$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer File: 5DFC46925E2D4B3FB044F284111222A8B4C78392.cer (raw, json) Hash identifier: l3WQlFdPsSc/dT0k0ViAQk3wkq4dbvskHlWCePi2vIg= Subject key identifier: 5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 20175D9831267254E89E810E6A37F74D633235CA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.mft caRepository: rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 27 Nov 2024 14:52:42 +0000 Certificate not after: Wed 26 Nov 2025 14:57:42 +0000 Subordinate resources: IP: 103.22.98.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:17:5d:98:31:26:72:54:e8:9e:81:0e:6a:37:f7:4d:63:32:35:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 27 14:52:42 2024 GMT Not After : Nov 26 14:57:42 2025 GMT Subject: CN=5DFC46925E2D4B3FB044F284111222A8B4C78392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:03:3b:e9:ea:ed:6f:1e:9b:a7:b3:f1:a0:72: 23:59:3b:66:bd:48:d3:75:87:26:8b:c9:b1:a0:22: 1e:e3:fe:05:db:9c:13:b4:aa:82:12:f3:b5:1f:76: 71:e5:97:2c:79:e1:de:4d:3b:a0:f9:bc:eb:94:38: a2:5c:57:0a:a1:8c:d5:ab:3f:46:d9:e1:2f:e8:54: ea:f3:f4:de:c1:1b:30:43:0e:f9:af:d2:e3:b4:30: 6d:2c:88:95:14:69:13:d0:1b:ed:49:76:1c:27:de: 56:30:0b:0a:85:ad:e0:a8:92:a0:be:03:ec:7f:55: 05:14:40:fc:46:70:e6:00:f5:f7:e7:49:92:00:44: d2:d1:30:9a:cc:a1:d3:a5:f9:6b:fe:b8:27:1d:be: cd:37:c9:a5:9b:70:04:94:e0:f2:68:14:2f:13:f2: fd:b2:42:bf:44:2d:1e:89:c8:4e:f8:14:05:e2:94: 27:c1:2e:72:a7:94:a4:39:d3:d1:68:4b:3e:bd:97: a7:b7:eb:03:76:cb:d2:1b:9d:5e:55:d8:15:da:da: 87:f2:ae:78:5c:59:92:80:2f:99:b3:ca:37:9a:e9: 08:fe:e3:4e:32:54:e5:33:e0:e8:57:05:56:7f:6c: f3:97:52:54:e5:0c:14:fe:87:56:3d:24:5a:c2:a6: fc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.98.0/23 Signature Algorithm: sha256WithRSAEncryption 93:a9:b3:96:08:27:71:af:89:45:68:4c:3e:55:39:f1:94:a5: 44:ad:17:e8:b5:af:8c:82:c2:08:7b:e5:4a:b1:8b:69:9e:6d: 5a:12:c9:05:41:ff:2b:4a:6e:ed:e1:78:89:6d:1a:79:6a:ee: 6a:41:18:5c:3e:52:7b:8f:cb:d0:a4:87:22:63:c2:2d:40:40: c3:56:80:9f:2f:8c:dd:e7:c2:e8:0e:ca:24:7b:91:38:e2:de: 50:59:74:cf:66:ef:ed:57:4c:03:32:a5:1b:62:f5:a7:c4:8a: 68:ee:3a:74:67:6a:85:63:88:06:4e:c8:5b:75:ae:41:4b:ac: b9:51:10:b8:7f:0d:90:4a:19:4a:16:36:4c:d1:75:3a:5d:1d: cd:3f:0e:a1:50:47:23:ea:cd:ae:97:3e:ec:78:29:75:20:ab: ef:51:66:80:c6:62:27:93:f6:2f:5f:c0:ec:be:5d:7b:74:98: d9:b3:e9:96:b6:2d:d3:55:44:8b:17:c9:ed:ec:b9:f4:bf:9c: b7:87:96:fb:a2:39:92:b0:05:fa:61:f9:c7:8b:73:82:5c:06: 64:da:f8:48:b3:77:13:e3:50:4a:46:ff:6f:6c:01:1d:70:d6: f5:6a:48:cf:0f:e0:b2:c8:c9:aa:fc:14:fc:4b:59:24:ed:07: 31:7a:79:e1 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUIBddmDEmclTonoEOajf3TWMyNcowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyNzE0NTI0MloX DTI1MTEyNjE0NTc0MlowMzExMC8GA1UEAxMoNURGQzQ2OTI1RTJENEIzRkIwNDRG Mjg0MTExMjIyQThCNEM3ODM5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALoDO+nq7W8em6ez8aByI1k7Zr1I03WHJovJsaAiHuP+BducE7SqghLztR92 ceWXLHnh3k07oPm865Q4olxXCqGM1as/RtnhL+hU6vP03sEbMEMO+a/S47QwbSyI lRRpE9Ab7Ul2HCfeVjALCoWt4KiSoL4D7H9VBRRA/EZw5gD19+dJkgBE0tEwmsyh 06X5a/64Jx2+zTfJpZtwBJTg8mgULxPy/bJCv0QtHonITvgUBeKUJ8EucqeUpDnT 0WhLPr2Xp7frA3bL0hudXlXYFdrah/KueFxZkoAvmbPKN5rpCP7jTjJU5TPg6FcF Vn9s85dSVOUMFP6HVj0kWsKm/D0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFF38RpJeLUs/sETyhBESIqi0x4OSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kNzAxYjI3Ny1jODBjLTQ1ZDUtODA4OS1hOWVmYTM0MDU0MmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3MDFiMjc3 LWM4MGMtNDVkNS04MDg5LWE5ZWZhMzQwNTQyYS8wLzVERkM0NjkyNUUyRDRCM0ZC MDQ0RjI4NDExMTIyMkE4QjRDNzgzOTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnFmIwDQYJKoZIhvcNAQELBQADggEBAJOps5YIJ3GviUVoTD5VOfGUpUStF+i1 r4yCwgh75Uqxi2mebVoSyQVB/ytKbu3heIltGnlq7mpBGFw+UnuPy9CkhyJjwi1A QMNWgJ8vjN3nwugOyiR7kTji3lBZdM9m7+1XTAMypRti9afEimjuOnRnaoVjiAZO yFt1rkFLrLlRELh/DZBKGUoWNkzRdTpdHc0/DqFQRyPqza6XPux4KXUgq+9RZoDG YieT9i9fwOy+XXt0mNmz6Za2LdNVRIsXye3sufS/nLeHlvuiOZKwBfph+ceLc4Jc BmTa+EizdxPjUEpG/29sAR1w1vVqSM8P4LLIyar8FPxLWSTtBzF6eeE= -----END CERTIFICATE-----Generated at Sat Apr 5 10:05:29 2025 by rpki-client