$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer File: 5A33E6B82000487B204D2E284BCA10AF293CB41E.cer (raw, json) Hash identifier: CMqCEXh93r8OFMYefP/67Eqe0aiigPzLrjf5n+Mxal4= Subject key identifier: 5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 617BA11BE7DC66E5EC3D085257B80CA06DB603DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.mft caRepository: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 10 May 2024 13:09:01 +0000 Certificate not after: Fri 09 May 2025 13:14:01 +0000 Subordinate resources: IP: 103.142.240.0/23 IP: 2405:45c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:7b:a1:1b:e7:dc:66:e5:ec:3d:08:52:57:b8:0c:a0:6d:b6:03:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: May 10 13:09:01 2024 GMT Not After : May 9 13:14:01 2025 GMT Subject: CN=5A33E6B82000487B204D2E284BCA10AF293CB41E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:76:c2:b5:66:e1:15:58:af:90:17:3f:2d:57: c8:86:c5:98:ca:d8:18:d0:4d:10:fe:aa:1e:6e:39: a6:d2:ac:56:a1:bc:cf:3d:e7:f7:97:94:f8:ad:bf: 4e:42:3a:aa:90:71:94:cb:98:61:a5:91:c0:1d:50: 39:b4:40:44:8b:0e:a2:05:49:c7:b7:a0:16:92:27: d6:90:8e:db:b6:05:a9:ad:52:67:54:44:eb:f9:5c: 79:dc:4f:5a:20:6c:a1:4b:43:51:8d:db:90:67:33: 26:bd:d2:8f:e2:1d:04:12:ba:ba:d0:09:9e:f1:f6: 38:00:87:bc:0a:fc:86:ef:9e:44:20:ea:92:4e:86: b4:e4:12:1b:29:40:f4:5a:cc:17:d9:ee:ba:5c:96: 91:38:37:88:85:17:1c:8f:cf:47:35:27:7d:09:73: d0:c4:1b:75:b9:12:69:2f:cc:db:b1:bf:63:f7:74: 6b:29:f3:f6:7e:43:0a:84:8d:bf:2b:58:14:53:df: 89:0e:70:e1:74:27:87:5d:a4:67:67:2c:bb:6d:a0: b5:5a:04:8d:c5:58:89:23:09:79:2d:73:80:fb:f6: 6c:61:2b:8e:a2:de:64:80:a5:52:09:66:82:8d:18: 75:45:c8:ad:ce:c5:14:a9:50:c0:0a:66:7d:a8:46: c5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.240.0/23 IPv6: 2405:45c0::/32 Signature Algorithm: sha256WithRSAEncryption 2b:58:25:e7:54:e7:6d:2f:9f:38:d4:b8:32:88:ec:4a:83:4c: a4:2d:f1:49:82:12:23:71:ab:36:31:ce:37:61:c4:f5:cc:49: df:3f:b9:3d:8b:a7:a9:75:72:ba:2b:d2:10:9f:d0:95:35:da: 7c:e8:7c:bc:e1:fb:93:a6:04:af:91:f9:7c:48:3a:d4:9b:56: 66:40:0f:84:50:6e:8a:cd:3a:67:24:0c:08:36:51:df:8e:e2: 01:f6:b5:49:8d:a7:58:75:82:22:ab:cd:9e:85:15:c8:89:b3: d9:13:34:6d:02:d6:bd:aa:f4:59:50:39:ef:58:6e:36:fb:b7: fa:1c:01:88:8f:7e:5f:9c:e4:66:25:87:fe:dc:df:a2:83:f9: 4b:a2:70:3f:d5:ac:94:16:46:e6:7c:8d:9e:fb:7b:68:17:60: 15:61:fc:26:82:5e:d2:54:b0:25:4d:71:4d:f3:01:39:ad:95: cd:cf:9d:e8:18:40:4a:94:ff:21:fc:c2:b1:51:de:40:78:b4: cd:37:c4:14:3d:09:d4:b6:6d:f3:2c:19:da:3f:40:b0:35:b2: 9d:ed:e8:78:92:ef:a1:dd:f4:87:e4:74:5b:b4:74:0d:2e:d6: f5:38:01:7b:d9:d8:75:e2:ae:99:2b:30:77:43:94:5f:c8:87: 98:f9:0d:41 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUYXuhG+fcZuXsPQhSV7gMoG22A94wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUxMDEzMDkwMVoX DTI1MDUwOTEzMTQwMVowMzExMC8GA1UEAxMoNUEzM0U2QjgyMDAwNDg3QjIwNEQy RTI4NEJDQTEwQUYyOTNDQjQxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANd2wrVm4RVYr5AXPy1XyIbFmMrYGNBNEP6qHm45ptKsVqG8zz3n95eU+K2/ TkI6qpBxlMuYYaWRwB1QObRARIsOogVJx7egFpIn1pCO27YFqa1SZ1RE6/lcedxP WiBsoUtDUY3bkGczJr3Sj+IdBBK6utAJnvH2OACHvAr8hu+eRCDqkk6GtOQSGylA 9FrMF9nuulyWkTg3iIUXHI/PRzUnfQlz0MQbdbkSaS/M27G/Y/d0aynz9n5DCoSN vytYFFPfiQ5w4XQnh12kZ2csu22gtVoEjcVYiSMJeS1zgPv2bGErjqLeZIClUglm go0YdUXIrc7FFKlQwApmfahGxYMCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFoz5rggAEh7IE0uKEvKEK8pPLQeMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ZTQxYmE3ZS02YzQyLTRjMjItYjEzYy01NDhmYzcyNzJhM2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlNDFiYTdl LTZjNDItNGMyMi1iMTNjLTU0OGZjNzI3MmEzZC8wLzVBMzNFNkI4MjAwMDQ4N0Iy MDREMkUyODRCQ0ExMEFGMjkzQ0I0MUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnjvAwDQQCAAIwBwMFACQFRcAwDQYJKoZIhvcNAQELBQADggEBACtYJedU520v nzjUuDKI7EqDTKQt8UmCEiNxqzYxzjdhxPXMSd8/uT2Lp6l1cror0hCf0JU12nzo fLzh+5OmBK+R+XxIOtSbVmZAD4RQborNOmckDAg2Ud+O4gH2tUmNp1h1giKrzZ6F FciJs9kTNG0C1r2q9FlQOe9Ybjb7t/ocAYiPfl+c5GYlh/7c36KD+UuicD/VrJQW RuZ8jZ77e2gXYBVh/CaCXtJUsCVNcU3zATmtlc3PnegYQEqU/yH8wrFR3kB4tM03 xBQ9CdS2bfMsGdo/QLA1sp3t6HiS76Hd9IfkdFu0dA0u1vU4AXvZ2HXirpkrMHdD lF/Ih5j5DUE= -----END CERTIFICATE-----Generated at Sun Feb 16 21:02:02 2025 by rpki-client