$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/64848BA7A76415C6458AAC267B0A57658022C3C5.cer File: 64848BA7A76415C6458AAC267B0A57658022C3C5.cer (raw, json) Hash identifier: FrMfH7h93xax2NNT3DTDBth3xWs4R5ODxgXlMHrenX4= Subject key identifier: 64:84:8B:A7:A7:64:15:C6:45:8A:AC:26:7B:0A:57:65:80:22:C3:C5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 26773C910709AC835AE1F41E7608CAB5FFB02600 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/64848BA7A76415C6458AAC267B0A57658022C3C5.mft caRepository: rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 05 Nov 2024 23:17:53 +0000 Certificate not after: Tue 04 Nov 2025 23:22:53 +0000 Subordinate resources: IP: 103.179.68.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:77:3c:91:07:09:ac:83:5a:e1:f4:1e:76:08:ca:b5:ff:b0:26:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 5 23:17:53 2024 GMT Not After : Nov 4 23:22:53 2025 GMT Subject: CN=64848BA7A76415C6458AAC267B0A57658022C3C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8c:23:9f:ac:b5:d3:5e:31:16:8c:90:95:52: 60:88:20:37:97:6a:e7:15:c8:d7:c8:f7:18:db:f6: 0d:65:16:6a:08:e9:5c:32:7d:c4:7f:c6:d6:a6:5e: 90:4c:27:b2:ff:cd:3b:63:15:b1:bf:24:69:1b:59: d3:4f:f0:55:02:1e:96:c2:2c:5d:7b:23:c3:26:d3: 09:77:e6:5e:68:8a:26:93:d9:1f:64:ee:a9:ba:83: 4d:e0:d1:fe:8a:c3:65:9e:12:9a:06:b2:91:bb:11: c8:4c:ff:e6:87:b1:d7:40:1c:76:bb:31:c9:1a:53: c0:f1:07:8c:34:55:b7:30:41:4f:8e:d2:9b:38:a9: 21:cb:24:29:72:f5:46:d6:2b:22:46:63:c0:31:b8: 9d:d1:c5:08:12:38:af:a2:ca:8c:a3:ee:35:c5:0c: 1b:0b:53:3a:4b:4c:82:56:20:2a:25:44:9b:ba:f5: e0:ce:1a:6a:72:8c:5f:d0:a4:08:3e:93:41:47:70: ee:0f:09:f3:46:49:42:d1:3a:dd:28:42:6a:74:66: a7:6e:ba:b1:54:20:97:4a:aa:9b:55:67:53:a3:d3: ba:26:7e:09:e0:61:6e:dc:52:e3:b4:3f:81:16:bf: f1:28:bb:74:4c:bc:67:85:4c:f9:d9:5d:36:07:71: 73:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:84:8B:A7:A7:64:15:C6:45:8A:AC:26:7B:0A:57:65:80:22:C3:C5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/64848BA7A76415C6458AAC267B0A57658022C3C5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.68.0/24 Signature Algorithm: sha256WithRSAEncryption 4a:58:80:3e:a9:65:e6:0a:c9:94:f4:d3:c7:20:a0:75:57:6f: 5c:9d:80:b1:01:f3:c2:42:22:82:fb:24:14:72:1b:85:b4:a7: 81:bb:24:0c:f6:71:10:88:84:2e:80:19:a3:26:e0:21:93:f8: 11:c0:aa:a4:af:5e:e5:59:4a:d6:54:02:43:44:49:6e:75:2a: f2:9e:9f:97:83:aa:ac:aa:83:4a:1e:a5:9c:51:67:6e:16:3f: 3b:97:85:1e:20:8a:fa:01:b1:0e:92:90:b7:5a:bc:68:9d:c6: 7b:4e:7e:d8:6e:bc:2e:c8:73:e0:46:61:e5:24:13:92:2a:47: 62:9d:a4:ed:c7:96:ab:e2:e6:0a:37:97:8b:f6:c2:36:e6:05: 2b:6d:41:9e:4d:37:b6:4e:f5:ab:05:29:55:ec:29:7e:e1:60: a9:f0:5a:8a:90:54:8b:45:60:67:2a:6a:a1:b4:27:64:3c:8a: 62:d0:00:d6:e7:38:58:70:21:fc:35:07:51:9b:4e:14:fa:2e: 23:86:f9:22:b6:37:e2:92:aa:92:37:5c:0c:5f:28:61:46:58: bd:ca:f8:d5:8c:d3:f1:01:af:02:ff:f0:e8:94:49:a1:06:3a: 5f:86:de:8f:14:c0:2e:97:4a:82:c8:92:26:4b:67:c3:d3:d4: 5d:98:81:a3 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJnc8kQcJrINa4fQedgjKtf+wJgAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwNTIzMTc1M1oX DTI1MTEwNDIzMjI1M1owMzExMC8GA1UEAxMoNjQ4NDhCQTdBNzY0MTVDNjQ1OEFB QzI2N0IwQTU3NjU4MDIyQzNDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2MI5+stdNeMRaMkJVSYIggN5dq5xXI18j3GNv2DWUWagjpXDJ9xH/G1qZe kEwnsv/NO2MVsb8kaRtZ00/wVQIelsIsXXsjwybTCXfmXmiKJpPZH2TuqbqDTeDR /orDZZ4SmgaykbsRyEz/5oex10AcdrsxyRpTwPEHjDRVtzBBT47SmzipIcskKXL1 RtYrIkZjwDG4ndHFCBI4r6LKjKPuNcUMGwtTOktMglYgKiVEm7r14M4aanKMX9Ck CD6TQUdw7g8J80ZJQtE63ShCanRmp266sVQgl0qqm1VnU6PTuiZ+CeBhbtxS47Q/ gRa/8Si7dEy8Z4VM+dldNgdxc78CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGSEi6enZBXGRYqsJnsKV2WAIsPFMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZDNlZDAxMi1hZmRiLTQyZmItOTcxYS1lMTYyYTlkZWM0NmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkM2VkMDEy LWFmZGItNDJmYi05NzFhLWUxNjJhOWRlYzQ2ZC8wLzY0ODQ4QkE3QTc2NDE1QzY0 NThBQUMyNjdCMEE1NzY1ODAyMkMzQzUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABns0QwDQYJKoZIhvcNAQELBQADggEBAEpYgD6pZeYKyZT008cgoHVXb1ydgLEB 88JCIoL7JBRyG4W0p4G7JAz2cRCIhC6AGaMm4CGT+BHAqqSvXuVZStZUAkNESW51 KvKen5eDqqyqg0oepZxRZ24WPzuXhR4givoBsQ6SkLdavGidxntOfthuvC7Ic+BG YeUkE5IqR2KdpO3Hlqvi5go3l4v2wjbmBSttQZ5NN7ZO9asFKVXsKX7hYKnwWoqQ VItFYGcqaqG0J2Q8imLQANbnOFhwIfw1B1GbThT6LiOG+SK2N+KSqpI3XAxfKGFG WL3K+NWM0/EBrwL/8OiUSaEGOl+G3o8UwC6XSoLIkiZLZ8PT1F2YgaM= -----END CERTIFICATE-----Generated at Sun Feb 16 20:41:53 2025 by rpki-client