$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A5959C75F8AC190DC22C7C3276CF95834D5CA687.cer File: A5959C75F8AC190DC22C7C3276CF95834D5CA687.cer (raw, json) Hash identifier: x/YQOfXtnSNuhh1UhQ7RPcDdije514I4UhC3ljQgOII= Subject key identifier: A5:95:9C:75:F8:AC:19:0D:C2:2C:7C:32:76:CF:95:83:4D:5C:A6:87 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 195F09D294DEFFEADEFABD08242DE5C0B2F8115A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/A5959C75F8AC190DC22C7C3276CF95834D5CA687.mft caRepository: rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 05 Nov 2024 19:27:09 +0000 Certificate not after: Tue 04 Nov 2025 19:32:09 +0000 Subordinate resources: IP: 103.76.31.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:5f:09:d2:94:de:ff:ea:de:fa:bd:08:24:2d:e5:c0:b2:f8:11:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 5 19:27:09 2024 GMT Not After : Nov 4 19:32:09 2025 GMT Subject: CN=A5959C75F8AC190DC22C7C3276CF95834D5CA687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ae:53:63:a1:3f:47:63:b5:f8:f1:01:a9:5d: ab:ba:1f:96:e5:ed:f7:21:33:a9:52:6a:b8:0b:30: 12:0b:0f:57:be:88:5a:6d:61:46:db:f4:97:5b:0a: 3d:7d:6c:40:72:b6:05:4c:77:fc:f0:62:bb:fe:65: 0a:90:72:17:fb:4c:f0:f2:13:81:af:6e:5e:c0:36: 55:65:c2:12:f8:fe:2f:56:c1:ae:50:8e:ab:73:4c: 32:3f:b9:82:cb:a4:18:90:4f:2e:1f:57:f1:df:d5: fe:ee:14:29:0e:46:4e:37:89:aa:ef:9f:d0:82:f1: 35:df:c1:98:4a:63:a2:f4:12:85:8c:0f:a7:2e:b9: cf:2e:56:9e:e9:c2:1b:8c:d3:6b:d4:43:fd:a9:91: 71:32:e4:c9:64:9d:ff:81:76:38:93:33:af:c5:54: 06:30:c4:5c:d2:51:6d:10:da:c0:ff:f0:1a:be:7b: f8:58:ea:77:c5:77:5f:82:19:7c:0e:db:23:c0:e5: 34:fe:e3:6e:00:df:06:1c:81:74:8d:50:6f:4b:e4: a6:8a:71:a0:ab:89:c1:85:b9:26:36:fe:38:07:cf: 00:9c:73:49:23:ef:4d:71:0b:ad:f4:92:ad:82:66: e0:ac:6c:88:46:a0:bb:59:77:1d:e7:04:28:68:7f: 13:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A5:95:9C:75:F8:AC:19:0D:C2:2C:7C:32:76:CF:95:83:4D:5C:A6:87 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/A5959C75F8AC190DC22C7C3276CF95834D5CA687.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.31.0/24 Signature Algorithm: sha256WithRSAEncryption 35:d6:dd:b0:d2:ce:f8:48:99:6e:6f:e0:95:42:b2:81:ef:c3: 6e:e6:d7:36:eb:50:d1:7f:33:59:7f:f0:67:38:6a:a6:e9:c1: be:85:84:b2:8a:2a:ee:05:7a:de:e0:3e:51:2f:50:27:64:31: bf:23:b3:ee:5f:07:8e:f6:46:2a:d4:ae:86:50:8e:a5:e9:f2: 76:7d:29:65:25:02:2c:e0:73:e8:90:f3:c2:80:91:15:76:8d: 07:06:7a:b4:fc:d9:75:32:05:3c:0a:de:95:e0:cd:fa:af:16: 0d:cc:b5:1d:09:f6:7b:09:0d:77:e9:76:8b:cc:9b:fe:47:b8: 96:c6:93:3f:19:34:25:2f:87:4f:a5:e4:81:5e:0c:36:11:6f: 38:00:13:1e:81:2d:f7:fa:a8:02:0f:d8:6b:64:dd:ea:a8:c8: 26:9a:e0:43:30:79:81:27:b7:27:aa:46:85:f6:3e:d3:37:a1: 45:d8:cd:92:9b:26:0d:f4:41:68:5b:76:0f:54:71:0f:8d:83: 0e:e0:5c:27:94:e9:2e:47:59:e8:72:24:a2:9d:b9:5c:36:48: 36:42:4d:dc:21:ef:b6:ab:20:c4:b8:44:7f:99:6e:4c:1b:e6: ce:67:4e:e1:a4:e9:b2:0c:e3:4f:d0:82:1a:92:03:a1:92:32: 9b:5e:b7:f4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGV8J0pTe/+re+r0IJC3lwLL4EVowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwNTE5MjcwOVoX DTI1MTEwNDE5MzIwOVowMzExMC8GA1UEAxMoQTU5NTlDNzVGOEFDMTkwREMyMkM3 QzMyNzZDRjk1ODM0RDVDQTY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJeuU2OhP0djtfjxAaldq7ofluXt9yEzqVJquAswEgsPV76IWm1hRtv0l1sK PX1sQHK2BUx3/PBiu/5lCpByF/tM8PITga9uXsA2VWXCEvj+L1bBrlCOq3NMMj+5 gsukGJBPLh9X8d/V/u4UKQ5GTjeJqu+f0ILxNd/BmEpjovQShYwPpy65zy5WnunC G4zTa9RD/amRcTLkyWSd/4F2OJMzr8VUBjDEXNJRbRDawP/wGr57+Fjqd8V3X4IZ fA7bI8DlNP7jbgDfBhyBdI1Qb0vkpopxoKuJwYW5Jjb+OAfPAJxzSSPvTXELrfSS rYJm4KxsiEagu1l3HecEKGh/E8ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKWVnHX4rBkNwix8MnbPlYNNXKaHMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZDYxYzc1MC04ODBmLTQ5OGItYTY5OC0xZjQ3ODBmYTY5ZmYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNjFjNzUw LTg4MGYtNDk4Yi1hNjk4LTFmNDc4MGZhNjlmZi8wL0E1OTU5Qzc1RjhBQzE5MERD MjJDN0MzMjc2Q0Y5NTgzNEQ1Q0E2ODcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnTB8wDQYJKoZIhvcNAQELBQADggEBADXW3bDSzvhImW5v4JVCsoHvw27m1zbr UNF/M1l/8Gc4aqbpwb6FhLKKKu4Fet7gPlEvUCdkMb8js+5fB472RirUroZQjqXp 8nZ9KWUlAizgc+iQ88KAkRV2jQcGerT82XUyBTwK3pXgzfqvFg3MtR0J9nsJDXfp dovMm/5HuJbGkz8ZNCUvh0+l5IFeDDYRbzgAEx6BLff6qAIP2Gtk3eqoyCaa4EMw eYEntyeqRoX2PtM3oUXYzZKbJg30QWhbdg9UcQ+Ngw7gXCeU6S5HWehyJKKduVw2 SDZCTdwh77arIMS4RH+Zbkwb5s5nTuGk6bIM40/QghqSA6GSMptet/Q= -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:04 2025 by rpki-client