$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer File: AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.cer (raw, json) Hash identifier: IA9ptlZs30FrMZvhcZss6uIgvhAwch2E6tHfP8HjnUM= Subject key identifier: AB:58:72:11:82:B4:EA:A8:FE:CD:4A:D8:80:8C:EE:F5:CD:DD:1B:06 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5A9CDC0BD1F18265F4D7A346FEC65EFAA1C2D58D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.mft caRepository: rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 18:50:56 +0000 Certificate not after: Mon 30 Jun 2025 18:55:56 +0000 Subordinate resources: IP: 103.245.122.0/23 IP: 202.52.50.0/24 IP: 2001:df0:44a::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:9c:dc:0b:d1:f1:82:65:f4:d7:a3:46:fe:c6:5e:fa:a1:c2:d5:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 1 18:50:56 2024 GMT Not After : Jun 30 18:55:56 2025 GMT Subject: CN=AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:2f:c8:cd:00:6f:05:d2:20:fe:07:43:a4:aa: 0f:f7:cb:20:d9:5b:5a:e5:08:cf:c8:8d:b7:43:a4: 14:d7:52:69:c9:6e:18:34:94:25:8a:3a:f4:7b:7f: 73:54:05:07:16:50:07:5a:0e:49:f4:ca:7a:4c:63: 1d:1b:05:6c:80:7f:89:3f:19:55:b6:28:92:2b:87: 0f:c5:e0:58:d3:ab:04:1b:fb:a4:54:af:79:f8:c7: 9c:27:1a:44:0c:01:d9:f4:be:a4:d1:20:3e:3b:6d: 09:c9:07:ef:f9:c2:44:a8:43:85:c6:e9:b2:51:99: f3:ac:7d:5c:22:4f:12:7a:2b:48:9f:9e:a4:bd:dc: 92:7d:82:ff:3a:c3:b0:2d:7c:c2:20:69:de:8e:e1: 07:d5:51:05:eb:e6:d2:33:f6:61:6a:69:aa:1a:d5: 6c:13:81:90:6a:c3:cf:35:35:00:c9:6d:61:5e:1c: 8f:7d:14:ea:8e:1c:a1:89:19:ea:05:9f:7b:44:53: c9:f1:8a:fc:59:d0:f8:0f:12:63:6b:3b:85:3b:2d: e4:7b:e9:71:13:22:da:66:df:4c:37:0e:9c:f8:69: b8:0c:66:0f:ca:45:31:03:56:d2:a6:9a:39:5c:d4: 66:bf:51:e4:08:7a:2f:df:9d:ea:a3:c1:3b:a0:e5: d3:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AB:58:72:11:82:B4:EA:A8:FE:CD:4A:D8:80:8C:EE:F5:CD:DD:1B:06 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2410fa43-0be3-471a-9c20-81046291ca11/0/AB58721182B4EAA8FECD4AD8808CEEF5CDDD1B06.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.245.122.0/23 202.52.50.0/24 IPv6: 2001:df0:44a::/48 Signature Algorithm: sha256WithRSAEncryption 4d:25:68:0a:c3:aa:73:d7:4c:04:e8:57:dc:3a:41:cf:6a:fb: b4:2f:16:f7:e6:82:7d:c5:12:39:2c:f6:df:a5:49:bf:00:6e: 1e:f1:2e:7d:d7:55:8e:5d:25:ce:18:a2:0b:1e:2b:53:0d:d3: e4:0b:00:e0:72:42:84:e6:90:05:c0:e1:ca:72:cd:c4:da:d1: a9:7e:0c:c6:02:b6:16:2d:d7:3c:c8:d3:02:89:d2:f0:b0:c7: 05:0a:36:dc:f3:d4:fd:ec:99:10:07:c0:5e:be:f6:ab:8c:0e: 65:1a:62:d0:aa:4b:4f:42:87:af:80:37:03:a8:cd:92:12:82: c5:37:40:b5:3e:79:60:9e:bd:bb:0f:a2:e5:b1:c8:7b:2d:97: 0f:93:2c:bd:c2:a0:2b:cf:51:61:5d:eb:b3:1c:67:1b:2f:78: cd:54:db:83:5b:67:28:c9:28:8c:0d:76:94:3e:93:69:ea:45: 44:a3:d0:e1:9d:f9:36:6f:dd:27:41:fd:65:8d:f3:00:6b:e5: 75:89:d1:89:c7:23:a1:ad:ca:6c:9a:2f:cb:97:2d:8a:de:70: 12:e9:fe:d3:f9:06:1c:0c:b4:3e:72:a1:47:d0:a8:a0:98:36: d8:b4:b4:28:22:d1:4e:a3:fb:44:1c:96:e1:9b:82:b7:6c:97: 85:db:13:1b -----BEGIN CERTIFICATE----- MIIF3DCCBMSgAwIBAgIUWpzcC9HxgmX016NG/sZe+qHC1Y0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE4NTA1NloX DTI1MDYzMDE4NTU1NlowMzExMC8GA1UEAxMoQUI1ODcyMTE4MkI0RUFBOEZFQ0Q0 QUQ4ODA4Q0VFRjVDREREMUIwNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMUvyM0AbwXSIP4HQ6SqD/fLINlbWuUIz8iNt0OkFNdSacluGDSUJYo69Ht/ c1QFBxZQB1oOSfTKekxjHRsFbIB/iT8ZVbYokiuHD8XgWNOrBBv7pFSvefjHnCca RAwB2fS+pNEgPjttCckH7/nCRKhDhcbpslGZ86x9XCJPEnorSJ+epL3ckn2C/zrD sC18wiBp3o7hB9VRBevm0jP2YWppqhrVbBOBkGrDzzU1AMltYV4cj30U6o4coYkZ 6gWfe0RTyfGK/FnQ+A8SY2s7hTst5HvpcRMi2mbfTDcOnPhpuAxmD8pFMQNW0qaa OVzUZr9R5Ah6L9+d6qPBO6Dl0yECAwEAAaOCAs8wggLLMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKtYchGCtOqo/s1K2ICM7vXN3RsGMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yNDEwZmE0My0wYmUzLTQ3MWEtOWMyMC04MTA0NjI5MWNhMTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI0MTBmYTQz LTBiZTMtNDcxYS05YzIwLTgxMDQ2MjkxY2ExMS8wL0FCNTg3MjExODJCNEVBQThG RUNENEFEODgwOENFRUY1Q0RERDFCMDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMBIEAgABMAwD BAFn9XoDBADKNDIwDwQCAAIwCQMHACABDfAESjANBgkqhkiG9w0BAQsFAAOCAQEA TSVoCsOqc9dMBOhX3DpBz2r7tC8W9+aCfcUSOSz236VJvwBuHvEufddVjl0lzhii Cx4rUw3T5AsA4HJChOaQBcDhynLNxNrRqX4MxgK2Fi3XPMjTAonS8LDHBQo23PPU /eyZEAfAXr72q4wOZRpi0KpLT0KHr4A3A6jNkhKCxTdAtT55YJ69uw+i5bHIey2X D5MsvcKgK89RYV3rsxxnGy94zVTbg1tnKMkojA12lD6TaepFRKPQ4Z35Nm/dJ0H9 ZY3zAGvldYnRiccjoa3KbJovy5ctit5wEun+0/kGHAy0PnKhR9CooJg22LS0KCLR TqP7RByW4ZuCt2yXhdsTGw== -----END CERTIFICATE-----Generated at Sun Feb 16 20:42:16 2025 by rpki-client