$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/73B96F5AC43A4212760D6629FB36B21B2E801D90.cer File: 73B96F5AC43A4212760D6629FB36B21B2E801D90.cer (raw, json) Hash identifier: cMXLHDiWKTxK+faRnwxhTByn4Zoxhz1mfAgwCa6hA8g= Subject key identifier: 73:B9:6F:5A:C4:3A:42:12:76:0D:66:29:FB:36:B2:1B:2E:80:1D:90 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3CBA0B4C9CD11E4677C8D0DE049B949BBF12EB42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6cbea81d-85ac-40a5-a7f5-3fa362b17bcb/0/73B96F5AC43A4212760D6629FB36B21B2E801D90.mft caRepository: rsync://repo-rpki.idnic.net/repo/6cbea81d-85ac-40a5-a7f5-3fa362b17bcb/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 06 Aug 2024 08:38:07 +0000 Certificate not after: Tue 05 Aug 2025 08:43:07 +0000 Subordinate resources: IP: 103.174.232.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:ba:0b:4c:9c:d1:1e:46:77:c8:d0:de:04:9b:94:9b:bf:12:eb:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 6 08:38:07 2024 GMT Not After : Aug 5 08:43:07 2025 GMT Subject: CN=73B96F5AC43A4212760D6629FB36B21B2E801D90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:fc:e8:34:96:22:f4:e4:33:70:88:eb:c2: 7f:cc:f9:38:20:ae:7e:d3:29:71:18:88:84:85:f6: ca:5e:02:6a:c0:df:94:f5:26:d7:52:2c:5c:66:3f: 32:69:e1:30:ca:60:ef:a3:84:d6:1e:94:cb:bc:14: 41:0b:8d:68:63:4b:d9:75:89:6d:51:b9:aa:b6:a3: ad:81:29:d0:7e:14:b9:a9:91:19:43:ea:0a:1e:81: d5:57:61:8c:71:c1:74:8c:79:33:49:e8:ce:38:c7: ef:68:86:3b:0b:79:4c:77:f7:1f:be:7b:bf:8c:cc: 2f:b3:65:f3:48:3d:68:9f:5d:f5:63:cd:03:6d:27: 92:66:14:13:af:54:6c:07:06:b6:ab:52:15:2c:02: d9:cc:f8:ce:a4:09:33:8f:d9:fb:d4:ec:18:61:41: fa:d1:f8:3a:0d:bd:e5:78:57:38:e4:e1:14:98:bb: 03:52:7b:bc:17:f4:30:ac:b2:a8:70:c6:ca:ee:b1: 6b:d9:44:4e:a4:9b:a4:5c:23:a1:69:f0:4e:a0:93: 96:5e:a7:1d:35:91:b4:32:bd:d0:3e:4d:c4:ea:0b: e4:61:75:21:aa:63:bc:12:5d:a0:78:67:b7:0e:f6: 2e:0c:06:2b:1f:79:c0:23:a5:83:59:50:9c:63:1f: 86:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 73:B9:6F:5A:C4:3A:42:12:76:0D:66:29:FB:36:B2:1B:2E:80:1D:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6cbea81d-85ac-40a5-a7f5-3fa362b17bcb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6cbea81d-85ac-40a5-a7f5-3fa362b17bcb/0/73B96F5AC43A4212760D6629FB36B21B2E801D90.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.232.0/23 Signature Algorithm: sha256WithRSAEncryption 07:d4:8d:ba:9c:fa:e5:3a:aa:b4:c3:c0:6d:fd:95:ac:81:1f: 07:9d:ef:7d:db:6e:b5:d0:63:44:5c:ef:e4:cf:01:a2:b0:59: 82:94:38:3f:8a:25:6f:80:91:c1:54:c6:65:d4:cb:92:c7:07: 86:88:b1:55:90:dd:f3:07:ca:14:d3:06:9b:73:35:86:3b:ab: 24:3e:ec:d6:95:36:ca:7c:bc:14:7b:18:24:3f:80:3f:41:08: 73:1a:96:5a:8e:e7:fb:56:4e:28:53:a5:64:5f:1d:f4:3b:73: ca:c1:18:51:e7:9c:7b:57:44:e7:b1:8a:3a:1f:95:d6:10:ba: 39:f7:b4:c6:76:6f:77:71:86:ca:58:ce:ca:d4:54:92:75:74: 01:14:26:8e:42:fd:f6:97:6d:07:8f:27:8b:2f:48:57:30:7f: 46:77:cc:ba:0f:57:34:71:ca:44:b0:c1:99:95:dd:f5:28:51: 02:08:de:25:dd:4c:da:c9:58:27:0e:76:6c:71:f4:0b:ee:99: ba:5a:ea:2f:c2:2a:e8:ab:cf:ce:bb:a3:e7:d8:54:3e:98:74: 34:f5:9d:5f:b8:55:c3:09:2a:a4:5f:a7:03:d3:e7:b2:d8:4d: e5:11:af:42:64:3f:0c:7a:3f:b3:b1:c2:39:cd:42:6d:1b:0b: 96:44:49:0e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPLoLTJzRHkZ3yNDeBJuUm78S60IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwNjA4MzgwN1oX DTI1MDgwNTA4NDMwN1owMzExMC8GA1UEAxMoNzNCOTZGNUFDNDNBNDIxMjc2MEQ2 NjI5RkIzNkIyMUIyRTgwMUQ5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMdN/Og0liL05DNwiOvCf8z5OCCuftMpcRiIhIX2yl4CasDflPUm11IsXGY/ MmnhMMpg76OE1h6Uy7wUQQuNaGNL2XWJbVG5qrajrYEp0H4UuamRGUPqCh6B1Vdh jHHBdIx5M0nozjjH72iGOwt5THf3H757v4zML7Nl80g9aJ9d9WPNA20nkmYUE69U bAcGtqtSFSwC2cz4zqQJM4/Z+9TsGGFB+tH4Og295XhXOOThFJi7A1J7vBf0MKyy qHDGyu6xa9lETqSbpFwjoWnwTqCTll6nHTWRtDK90D5NxOoL5GF1IapjvBJdoHhn tw72LgwGKx95wCOlg1lQnGMfhmcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHO5b1rEOkISdg1mKfs2shsugB2QMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82Y2JlYTgxZC04NWFjLTQwYTUtYTdmNS0zZmEzNjJiMTdiY2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYmVhODFk LTg1YWMtNDBhNS1hN2Y1LTNmYTM2MmIxN2JjYi8wLzczQjk2RjVBQzQzQTQyMTI3 NjBENjYyOUZCMzZCMjFCMkU4MDFEOTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrugwDQYJKoZIhvcNAQELBQADggEBAAfUjbqc+uU6qrTDwG39layBHwed733b brXQY0Rc7+TPAaKwWYKUOD+KJW+AkcFUxmXUy5LHB4aIsVWQ3fMHyhTTBptzNYY7 qyQ+7NaVNsp8vBR7GCQ/gD9BCHMallqO5/tWTihTpWRfHfQ7c8rBGFHnnHtXROex ijofldYQujn3tMZ2b3dxhspYzsrUVJJ1dAEUJo5C/faXbQePJ4svSFcwf0Z3zLoP VzRxykSwwZmV3fUoUQII3iXdTNrJWCcOdmxx9Avumbpa6i/CKuirz867o+fYVD6Y dDT1nV+4VcMJKqRfpwPT57LYTeURr0JkPwx6P7OxwjnNQm0bC5ZESQ4= -----END CERTIFICATE-----Generated at Sun Feb 16 20:46:02 2025 by rpki-client