$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.cer File: A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.cer (raw, json) Hash identifier: muaH25iptbSc6Dil7tg1Wz+YfxKDgUudtNFNVxLh8UY= Subject key identifier: A3:EF:DD:DA:D5:26:EF:A3:F2:82:1E:9E:6E:C6:E7:47:BB:5B:12:46 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 39D7AAB2166ABDDA4DF8306DAAEBD5B3D3B89D54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.mft caRepository: rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 30 Oct 2024 11:42:27 +0000 Certificate not after: Wed 29 Oct 2025 11:47:27 +0000 Subordinate resources: IP: 103.147.80.0/23 IP: 2405:b240::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:d7:aa:b2:16:6a:bd:da:4d:f8:30:6d:aa:eb:d5:b3:d3:b8:9d:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Oct 30 11:42:27 2024 GMT Not After : Oct 29 11:47:27 2025 GMT Subject: CN=A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b0:db:7b:7f:91:0b:f7:20:58:c9:c1:9e:af: 6e:67:52:34:70:cb:a1:19:43:eb:6b:05:8d:26:44: 07:8d:cf:8b:14:37:1e:aa:6e:8f:86:16:57:3e:01: 4d:7c:0a:6e:b1:e6:00:06:f9:92:d1:93:c0:0c:b8: dd:6e:9d:7c:2e:05:82:22:01:a0:ec:f0:ea:de:02: df:83:6c:13:ff:ff:0a:3c:76:40:76:9f:17:5d:6f: 6e:af:8c:58:e1:71:0d:5d:f0:c8:f3:8f:fb:d2:73: 7a:9e:1c:bc:9f:af:3d:05:82:ef:01:f4:46:35:39: bf:32:e6:9e:36:5e:40:e0:19:9a:a2:16:21:26:e2: 85:5a:46:17:64:b1:2d:76:b4:95:b5:b7:ee:63:f5: 27:00:5e:6d:9a:d0:41:2c:bf:a0:38:ac:b9:c5:ca: dc:dd:a6:f4:68:f8:e5:de:80:91:10:a7:74:61:13: 2c:e3:37:b1:5e:e3:ee:53:82:bc:fd:c4:af:ae:4d: 06:8b:06:49:28:f0:1a:6d:ba:fd:2a:ce:b5:48:1a: d9:d3:9c:7a:b6:8e:90:48:cf:03:63:b1:c6:20:c0: 25:50:45:87:e4:6a:2a:e5:75:60:00:77:d4:71:05: aa:b8:45:f4:c5:c3:f1:b8:73:aa:f0:52:2b:d0:24: 69:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A3:EF:DD:DA:D5:26:EF:A3:F2:82:1E:9E:6E:C6:E7:47:BB:5B:12:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.80.0/23 IPv6: 2405:b240::/32 Signature Algorithm: sha256WithRSAEncryption 6b:7c:d3:d4:75:4b:a2:31:1a:fd:d7:d5:20:c7:14:68:ce:34: 9b:f3:53:4c:86:a0:b4:87:1b:bb:40:98:5b:35:ff:2d:85:02: c2:47:69:8b:88:b4:58:e5:7c:51:12:9e:a2:0c:ae:bd:63:06: ad:02:08:71:81:a9:84:3e:d3:cd:71:d5:99:97:a4:ce:17:e8: f8:ba:e6:fb:53:b7:73:4a:f7:e0:75:3d:65:22:69:da:84:66: 1f:82:f2:88:b0:2a:a9:07:f0:46:99:71:82:df:8d:a0:e2:35: fc:58:f6:03:da:a8:89:17:70:59:6f:b8:7f:49:63:4f:b7:11: 8c:4e:62:ec:96:65:78:88:ef:e3:f3:d0:8a:88:ca:b9:87:17: 23:e6:1b:6c:54:37:80:30:87:19:60:28:1a:d8:3f:7d:dc:7c: d8:5f:5d:d6:a1:27:23:9d:a7:b8:6a:a1:15:1c:39:18:d8:ca: ee:4b:bf:18:79:d0:39:42:0f:5c:c8:67:ac:31:f9:5e:c3:7e: f5:32:e7:1b:93:81:33:b7:5e:cb:d3:3e:52:df:ba:4d:70:49: e4:24:4f:31:f3:86:59:84:2c:3c:62:49:36:e0:d9:b8:34:ec: ee:98:04:dc:aa:93:d9:48:fd:f4:e0:4a:4a:7c:34:4d:ac:2c: 4c:c0:da:0a -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUOdeqshZqvdpN+DBtquvVs9O4nVQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAzMDExNDIyN1oX DTI1MTAyOTExNDcyN1owMzExMC8GA1UEAxMoQTNFRkREREFENTI2RUZBM0YyODIx RTlFNkVDNkU3NDdCQjVCMTI0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALGw23t/kQv3IFjJwZ6vbmdSNHDLoRlD62sFjSZEB43PixQ3Hqpuj4YWVz4B TXwKbrHmAAb5ktGTwAy43W6dfC4FgiIBoOzw6t4C34NsE///Cjx2QHafF11vbq+M WOFxDV3wyPOP+9Jzep4cvJ+vPQWC7wH0RjU5vzLmnjZeQOAZmqIWISbihVpGF2Sx LXa0lbW37mP1JwBebZrQQSy/oDisucXK3N2m9Gj45d6AkRCndGETLOM3sV7j7lOC vP3Er65NBosGSSjwGm26/SrOtUga2dOceraOkEjPA2OxxiDAJVBFh+RqKuV1YAB3 1HEFqrhF9MXD8bhzqvBSK9AkaR0CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKPv3drVJu+j8oIenm7G50e7WxJGMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jNmM1NzBlZi02ZWZkLTRmOTctYmYzMS05NjgxMjZhYjU3YzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2YzU3MGVm LTZlZmQtNGY5Ny1iZjMxLTk2ODEyNmFiNTdjMC8wL0EzRUZERERBRDUyNkVGQTNG MjgyMUU5RTZFQzZFNzQ3QkI1QjEyNDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnk1AwDQQCAAIwBwMFACQFskAwDQYJKoZIhvcNAQELBQADggEBAGt809R1S6Ix Gv3X1SDHFGjONJvzU0yGoLSHG7tAmFs1/y2FAsJHaYuItFjlfFESnqIMrr1jBq0C CHGBqYQ+081x1ZmXpM4X6Pi65vtTt3NK9+B1PWUiadqEZh+C8oiwKqkH8EaZcYLf jaDiNfxY9gPaqIkXcFlvuH9JY0+3EYxOYuyWZXiI7+Pz0IqIyrmHFyPmG2xUN4Aw hxlgKBrYP33cfNhfXdahJyOdp7hqoRUcORjYyu5Lvxh50DlCD1zIZ6wx+V7DfvUy 5xuTgTO3XsvTPlLfuk1wSeQkTzHzhlmELDxiSTbg2bg07O6YBNyqk9lI/fTgSkp8 NE2sLEzA2go= -----END CERTIFICATE-----Generated at Sun Feb 16 20:50:23 2025 by rpki-client