$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.cer File: 44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.cer (raw, json) Hash identifier: yRRJR70wOtJVdaQDgafY0nrkZPrmIgNJNMxh+zpt9Oo= Subject key identifier: 44:43:0F:D6:AB:CA:B2:54:BA:E7:AE:F8:6E:5F:5D:77:7F:CC:80:45 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 77818A3A9334667A86048068AF67428CBFF898DB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.mft caRepository: rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 25 Aug 2024 05:17:23 +0000 Certificate not after: Sun 24 Aug 2025 05:22:23 +0000 Subordinate resources: IP: 103.114.76.0/22 IP: 2001:df4:f700::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:81:8a:3a:93:34:66:7a:86:04:80:68:af:67:42:8c:bf:f8:98:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 25 05:17:23 2024 GMT Not After : Aug 24 05:22:23 2025 GMT Subject: CN=44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fd:94:20:43:62:39:da:53:4d:46:b4:d6:df: 88:67:7c:e1:dc:63:b5:c6:a9:6f:fb:f2:31:ac:f5: 68:16:55:41:35:c3:5c:ac:8d:8e:d4:82:48:ff:f9: 97:4e:d1:e8:26:99:54:60:15:d2:72:dc:41:00:82: 05:05:13:13:10:2a:ac:b3:68:bc:82:ab:10:39:5c: 3e:22:ed:d9:8c:f9:1d:f9:a2:30:38:b6:ab:dc:e9: cb:28:7e:10:2c:1e:d9:3b:26:a8:8d:66:f5:9a:fb: 29:7b:1b:90:61:29:da:5f:e7:87:ef:ca:40:2b:28: 4a:9f:52:7c:c3:66:09:1f:64:56:f7:50:94:c3:28: 50:a3:c7:de:03:c1:bd:45:d5:a6:2a:07:f0:ff:1b: f5:fb:8e:c4:4c:8d:04:33:cb:09:3c:48:d8:90:9a: 81:47:fd:d9:5f:ed:9d:69:a0:3d:47:31:e4:bc:a4: 7c:d6:42:81:5a:37:f9:6a:78:1f:e9:59:41:cb:e2: 12:26:1d:06:12:f7:f5:76:4e:02:ad:02:16:cf:fe: f1:63:7b:e2:5e:6f:f9:0c:5c:ef:bc:26:86:a3:fc: a5:7b:55:7a:e6:4a:a5:71:45:4c:67:6a:47:e0:45: 93:06:0e:9b:9d:09:18:3f:e2:be:34:46:d3:40:cc: d3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 44:43:0F:D6:AB:CA:B2:54:BA:E7:AE:F8:6E:5F:5D:77:7F:CC:80:45 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.114.76.0/22 IPv6: 2001:df4:f700::/48 Signature Algorithm: sha256WithRSAEncryption 74:bc:31:b7:53:16:47:b1:32:a6:d3:0e:3f:58:6f:ef:8f:e9: e6:8e:60:9e:5c:ca:73:dd:be:00:f1:df:7d:f9:a0:0c:42:00: ea:d5:35:c7:d1:91:8c:6f:38:e8:c8:2a:bc:9f:98:77:79:61: 0b:47:00:f7:af:3d:cd:5d:27:86:8f:07:50:52:f4:f9:4b:2e: 2b:2d:be:9e:d1:53:1d:ef:bb:f5:d4:4b:db:bc:11:d4:28:0c: 91:51:f8:b0:af:8d:83:62:ef:68:df:84:70:7e:f5:dd:04:9a: 85:7a:e5:08:33:ec:a5:ba:ba:22:ea:b2:28:49:8c:7b:63:1c: 05:bb:d1:ad:7d:70:eb:59:00:35:24:92:4b:d7:99:6d:10:0f: c1:34:4c:20:4c:b0:d8:cc:85:d2:e4:01:d6:6f:8f:08:31:48: 83:c9:5a:24:93:ef:0b:50:0a:eb:4c:d4:7d:4e:e8:f4:bb:08: af:b7:41:3e:99:0f:e3:f1:21:d3:34:7e:10:0e:91:43:4a:94: 56:0b:a9:de:ee:52:66:3e:df:86:52:15:50:55:f2:e2:11:a1: b5:97:dd:03:bc:26:83:45:60:0b:8c:ac:0c:fc:75:ed:bc:1f: a9:ad:83:6e:26:ca:7b:37:98:a3:96:62:52:04:e6:7d:1d:8b: 40:69:3b:32 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUd4GKOpM0ZnqGBIBor2dCjL/4mNswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgyNTA1MTcyM1oX DTI1MDgyNDA1MjIyM1owMzExMC8GA1UEAxMoNDQ0MzBGRDZBQkNBQjI1NEJBRTdB RUY4NkU1RjVENzc3RkNDODA0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/9lCBDYjnaU01GtNbfiGd84dxjtcapb/vyMaz1aBZVQTXDXKyNjtSCSP/5 l07R6CaZVGAV0nLcQQCCBQUTExAqrLNovIKrEDlcPiLt2Yz5HfmiMDi2q9zpyyh+ ECwe2TsmqI1m9Zr7KXsbkGEp2l/nh+/KQCsoSp9SfMNmCR9kVvdQlMMoUKPH3gPB vUXVpioH8P8b9fuOxEyNBDPLCTxI2JCagUf92V/tnWmgPUcx5LykfNZCgVo3+Wp4 H+lZQcviEiYdBhL39XZOAq0CFs/+8WN74l5v+Qxc77wmhqP8pXtVeuZKpXFFTGdq R+BFkwYOm50JGD/ivjRG00DM0xMCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFERDD9aryrJUuueu+G5fXXd/zIBFMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hODU0NzdjZS0wNzE3LTQ3YzAtODc2Ni04YjliZWMwYzA4NmMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NTQ3N2Nl LTA3MTctNDdjMC04NzY2LThiOWJlYzBjMDg2Yy8wLzQ0NDMwRkQ2QUJDQUIyNTRC QUU3QUVGODZFNUY1RDc3N0ZDQzgwNDUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnckwwDwQCAAIwCQMHACABDfT3ADANBgkqhkiG9w0BAQsFAAOCAQEAdLwxt1MW R7EyptMOP1hv74/p5o5gnlzKc92+APHfffmgDEIA6tU1x9GRjG846MgqvJ+Yd3lh C0cA9689zV0nho8HUFL0+UsuKy2+ntFTHe+79dRL27wR1CgMkVH4sK+Ng2LvaN+E cH713QSahXrlCDPspbq6IuqyKEmMe2McBbvRrX1w61kANSSSS9eZbRAPwTRMIEyw 2MyF0uQB1m+PCDFIg8laJJPvC1AK60zUfU7o9LsIr7dBPpkP4/Eh0zR+EA6RQ0qU Vgup3u5SZj7fhlIVUFXy4hGhtZfdA7wmg0VgC4ysDPx17bwfqa2DbibKezeYo5Zi UgTmfR2LQGk7Mg== -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:01 2025 by rpki-client