$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer File: 7825A9C30D5AEA4144740E9B12A3C0BC60E73499.cer (raw, json) Hash identifier: EIRKpd39Izf6dACuTvQ0FJBkG9Y/OEtEJI/NL64mKdI= Subject key identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4CDD965B85EF30EAA49E59B3535CCC5FE9780E47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft caRepository: rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 17 Sep 2024 01:03:58 +0000 Certificate not after: Tue 16 Sep 2025 01:08:58 +0000 Subordinate resources: IP: 103.119.236.0/23 IP: 2001:df2:fe40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:dd:96:5b:85:ef:30:ea:a4:9e:59:b3:53:5c:cc:5f:e9:78:0e:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 17 01:03:58 2024 GMT Not After : Sep 16 01:08:58 2025 GMT Subject: CN=7825A9C30D5AEA4144740E9B12A3C0BC60E73499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:e4:e2:9b:74:c2:84:84:ea:8c:c8:0e:33:27: 5d:dd:62:81:21:b3:46:ea:f0:4d:88:07:8e:9c:99: 61:4e:e0:8f:a5:e4:35:0d:ff:09:e5:f1:63:1f:94: 90:bb:6b:bf:c4:bd:62:4d:bf:16:29:ea:33:2e:54: ba:f6:91:fa:6f:dc:6b:68:2d:90:cf:a6:90:70:89: 2e:79:ec:02:4e:7c:7b:a2:f4:aa:49:03:65:11:6b: d5:88:48:15:2b:71:2e:80:f0:52:08:ab:58:70:a5: 44:11:a9:ae:00:33:ab:57:c4:26:db:ae:c6:d3:1d: 53:6a:0a:54:e0:c0:1e:53:d9:e9:98:77:a0:ab:f3: 9c:43:a1:3e:08:b5:b3:f3:77:50:5a:af:d2:47:37: 7e:3c:f0:f8:de:bc:a0:74:8d:66:9f:7f:1c:e8:62: 45:35:bb:41:3f:07:3d:1d:21:9d:a8:13:5f:53:02: 2c:d5:0d:2f:30:64:c9:36:2b:5c:4a:83:7a:44:f5: 8c:9f:6f:e6:44:fe:da:b0:a7:1e:fe:6d:72:5e:87: 15:00:1e:07:89:44:c1:e4:90:bf:36:b4:0c:23:18: 2f:8f:c4:48:81:72:21:b0:27:06:c9:a6:7d:3e:b9: 5e:26:c0:71:77:f5:4a:18:1d:1b:2a:9b:8f:53:b2: c8:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 78:25:A9:C3:0D:5A:EA:41:44:74:0E:9B:12:A3:C0:BC:60:E7:34:99 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0000b0c2-7efd-4278-98e4-d4f7c273eec2/0/7825A9C30D5AEA4144740E9B12A3C0BC60E73499.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.236.0/23 IPv6: 2001:df2:fe40::/48 Signature Algorithm: sha256WithRSAEncryption 92:4f:6b:96:e5:fd:3a:c3:47:ed:b8:ae:55:ba:ea:b6:85:28: e0:92:01:b1:7c:b6:01:d0:5f:85:b8:20:43:eb:e7:cf:0b:07: c6:5d:75:94:ba:35:3b:c1:21:dd:ec:2f:af:bf:6b:69:84:7a: 05:da:96:76:9b:82:d1:77:e4:af:a6:f4:89:de:49:c4:6d:26: 96:61:e7:09:d5:fb:0c:cb:c8:aa:08:82:e5:95:ca:b1:90:4b: 0b:f5:37:1c:b5:46:f3:31:fb:d7:da:30:a4:4c:35:c5:cf:aa: 7f:4a:47:e9:f1:5d:31:7d:99:62:38:84:ac:72:e2:10:34:a4: 44:9f:b1:dc:5d:65:74:00:6b:46:06:cd:57:7f:2f:df:c6:2a: 11:dd:f5:52:4d:71:d3:92:b5:4c:fc:f9:1b:c4:f8:c4:84:81: 5a:f9:39:c0:f1:fe:fc:e2:88:b7:cb:12:ab:87:a4:58:16:96: 28:1b:61:8f:dd:41:17:c1:c0:aa:95:67:73:e3:4d:c3:f5:47: 99:a9:38:6f:d1:16:4f:98:cf:33:02:5a:fa:b6:51:25:b7:90: ee:01:a8:02:ae:67:d4:c9:ca:fd:18:d8:0e:7a:f9:d8:ac:2c: 7f:fc:ee:55:fe:fd:f4:42:1e:71:7b:67:cb:0b:75:15:5e:3c: 0c:c6:80:46 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUTN2WW4XvMOqknlmzU1zMX+l4DkcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxNzAxMDM1OFoX DTI1MDkxNjAxMDg1OFowMzExMC8GA1UEAxMoNzgyNUE5QzMwRDVBRUE0MTQ0NzQw RTlCMTJBM0MwQkM2MEU3MzQ5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3k4pt0woSE6ozIDjMnXd1igSGzRurwTYgHjpyZYU7gj6XkNQ3/CeXxYx+U kLtrv8S9Yk2/FinqMy5UuvaR+m/ca2gtkM+mkHCJLnnsAk58e6L0qkkDZRFr1YhI FStxLoDwUgirWHClRBGprgAzq1fEJtuuxtMdU2oKVODAHlPZ6Zh3oKvznEOhPgi1 s/N3UFqv0kc3fjzw+N68oHSNZp9/HOhiRTW7QT8HPR0hnagTX1MCLNUNLzBkyTYr XEqDekT1jJ9v5kT+2rCnHv5tcl6HFQAeB4lEweSQvza0DCMYL4/ESIFyIbAnBsmm fT65XibAcXf1ShgdGyqbj1OyyH0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHglqcMNWupBRHQOmxKjwLxg5zSZMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wMDAwYjBjMi03ZWZkLTQyNzgtOThlNC1kNGY3YzI3M2VlYzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwMDBiMGMy LTdlZmQtNDI3OC05OGU0LWQ0ZjdjMjczZWVjMi8wLzc4MjVBOUMzMEQ1QUVBNDE0 NDc0MEU5QjEyQTNDMEJDNjBFNzM0OTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnd+wwDwQCAAIwCQMHACABDfL+QDANBgkqhkiG9w0BAQsFAAOCAQEAkk9rluX9 OsNH7biuVbrqtoUo4JIBsXy2AdBfhbggQ+vnzwsHxl11lLo1O8Eh3ewvr79raYR6 BdqWdpuC0Xfkr6b0id5JxG0mlmHnCdX7DMvIqgiC5ZXKsZBLC/U3HLVG8zH719ow pEw1xc+qf0pH6fFdMX2ZYjiErHLiEDSkRJ+x3F1ldABrRgbNV38v38YqEd31Uk1x 05K1TPz5G8T4xISBWvk5wPH+/OKIt8sSq4ekWBaWKBthj91BF8HAqpVnc+NNw/VH mak4b9EWT5jPMwJa+rZRJbeQ7gGoAq5n1MnK/RjYDnr52Kwsf/zuVf799EIecXtn ywt1FV48DMaARg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:49 2024 by rpki-client on console-fra.rpki-client.org