$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/9D25181C9096851A77EB95DA55649E08E3B7941B.cer File: 9D25181C9096851A77EB95DA55649E08E3B7941B.cer (raw, json) Hash identifier: Luq3heBHQXA8qJIyQ1zy+GHItgTB4wjGITLO8O6kAOI= Subject key identifier: 9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 57E8F13F92A9C6F3962CCB91F79BC795BCFC6DA1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.mft caRepository: rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 02 May 2024 01:47:27 +0000 Certificate not after: Thu 01 May 2025 01:52:27 +0000 Subordinate resources: IP: 103.124.244.0/22 IP: 2403:e8c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:e8:f1:3f:92:a9:c6:f3:96:2c:cb:91:f7:9b:c7:95:bc:fc:6d:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 2 01:47:27 2024 GMT Not After : May 1 01:52:27 2025 GMT Subject: CN=9D25181C9096851A77EB95DA55649E08E3B7941B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:4d:68:3e:cc:76:b9:34:a6:82:fd:d8:c8:7c: 0d:4c:75:8b:71:b8:d8:da:2e:5c:f5:e3:6f:af:68: 21:66:83:18:42:5f:41:02:3c:68:37:3d:5e:ee:a0: ca:4d:e5:6f:09:a1:0b:39:19:45:40:b0:ae:cf:0d: 66:88:cf:da:b8:c9:b4:7b:bb:7e:37:4e:b5:5a:22: 90:26:74:c8:f6:e2:ad:6b:a1:e1:45:f4:10:56:4e: df:2c:b9:6b:ff:f1:ce:3e:3f:dc:32:c7:87:45:e1: 8e:ac:f8:75:b1:9a:e5:95:e8:3a:51:3e:91:62:89: 32:5d:0e:e9:95:32:f0:42:75:63:d0:e6:46:76:2e: 47:c0:4d:e3:60:81:c9:3f:c7:bd:6e:03:d6:44:1a: 2f:77:90:9f:34:a7:8c:c9:28:9e:15:54:ce:5e:06: f9:1a:19:eb:aa:6f:dc:a2:fd:2c:4a:ec:6c:40:09: 88:54:56:bc:8d:aa:13:17:11:ae:f1:7c:f3:ab:0e: e4:29:4c:03:e6:a9:54:26:53:a3:4d:a8:67:9e:8e: c5:2d:7c:70:27:77:d4:91:dd:1a:1a:d0:6c:56:11: e8:5e:78:28:f5:02:d3:38:fd:b2:c2:b1:7c:9c:e9: 77:d8:d5:3a:09:39:1c:90:3f:ae:ea:c8:95:7b:b8: b6:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9D:25:18:1C:90:96:85:1A:77:EB:95:DA:55:64:9E:08:E3:B7:94:1B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6e2c9285-c09a-4506-a320-fda1a07fd9ec/0/9D25181C9096851A77EB95DA55649E08E3B7941B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.244.0/22 IPv6: 2403:e8c0::/32 Signature Algorithm: sha256WithRSAEncryption 13:17:16:7c:de:61:1b:70:ec:3b:e4:f1:d2:f5:0a:6d:f2:2e: c0:7e:ff:11:81:f6:85:4e:c1:b3:8e:7c:f7:98:c8:d8:9c:5c: 80:41:cd:8f:fd:b4:ab:03:ad:3b:c6:4d:89:a6:d7:66:26:b4: ce:5d:65:23:d4:d5:ba:97:3e:d4:48:7c:5e:91:0f:cd:26:02: 5d:e1:15:bb:94:93:cf:50:e6:19:6f:e4:c8:09:5b:dd:85:36: e8:fc:14:a2:c0:74:85:de:5d:9f:73:88:10:f4:87:4f:ef:f0: 6b:58:29:09:27:38:e5:53:c0:51:0c:f7:61:45:bc:22:92:36: d8:73:18:30:58:a9:17:c7:64:18:c6:aa:aa:23:92:e0:2a:92: 80:96:3b:cc:49:e5:b5:e3:28:c9:4d:f0:b4:30:08:3f:94:6c: dc:7b:04:ab:09:8c:6a:79:47:3c:95:de:9c:37:51:8c:66:1b: 6b:05:01:4c:2a:82:6f:eb:e9:17:5a:fc:d4:a4:9c:6b:fd:93: 60:ab:a2:4a:0b:a5:03:98:ee:15:67:c7:3f:d1:c3:3d:bd:2d: 1f:a2:99:06:5e:88:6c:c3:a2:13:bd:fb:83:78:07:0d:fa:b0: ff:eb:97:e8:b8:21:8f:40:73:e8:68:05:63:15:40:30:e1:ca: 65:66:d8:4c -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUV+jxP5KpxvOWLMuR95vHlbz8baEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwMjAxNDcyN1oX DTI1MDUwMTAxNTIyN1owMzExMC8GA1UEAxMoOUQyNTE4MUM5MDk2ODUxQTc3RUI5 NURBNTU2NDlFMDhFM0I3OTQxQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKdNaD7Mdrk0poL92Mh8DUx1i3G42NouXPXjb69oIWaDGEJfQQI8aDc9Xu6g yk3lbwmhCzkZRUCwrs8NZojP2rjJtHu7fjdOtVoikCZ0yPbirWuh4UX0EFZO3yy5 a//xzj4/3DLHh0Xhjqz4dbGa5ZXoOlE+kWKJMl0O6ZUy8EJ1Y9DmRnYuR8BN42CB yT/HvW4D1kQaL3eQnzSnjMkonhVUzl4G+RoZ66pv3KL9LErsbEAJiFRWvI2qExcR rvF886sO5ClMA+apVCZTo02oZ56OxS18cCd31JHdGhrQbFYR6F54KPUC0zj9ssKx fJzpd9jVOgk5HJA/rurIlXu4tssCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ0lGByQloUad+uV2lVkngjjt5QbMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82ZTJjOTI4NS1jMDlhLTQ1MDYtYTMyMC1mZGExYTA3ZmQ5ZWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlMmM5Mjg1 LWMwOWEtNDUwNi1hMzIwLWZkYTFhMDdmZDllYy8wLzlEMjUxODFDOTA5Njg1MUE3 N0VCOTVEQTU1NjQ5RTA4RTNCNzk0MUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnfPQwDQQCAAIwBwMFACQD6MAwDQYJKoZIhvcNAQELBQADggEBABMXFnzeYRtw 7Dvk8dL1Cm3yLsB+/xGB9oVOwbOOfPeYyNicXIBBzY/9tKsDrTvGTYmm12YmtM5d ZSPU1bqXPtRIfF6RD80mAl3hFbuUk89Q5hlv5MgJW92FNuj8FKLAdIXeXZ9ziBD0 h0/v8GtYKQknOOVTwFEM92FFvCKSNthzGDBYqRfHZBjGqqojkuAqkoCWO8xJ5bXj KMlN8LQwCD+UbNx7BKsJjGp5RzyV3pw3UYxmG2sFAUwqgm/r6Rda/NSknGv9k2Cr okoLpQOY7hVnxz/Rwz29LR+imQZeiGzDohO9+4N4Bw36sP/rl+i4IY9Ac+hoBWMV QDDhymVm2Ew= -----END CERTIFICATE-----Generated at Wed May 8 09:50:34 2024 by rpki-client on console-fra.rpki-client.org