$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/665ACFA171591B851B0550143E7029498F238AF0.cer File: 665ACFA171591B851B0550143E7029498F238AF0.cer (raw, json) Hash identifier: nmECYVKYjPWgFR3gFr2Zpiws9STNm21ORe/4mtd0EjA= Subject key identifier: 66:5A:CF:A1:71:59:1B:85:1B:05:50:14:3E:70:29:49:8F:23:8A:F0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0E8A97936552FCFB372D05B88D25BF4D0B144C05 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0/665ACFA171591B851B0550143E7029498F238AF0.mft caRepository: rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 15 May 2024 21:50:01 +0000 Certificate not after: Wed 14 May 2025 21:55:01 +0000 Subordinate resources: IP: 103.190.32.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:8a:97:93:65:52:fc:fb:37:2d:05:b8:8d:25:bf:4d:0b:14:4c:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: May 15 21:50:01 2024 GMT Not After : May 14 21:55:01 2025 GMT Subject: CN=665ACFA171591B851B0550143E7029498F238AF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2b:9c:30:00:c4:52:7f:31:d9:39:f0:9b:93: 94:82:a0:63:bb:df:1f:d2:ca:46:fc:ba:97:32:c2: 2b:9d:e2:d0:27:90:91:33:7a:3e:89:b0:bf:4d:06: d2:2e:a2:50:77:76:b7:74:8f:6e:46:0c:41:f8:74: 58:ae:7b:2b:da:98:fd:48:5d:91:58:06:d7:29:68: 30:c4:ba:9e:70:32:95:ea:a2:7d:bc:31:e9:b0:20: 58:7f:ca:80:f8:08:02:d5:3c:f0:88:81:10:df:46: 58:d2:a9:17:1c:b8:a4:a9:56:0c:1a:c8:42:3a:92: c2:dd:77:56:ab:96:c5:c3:fc:53:96:11:ae:ac:37: 3e:34:11:b3:f1:82:69:0a:5a:71:8c:72:11:dc:dc: c9:0d:86:b9:24:8f:b6:c5:6e:f8:e4:30:7a:91:01: 08:40:34:24:a2:bf:98:a5:b7:48:76:ce:cf:c6:95: 8f:74:44:d8:b6:47:f1:ac:f9:df:6d:f7:f5:21:dd: cc:d2:97:18:95:33:23:fc:dd:7d:81:24:13:19:75: 6e:9a:d3:78:04:19:93:d3:82:16:67:2a:dd:7e:bb: 24:3c:7c:e0:b9:f6:6f:52:6c:fb:b4:20:66:5f:aa: 29:86:f6:8f:c0:2c:72:04:14:9b:e5:31:df:b8:e8: 63:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 66:5A:CF:A1:71:59:1B:85:1B:05:50:14:3E:70:29:49:8F:23:8A:F0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0/665ACFA171591B851B0550143E7029498F238AF0.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.32.0/23 Signature Algorithm: sha256WithRSAEncryption 8f:4d:f6:eb:3e:c6:59:b5:a9:ca:e5:07:ce:70:7c:ea:57:df: 96:fc:41:21:f6:c7:03:8d:69:71:ee:20:a1:a2:c8:fa:fd:84: 5e:db:b1:ea:00:9f:eb:ae:14:64:25:84:18:5f:6e:2c:d3:b1: 00:05:c8:46:46:7b:b3:3e:c4:96:4d:be:f2:71:10:2e:7c:f0: f8:c2:c5:33:b4:95:68:31:ac:a8:32:15:81:c7:eb:6b:53:f5: 7a:20:58:b2:46:7d:f4:bd:27:e8:31:0d:3d:e8:1e:bb:91:9a: b4:d3:a0:84:ab:88:0e:44:53:48:44:d2:e5:1c:ab:0e:2d:10: ec:4d:41:3e:40:4d:82:d7:1c:98:2a:8d:01:89:ba:4c:ed:6f: 9e:f8:c6:ab:97:de:9d:f9:ca:f5:d8:6a:19:30:8c:63:02:2d: 77:9b:d8:6b:fe:05:3f:c6:8f:4a:7b:fc:9c:7d:89:45:4e:45: 3d:7a:23:a5:28:39:59:69:d7:94:22:bc:39:1c:30:ef:f5:aa: 53:06:82:ae:95:44:1b:ca:9c:a6:03:be:be:68:2b:19:80:d3: c3:9f:e8:62:47:c6:ca:80:1a:9b:56:c9:31:22:50:35:f3:f4: 25:b0:a9:40:7c:ad:5a:75:9e:91:a9:d9:b7:56:3a:be:1d:d9: f8:24:aa:37 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDoqXk2VS/Ps3LQW4jSW/TQsUTAUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUxNTIxNTAwMVoX DTI1MDUxNDIxNTUwMVowMzExMC8GA1UEAxMoNjY1QUNGQTE3MTU5MUI4NTFCMDU1 MDE0M0U3MDI5NDk4RjIzOEFGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0rnDAAxFJ/Mdk58JuTlIKgY7vfH9LKRvy6lzLCK53i0CeQkTN6Pomwv00G 0i6iUHd2t3SPbkYMQfh0WK57K9qY/UhdkVgG1yloMMS6nnAyleqifbwx6bAgWH/K gPgIAtU88IiBEN9GWNKpFxy4pKlWDBrIQjqSwt13VquWxcP8U5YRrqw3PjQRs/GC aQpacYxyEdzcyQ2GuSSPtsVu+OQwepEBCEA0JKK/mKW3SHbOz8aVj3RE2LZH8az5 32339SHdzNKXGJUzI/zdfYEkExl1bprTeAQZk9OCFmcq3X67JDx84Ln2b1Js+7Qg Zl+qKYb2j8AscgQUm+Ux37joY08CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGZaz6FxWRuFGwVQFD5wKUmPI4rwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YmVmNmU4ZC0xYWIwLTQxYzQtYjNhZS1hMjAwZDE3YTgyMWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiZWY2ZThk LTFhYjAtNDFjNC1iM2FlLWEyMDBkMTdhODIxYy8wLzY2NUFDRkExNzE1OTFCODUx QjA1NTAxNDNFNzAyOTQ5OEYyMzhBRjAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnviAwDQYJKoZIhvcNAQELBQADggEBAI9N9us+xlm1qcrlB85wfOpX35b8QSH2 xwONaXHuIKGiyPr9hF7bseoAn+uuFGQlhBhfbizTsQAFyEZGe7M+xJZNvvJxEC58 8PjCxTO0lWgxrKgyFYHH62tT9XogWLJGffS9J+gxDT3oHruRmrTToISriA5EU0hE 0uUcqw4tEOxNQT5ATYLXHJgqjQGJukztb574xquX3p35yvXYahkwjGMCLXeb2Gv+ BT/Gj0p7/Jx9iUVORT16I6UoOVlp15QivDkcMO/1qlMGgq6VRBvKnKYDvr5oKxmA 08Of6GJHxsqAGptWyTEiUDXz9CWwqUB8rVp1npGp2bdWOr4d2fgkqjc= -----END CERTIFICATE-----Generated at Sun Feb 16 20:38:57 2025 by rpki-client