$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/6437999FD06F2C7F0F16F8160CD6145F775884A4.cer File: 6437999FD06F2C7F0F16F8160CD6145F775884A4.cer (raw, json) Hash identifier: ftnuAq1S7GTawOpYC+GjdlsbB9UyDX0CMzKSognYMjg= Subject key identifier: 64:37:99:9F:D0:6F:2C:7F:0F:16:F8:16:0C:D6:14:5F:77:58:84:A4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6AD7C4CBFD28426E3509F566F7D3A9A11DC89559 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.mft caRepository: rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 12 Dec 2024 12:50:34 +0000 Certificate not after: Thu 11 Dec 2025 12:55:34 +0000 Subordinate resources: IP: 103.181.136.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:d7:c4:cb:fd:28:42:6e:35:09:f5:66:f7:d3:a9:a1:1d:c8:95:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 12 12:50:34 2024 GMT Not After : Dec 11 12:55:34 2025 GMT Subject: CN=6437999FD06F2C7F0F16F8160CD6145F775884A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:22:65:e3:79:6b:dc:5f:c9:ec:3a:40:85:5e: 99:b5:a2:22:df:e9:cc:a2:2c:0f:20:a3:64:9b:4d: cd:7a:24:ac:45:3f:f4:4d:ac:b5:56:95:db:8c:6d: 76:de:36:ec:58:2f:6f:92:b0:90:04:46:b0:8b:59: d6:30:68:0d:24:85:80:de:f4:b9:b8:7e:26:a0:ff: fd:3c:7a:04:10:a0:c2:c6:e4:05:dd:77:47:9b:51: 49:a0:62:db:c2:8f:10:ac:10:36:60:a2:d4:a7:f9: 24:fe:cd:23:2d:7c:bf:f0:29:c2:a0:97:6d:d2:a6: fd:53:20:8f:ff:0b:07:1e:84:85:10:f6:40:f0:82: bd:3c:04:34:02:59:f4:97:89:a1:14:cf:c5:2e:22: c7:34:96:6b:05:5c:d7:bf:ec:93:63:35:6e:b3:ad: 3c:88:42:d3:bc:67:f6:c4:42:47:bf:e2:84:1d:45: f9:73:38:e8:24:9a:5d:b3:c1:f0:ac:26:42:45:23: b4:dd:65:0c:ad:1e:6e:a6:00:66:28:90:5c:bb:99: e2:c9:b3:3d:20:46:4f:40:cf:1b:75:b0:03:94:c4: 29:4b:ba:f7:3f:33:1b:92:58:9b:16:a6:57:65:26: 03:4b:2a:bc:09:eb:b7:9c:0b:fd:35:94:14:4e:77: eb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:37:99:9F:D0:6F:2C:7F:0F:16:F8:16:0C:D6:14:5F:77:58:84:A4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.136.0/23 Signature Algorithm: sha256WithRSAEncryption 35:60:d0:88:38:68:96:cd:ca:0a:50:47:e9:f6:33:b0:28:88: e0:12:6b:c9:5f:c8:71:0a:d6:08:6d:2b:ea:a5:57:f8:98:cb: b6:4a:b8:d7:d5:6c:af:17:f6:9b:30:04:da:2a:4f:64:90:91: 8e:e3:ee:59:23:be:8d:11:0d:38:0f:c3:b4:f0:47:f5:8d:db: d9:0f:4d:62:e3:d5:b9:f0:0e:b4:18:2e:86:24:ef:65:6d:ae: c3:f9:c3:6b:a9:50:b4:c0:55:5c:d6:4a:7c:d8:79:d2:eb:75: f5:78:f0:2f:3b:23:e1:04:62:92:de:33:e9:74:60:0f:94:d2: 46:ee:0b:3b:c5:57:8f:71:ff:7b:0d:bd:9c:c0:7b:c3:65:82: 5e:50:ab:f8:ef:c7:d2:82:e0:af:f1:ce:10:06:21:0c:b7:33: 2c:db:d4:8e:ca:ae:31:63:66:62:19:73:63:80:9c:c3:b4:7e: 73:5a:72:96:7e:57:80:89:e7:5b:42:1e:06:d8:63:30:4e:60: 3b:68:7f:0a:6f:a9:ed:a0:15:6d:27:77:1b:8f:03:f0:08:87: 6a:75:aa:f8:dd:43:43:05:94:76:7a:b7:3a:80:3d:9b:67:cc: 51:10:9b:5f:6e:2b:7d:06:4b:20:69:02:3f:65:93:c6:e2:e6: 16:00:2a:89 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUatfEy/0oQm41CfVm99OpoR3IlVkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMjEyNTAzNFoX DTI1MTIxMTEyNTUzNFowMzExMC8GA1UEAxMoNjQzNzk5OUZEMDZGMkM3RjBGMTZG ODE2MENENjE0NUY3NzU4ODRBNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIiZeN5a9xfyew6QIVembWiIt/pzKIsDyCjZJtNzXokrEU/9E2stVaV24xt dt427Fgvb5KwkARGsItZ1jBoDSSFgN70ubh+JqD//Tx6BBCgwsbkBd13R5tRSaBi 28KPEKwQNmCi1Kf5JP7NIy18v/ApwqCXbdKm/VMgj/8LBx6EhRD2QPCCvTwENAJZ 9JeJoRTPxS4ixzSWawVc17/sk2M1brOtPIhC07xn9sRCR7/ihB1F+XM46CSaXbPB 8KwmQkUjtN1lDK0ebqYAZiiQXLuZ4smzPSBGT0DPG3WwA5TEKUu69z8zG5JYmxam V2UmA0sqvAnrt5wL/TWUFE536zECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGQ3mZ/Qbyx/Dxb4FgzWFF93WISkMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84NzZmZGM2MC04MDIzLTQwY2QtYWFhNC1jZDZlZDIyYzRkNDUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NmZkYzYw LTgwMjMtNDBjZC1hYWE0LWNkNmVkMjJjNGQ0NS8wLzY0Mzc5OTlGRDA2RjJDN0Yw RjE2RjgxNjBDRDYxNDVGNzc1ODg0QTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFntYgwDQYJKoZIhvcNAQELBQADggEBADVg0Ig4aJbNygpQR+n2M7AoiOASa8lf yHEK1ghtK+qlV/iYy7ZKuNfVbK8X9pswBNoqT2SQkY7j7lkjvo0RDTgPw7TwR/WN 29kPTWLj1bnwDrQYLoYk72VtrsP5w2upULTAVVzWSnzYedLrdfV48C87I+EEYpLe M+l0YA+U0kbuCzvFV49x/3sNvZzAe8Nlgl5Qq/jvx9KC4K/xzhAGIQy3Myzb1I7K rjFjZmIZc2OAnMO0fnNacpZ+V4CJ51tCHgbYYzBOYDtofwpvqe2gFW0ndxuPA/AI h2p1qvjdQ0MFlHZ6tzqAPZtnzFEQm19uK30GSyBpAj9lk8bi5hYAKok= -----END CERTIFICATE-----Generated at Sat Apr 5 10:36:40 2025 by rpki-client