$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer File: 5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer (raw, json) Hash identifier: a3Qc/d5Ic7yvcBP+r/SU9kYf3xLxRamuHtSjWf8n/OQ= Subject key identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 126E0C495AA658439F8236DCEBD3689A8F8CE90D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 12 Jun 2024 21:18:03 +0000 Certificate not after: Wed 11 Jun 2025 21:23:03 +0000 Subordinate resources: IP: 103.164.150.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:6e:0c:49:5a:a6:58:43:9f:82:36:dc:eb:d3:68:9a:8f:8c:e9:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jun 12 21:18:03 2024 GMT Not After : Jun 11 21:23:03 2025 GMT Subject: CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:03:a4:e9:64:d9:6b:75:a5:b5:8e:5f:90:a9: ab:7b:6e:e7:37:45:ce:92:7f:bc:fd:78:b6:65:d7: 2b:86:1f:0c:9d:56:39:1d:53:fa:e0:c4:56:25:c1: 97:42:96:12:85:3e:7e:77:d1:20:a7:25:7a:bb:a4: 37:65:5a:a9:e9:27:7f:5e:74:59:46:a4:89:eb:50: 19:7d:f1:fc:ff:40:71:cc:36:1d:7f:75:2b:d5:3e: a0:72:60:90:56:80:a8:0b:d0:e4:03:ae:b5:5e:4e: 10:76:14:9e:4a:75:7a:2f:10:ad:8f:7c:3f:29:64: c4:54:59:50:43:e8:4b:81:72:31:27:00:44:d5:b0: e1:15:99:64:9c:07:7e:d0:be:20:89:a9:5e:f8:cf: c9:eb:8a:e1:be:de:f2:39:3b:55:82:02:c4:2f:2b: aa:e7:1e:87:74:a7:13:76:87:6b:3b:17:d7:3e:8c: da:3e:ca:4a:75:4d:da:7e:ee:b7:ee:7f:80:66:06: 34:28:fa:ae:be:e8:da:06:cc:6f:3a:01:20:5c:a2: 91:ca:44:47:c4:76:77:a1:b5:69:f3:88:d5:8e:df: 29:d3:c3:27:03:97:bf:db:8c:d9:3a:08:fd:da:dd: c4:92:40:24:4c:44:4e:2b:b0:f6:9b:a6:00:70:89: cd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.150.0/23 Signature Algorithm: sha256WithRSAEncryption 30:9f:6b:6c:fd:11:6a:c0:ae:a7:d7:93:e3:98:98:5c:10:57: 94:96:4b:93:e0:7b:a6:d1:ac:73:c8:be:da:b3:b3:5d:86:8e: f4:67:6a:e2:41:ee:e9:6e:5a:42:4f:92:57:e5:dc:a4:a1:82: 51:83:a7:b2:c0:f5:9c:01:3d:e3:c0:ad:ea:6d:54:50:50:5d: d1:47:f8:d4:5f:e2:6f:f0:c7:67:41:fe:60:7b:25:f8:c3:5d: 74:b4:84:b6:60:da:eb:13:32:08:ac:f0:62:50:76:95:6f:16: 2b:67:ae:92:94:c6:f0:0f:a1:2a:d9:1b:7c:9f:cd:98:12:6d: 4c:0b:60:a6:77:4e:c7:a2:1b:85:3c:f7:3c:00:3e:0d:00:d9: 1d:e8:c5:47:b7:f5:0e:85:80:d6:f5:b5:4e:1f:29:94:3a:2d: 4e:72:9e:42:71:58:e4:4c:94:38:48:b2:c2:56:ac:21:6c:73: 73:83:73:2d:12:72:ab:1e:2f:37:74:08:7a:78:29:f8:8e:e9: a4:bb:3a:93:a7:e9:32:eb:b2:df:b7:a2:8d:d9:85:5e:c4:d4: 5f:b0:93:53:70:22:f3:bf:4c:13:7c:a9:0e:50:a8:85:7e:8f: df:4a:f8:81:cb:7b:9b:27:ec:52:44:6e:d9:95:0b:17:ed:df: 3e:8d:ea:8d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEm4MSVqmWEOfgjbc69Nomo+M6Q0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxMjIxMTgwM1oX DTI1MDYxMTIxMjMwM1owMzExMC8GA1UEAxMoNUMxREM3RTg3NDU3QTkxRjM1OTE1 QUYxREUzRkJCQ0MyRTZCM0Q4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQDpOlk2Wt1pbWOX5Cpq3tu5zdFzpJ/vP14tmXXK4YfDJ1WOR1T+uDEViXB l0KWEoU+fnfRIKclerukN2Vaqeknf150WUakietQGX3x/P9Accw2HX91K9U+oHJg kFaAqAvQ5AOutV5OEHYUnkp1ei8QrY98PylkxFRZUEPoS4FyMScARNWw4RWZZJwH ftC+IImpXvjPyeuK4b7e8jk7VYICxC8rquceh3SnE3aHazsX1z6M2j7KSnVN2n7u t+5/gGYGNCj6rr7o2gbMbzoBIFyikcpER8R2d6G1afOI1Y7fKdPDJwOXv9uM2ToI /drdxJJAJExETiuw9pumAHCJzW0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFwdx+h0V6kfNZFa8d4/u8wuaz2PMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzg4NDQyYi1jNDhlLTRiYTAtOGFkNy01OGUxMjYzYzZkYzcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjODg0NDJi LWM0OGUtNGJhMC04YWQ3LTU4ZTEyNjNjNmRjNy8wLzVDMURDN0U4NzQ1N0E5MUYz NTkxNUFGMURFM0ZCQkNDMkU2QjNEOEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnpJYwDQYJKoZIhvcNAQELBQADggEBADCfa2z9EWrArqfXk+OYmFwQV5SWS5Pg e6bRrHPIvtqzs12GjvRnauJB7uluWkJPklfl3KShglGDp7LA9ZwBPePAreptVFBQ XdFH+NRf4m/wx2dB/mB7JfjDXXS0hLZg2usTMgis8GJQdpVvFitnrpKUxvAPoSrZ G3yfzZgSbUwLYKZ3TseiG4U89zwAPg0A2R3oxUe39Q6FgNb1tU4fKZQ6LU5ynkJx WORMlDhIssJWrCFsc3ODcy0ScqseLzd0CHp4KfiO6aS7OpOn6TLrst+3oo3ZhV7E 1F+wk1NwIvO/TBN8qQ5QqIV+j99K+IHLe5sn7FJEbtmVCxft3z6N6o0= -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:30 2025 by rpki-client