$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/781285AE1A8C595D354913D0B93F6982FCDFD898.cer File: 781285AE1A8C595D354913D0B93F6982FCDFD898.cer (raw, json) Hash identifier: 6Gr87Exq+BAEI2Ojj1GJGSqOQdDPqD6bvaGruk26Ooc= Subject key identifier: 78:12:85:AE:1A:8C:59:5D:35:49:13:D0:B9:3F:69:82:FC:DF:D8:98 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 75D88277B026651D33A2E6D1E7442CDB065596E3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0/781285AE1A8C595D354913D0B93F6982FCDFD898.mft caRepository: rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 08 Jan 2025 00:18:10 +0000 Certificate not after: Wed 07 Jan 2026 00:23:10 +0000 Subordinate resources: IP: 103.91.148.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:d8:82:77:b0:26:65:1d:33:a2:e6:d1:e7:44:2c:db:06:55:96:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 8 00:18:10 2025 GMT Not After : Jan 7 00:23:10 2026 GMT Subject: CN=781285AE1A8C595D354913D0B93F6982FCDFD898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:58:14:7f:06:c2:34:b0:76:67:69:7a:bb:9a: c2:1d:b4:05:2c:47:01:f2:e6:bc:f9:84:bd:c9:9c: 52:55:83:99:45:73:a3:92:be:b5:34:26:f5:be:6d: ae:21:49:06:ab:3e:1d:c4:41:dd:71:29:b1:40:05: 5b:28:4a:6e:9e:26:b1:95:e0:8c:fb:53:8e:bf:3e: d2:82:a5:04:14:d7:d1:2d:fb:52:5b:d3:8b:a2:75: a1:4f:a2:25:9f:aa:3c:53:42:97:67:de:e8:95:cb: 6d:46:03:f6:33:0f:ba:e5:04:d1:8a:93:89:04:40: 6e:8d:cc:ef:c8:9a:ea:fb:7c:26:78:fc:fc:89:7b: ef:56:a0:e7:6e:ce:56:8c:6d:0f:2b:97:3a:82:55: 9a:d9:f2:27:e0:a9:df:e6:95:88:d7:9f:0c:a5:80: 52:60:ce:da:36:e2:47:17:99:0a:bf:bf:f7:b8:53: d2:71:ed:ad:92:4b:83:3f:33:4e:c3:5e:63:78:92: 5b:d0:93:bb:f7:d3:9f:2c:41:52:e7:4a:b7:ca:3c: 8f:b6:c2:af:ae:d0:33:22:69:bd:4d:95:7c:a9:61: 68:f1:2c:e6:09:4a:ca:4f:fe:8f:40:81:c0:89:63: 58:a1:ff:d2:c0:16:6c:99:b3:19:f5:f8:6a:c9:2b: 72:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 78:12:85:AE:1A:8C:59:5D:35:49:13:D0:B9:3F:69:82:FC:DF:D8:98 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0/781285AE1A8C595D354913D0B93F6982FCDFD898.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.148.0/23 Signature Algorithm: sha256WithRSAEncryption 1a:20:02:7f:5a:30:6a:f7:8c:23:2a:76:eb:8c:2f:82:e1:07: b7:34:6f:bf:26:65:a9:01:43:4c:51:cc:b1:36:5c:a1:9d:5c: 2a:b4:7c:56:d3:34:16:83:93:80:78:3e:2c:b5:b0:53:f9:8a: 11:81:09:8c:b2:ae:58:19:34:55:c1:0a:5f:42:9a:51:08:45: 08:92:7a:51:f3:2a:93:48:31:40:c3:cc:e1:c3:0c:a6:6b:29: 33:eb:d6:f3:d1:40:56:c3:5a:66:17:1a:5a:98:38:68:b0:c3: b4:e2:02:a1:66:3c:94:75:89:48:a2:c0:15:b6:42:89:05:73: 35:92:b4:66:0a:4f:7e:f5:a7:f7:aa:22:7d:e2:17:d3:5a:60: ae:c1:8d:0b:17:21:ff:3e:a3:e0:f0:07:c9:f4:17:ca:7c:33: 11:87:7b:04:8e:c6:45:2e:25:a3:a7:fc:2f:31:7c:9b:da:62: f1:63:44:ca:74:0c:66:f7:04:7c:54:ce:88:56:14:58:85:8e: d7:34:61:ac:95:63:0d:2e:c0:36:f3:9d:6e:65:91:3b:f9:e7: 20:a9:52:c3:8c:d5:6c:53:d7:f0:c5:5f:ce:33:38:e2:15:36: 30:64:b1:38:2c:45:04:ed:60:6b:a4:76:24:82:ff:6f:df:4b: 0f:8f:73:44 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUddiCd7AmZR0zoubR50Qs2wZVluMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwODAwMTgxMFoX DTI2MDEwNzAwMjMxMFowMzExMC8GA1UEAxMoNzgxMjg1QUUxQThDNTk1RDM1NDkx M0QwQjkzRjY5ODJGQ0RGRDg5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1YFH8GwjSwdmdperuawh20BSxHAfLmvPmEvcmcUlWDmUVzo5K+tTQm9b5t riFJBqs+HcRB3XEpsUAFWyhKbp4msZXgjPtTjr8+0oKlBBTX0S37UlvTi6J1oU+i JZ+qPFNCl2fe6JXLbUYD9jMPuuUE0YqTiQRAbo3M78ia6vt8Jnj8/Il771ag527O VoxtDyuXOoJVmtnyJ+Cp3+aViNefDKWAUmDO2jbiRxeZCr+/97hT0nHtrZJLgz8z TsNeY3iSW9CTu/fTnyxBUudKt8o8j7bCr67QMyJpvU2VfKlhaPEs5glKyk/+j0CB wIljWKH/0sAWbJmzGfX4askrcksCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHgSha4ajFldNUkT0Lk/aYL839iYMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kMjc1ZmQ3Ni1lOGVlLTQ2YzgtOWQ4Mi1iNzM1YjlmNzA0MzEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyNzVmZDc2 LWU4ZWUtNDZjOC05ZDgyLWI3MzViOWY3MDQzMS8wLzc4MTI4NUFFMUE4QzU5NUQz NTQ5MTNEMEI5M0Y2OTgyRkNERkQ4OTgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnW5QwDQYJKoZIhvcNAQELBQADggEBABogAn9aMGr3jCMqduuML4LhB7c0b78m ZakBQ0xRzLE2XKGdXCq0fFbTNBaDk4B4Piy1sFP5ihGBCYyyrlgZNFXBCl9CmlEI RQiSelHzKpNIMUDDzOHDDKZrKTPr1vPRQFbDWmYXGlqYOGiww7TiAqFmPJR1iUii wBW2QokFczWStGYKT371p/eqIn3iF9NaYK7BjQsXIf8+o+DwB8n0F8p8MxGHewSO xkUuJaOn/C8xfJvaYvFjRMp0DGb3BHxUzohWFFiFjtc0YayVYw0uwDbznW5lkTv5 5yCpUsOM1WxT1/DFX84zOOIVNjBksTgsRQTtYGukdiSC/2/fSw+Pc0Q= -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:51 2025 by rpki-client