$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer File: 415543D423E0BD035D612DEA9BF060290E5552D2.cer (raw, json) Hash identifier: vmbPFSuLWhTlyYABgVJQx80/XMrPJAnxNEEhZKcUAdg= Subject key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4F39B680DADC4401745FBCFCE08C1C0BE7509901 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.mft caRepository: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 01 Jan 2025 17:08:53 +0000 Certificate not after: Wed 31 Dec 2025 17:13:53 +0000 Subordinate resources: IP: 103.95.8.0/22 IP: 2001:df1:9300::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:39:b6:80:da:dc:44:01:74:5f:bc:fc:e0:8c:1c:0b:e7:50:99:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 1 17:08:53 2025 GMT Not After : Dec 31 17:13:53 2025 GMT Subject: CN=415543D423E0BD035D612DEA9BF060290E5552D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ed:94:3d:40:d6:d6:4a:14:51:e7:46:21:31: c9:d5:0c:72:d3:34:d5:e4:3d:11:a2:8b:06:47:9b: 42:0b:c7:82:27:51:a4:07:27:af:59:0e:f3:75:03: 8c:dd:a2:91:71:53:09:59:d1:ee:d2:0f:29:97:dc: 1b:19:ee:2c:8e:27:35:c6:d8:3e:75:b0:f2:c3:dc: bb:2b:d3:9e:4a:66:3a:0b:34:94:65:59:d9:4b:c2: de:31:2a:4a:24:05:97:4b:b4:84:c3:2c:0e:b7:37: 05:e5:9b:00:10:47:03:7c:d6:ca:9d:80:48:71:de: 4e:cb:2d:b6:b9:17:5e:be:a7:c6:60:36:6d:08:72: 74:09:81:71:7f:fc:95:49:be:15:f1:5a:fc:2e:28: 79:33:32:84:64:a5:9f:d3:f1:50:b9:b7:c2:1c:f5: 13:50:eb:d9:43:4e:9a:7b:cd:51:38:11:8c:08:8d: fd:87:7e:4b:6a:c8:72:7d:c9:68:b7:bd:bf:5c:57: 82:a2:ac:5d:b5:bb:46:d2:be:22:8c:fd:13:07:c2: ab:2c:18:da:57:f5:67:f3:1c:aa:a7:f6:64:18:50: ad:aa:47:ab:5b:46:15:bd:57:e1:95:60:09:d6:33: e8:24:3d:d3:a9:cc:f2:0c:7d:70:3b:1d:49:6e:e0: f5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.8.0/22 IPv6: 2001:df1:9300::/48 Signature Algorithm: sha256WithRSAEncryption 65:da:39:12:18:2b:dd:94:43:b3:f2:f6:6d:3e:27:e3:bc:25: 79:50:7e:81:a9:df:51:d2:79:24:ae:1e:61:ec:49:c4:69:d1: 7a:92:0f:a5:30:ad:61:39:b4:36:43:b8:b0:33:0f:91:05:56: 3e:f5:1e:0d:b8:fa:59:6a:59:19:42:a2:a5:75:9f:22:80:6d: ff:b9:af:d8:4e:83:29:b0:a2:94:2f:66:f3:c5:af:c6:28:61: 09:0c:0f:ee:e7:57:42:e0:6f:f9:4b:59:7f:14:02:af:6a:cb: 96:84:99:8d:b6:56:a0:e9:fd:e9:97:b6:e2:62:30:75:ed:09: 91:8d:29:43:7c:ab:84:60:e7:1e:78:8a:c8:1d:8f:01:d9:51: 97:6e:14:70:97:b0:a5:f3:a3:ea:78:3e:1d:fd:cb:3d:e9:74: ab:d2:2e:6a:c4:2c:93:1b:43:e4:d0:8f:a2:66:22:cf:8d:13: 3e:cd:40:17:ed:22:dd:92:dd:06:42:3c:48:9d:9c:3e:a8:17: f5:53:05:5d:22:d9:e9:43:bb:ae:f7:37:a8:65:c2:a4:d0:0f: c5:5a:9d:a7:83:9f:18:95:5b:9d:0f:d3:76:f6:54:ad:c9:9d: 35:34:59:f5:15:8f:19:b1:f7:73:c3:38:8c:66:4d:25:00:b7: e2:85:93:4e -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUTzm2gNrcRAF0X7z84IwcC+dQmQEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwMTE3MDg1M1oX DTI1MTIzMTE3MTM1M1owMzExMC8GA1UEAxMoNDE1NTQzRDQyM0UwQkQwMzVENjEy REVBOUJGMDYwMjkwRTU1NTJEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMftlD1A1tZKFFHnRiExydUMctM01eQ9EaKLBkebQgvHgidRpAcnr1kO83UD jN2ikXFTCVnR7tIPKZfcGxnuLI4nNcbYPnWw8sPcuyvTnkpmOgs0lGVZ2UvC3jEq SiQFl0u0hMMsDrc3BeWbABBHA3zWyp2ASHHeTssttrkXXr6nxmA2bQhydAmBcX/8 lUm+FfFa/C4oeTMyhGSln9PxULm3whz1E1Dr2UNOmnvNUTgRjAiN/Yd+S2rIcn3J aLe9v1xXgqKsXbW7RtK+Ioz9EwfCqywY2lf1Z/Mcqqf2ZBhQrapHq1tGFb1X4ZVg CdYz6CQ906nM8gx9cDsdSW7g9eMCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEFVQ9Qj4L0DXWEt6pvwYCkOVVLSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMzY0NjVlYy05MTYwLTQ1OWItOGQxMS05NDhmYzI2ZGExYzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNjQ2NWVj LTkxNjAtNDU5Yi04ZDExLTk0OGZjMjZkYTFjMC8wLzQxNTU0M0Q0MjNFMEJEMDM1 RDYxMkRFQTlCRjA2MDI5MEU1NTUyRDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnXwgwDwQCAAIwCQMHACABDfGTADANBgkqhkiG9w0BAQsFAAOCAQEAZdo5Ehgr 3ZRDs/L2bT4n47wleVB+ganfUdJ5JK4eYexJxGnRepIPpTCtYTm0NkO4sDMPkQVW PvUeDbj6WWpZGUKipXWfIoBt/7mv2E6DKbCilC9m88WvxihhCQwP7udXQuBv+UtZ fxQCr2rLloSZjbZWoOn96Ze24mIwde0JkY0pQ3yrhGDnHniKyB2PAdlRl24UcJew pfOj6ng+Hf3LPel0q9IuasQskxtD5NCPomYiz40TPs1AF+0i3ZLdBkI8SJ2cPqgX 9VMFXSLZ6UO7rvc3qGXCpNAPxVqdp4OfGJVbnQ/TdvZUrcmdNTRZ9RWPGbH3c8M4 jGZNJQC34oWTTg== -----END CERTIFICATE-----Generated at Sat Apr 5 07:17:49 2025 by rpki-client