:33:c9: a8:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 40:79:19:FF:69:A5:12:DD:AE:7C:CD:48:BE:28:8F:17:07:3A:55:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/72c00f79-49eb-4525-9026-a238ff448070/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/72c00f79-49eb-4525-9026-a238ff448070/0/407919FF69A512DDAE7CCD48BE288F17073A5512.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.232.0/24 IPv6: 2001:df6:2700::/48 Signature Algorithm: sha256WithRSAEncryption 02:99:92:70:e4:f8:f2:ee:1d:83:94:dd:2e:64:d8:f0:15:07: 51:43:44:25:b1:7d:88:35:cd:09:08:fd:38:98:4f:4a:b5:c9: 44:d6:b1:40:9a:d0:bc:34:9a:2d:d0:06:ea:41:0b:19:46:60: a6:3a:7e:5b:92:d1:d5:3b:2b:d1:46:31:47:ad:4a:f3:0d:df: 91:ef:56:20:3b:ee:cd:e4:b2:5e:2d:be:46:fd:3d:cd:c2:ec: d1:50:22:47:77:63:6a:f9:ef:02:c8:a6:07:44:5c:05:68:29: 78:59:08:15:7c:a1:7e:8f:68:46:09:c4:a1:28:45:5a:25:e5: cb:c6:17:fd:0f:84:6a:f5:7c:8d:58:22:4a:92:89:af:ba:15: 40:c1:9e:81:a3:d5:41:a7:77:52:98:a4:c2:7d:dc:ed:94:72: b3:60:0e:07:6d:cd:ac:b6:b7:98:f8:55:a2:8b:c4:32:a8:23: 82:11:f6:f5:92:35:5f:eb:b8:af:51:cb:55:69:a0:89:14:c0: b9:ab:ec:ae:37:2f:46:ff:79:4a:fd:39:1a:90:28:49:cb:94: a7:4d:22:d7:73:a1:10:7d:3d:6d:bb:0e:e4:ce:29:dd:a4:74: 55:f6:5b:b5:eb:3b:7a:4b:5d:f3:77:c9:52:91:a9:c5:81:16: 91:ea:0f:c4 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUaTvqK8cGIlXxQtfnH/peM9szeVYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxNDA1MDI0OVoX DTI1MDgxMzA1MDc0OVowMzExMC8GA1UEAxMoNDA3OTE5RkY2OUE1MTJEREFFN0ND RDQ4QkUyODhGMTcwNzNBNTUxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK95Go68JeHTheYN0Ci5Z8ghUugMDZvhidnDZjvIrDX9X/+V2qwMz68qnxEm EddpGpqG44/VOnXELag78vuiwz8Si1TDqB3f+NEbiTHwTMwEnrkiUqYTD4Gbub9y D0FJW9HIy4AqUn5Imnncj+otIMMGwLaQ8057P1EbTmEdyPlvnv9jQ9/7cuj0chd5 u3hP3MAZG7Fq/9YY/G9vvRd+7gSOIdSy+42o/vfi+ExBX2v2PHwGlemmx8Kck8/+ qHEweUJ8vdgBdDGfPgjcvUKQdpcSncPTWRelG3jRbcqHpz/qw0CAF4kyOYt+VNPn GXAF10en1/HtGujIeX/R7jPJqAkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEB5Gf9ppRLdrnzNSL4ojxcHOlUSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83MmMwMGY3OS00OWViLTQ1MjUtOTAyNi1hMjM4ZmY0NDgwNzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyYzAwZjc5 LTQ5ZWItNDUyNS05MDI2LWEyMzhmZjQ0ODA3MC8wLzQwNzkxOUZGNjlBNTEyRERB RTdDQ0Q0OEJFMjg4RjE3MDczQTU1MTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABneOgwDwQCAAIwCQMHACABDfYnADANBgkqhkiG9w0BAQsFAAOCAQEAApmScOT4 8u4dg5TdLmTY8BUHUUNEJbF9iDXNCQj9OJhPSrXJRNaxQJrQvDSaLdAG6kELGUZg pjp+W5LR1Tsr0UYxR61K8w3fke9WIDvuzeSyXi2+Rv09zcLs0VAiR3djavnvAsim B0RcBWgpeFkIFXyhfo9oRgnEoShFWiXly8YX/Q+EavV8jVgiSpKJr7oVQMGegaPV Qad3Upikwn3c7ZRys2AOB23NrLa3mPhVoovEMqgjghH29ZI1X+u4r1HLVWmgiRTA uavsrjcvRv95Sv05GpAoScuUp00i13OhEH09bbsO5M4p3aR0VfZbtes7ektd83fJ UpGpxYEWkeoPxA== -----END CERTIFICATE-----Generated at Sun Feb 16 20:52:27 2025 by rpki-client