$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5F121BCE742FD0358AE347D984F209BC381871.cer File: AD5F121BCE742FD0358AE347D984F209BC381871.cer (raw, json) Hash identifier: ohI3V5L5qizHUmNRu+0f9xN0dymb3fZWtOJ98RYT3gM= Subject key identifier: AD:5F:12:1B:CE:74:2F:D0:35:8A:E3:47:D9:84:F2:09:BC:38:18:71 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A951F8B7115E2C72AEA7F68F2ED4E2FF1D32B2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/AD5F121BCE742FD0358AE347D984F209BC381871.mft caRepository: rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 20 Jul 2024 11:48:36 +0000 Certificate not after: Sat 19 Jul 2025 11:53:36 +0000 Subordinate resources: IP: 103.170.24.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:95:1f:8b:71:15:e2:c7:2a:ea:7f:68:f2:ed:4e:2f:f1:d3:2b:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 20 11:48:36 2024 GMT Not After : Jul 19 11:53:36 2025 GMT Subject: CN=AD5F121BCE742FD0358AE347D984F209BC381871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:93:14:a3:38:b3:1c:c1:0e:99:3c:b8:06:69: fa:95:77:5e:a1:e6:72:4e:03:59:a0:e6:ee:9a:32: 71:23:7d:72:b6:14:ce:f9:f9:6c:26:08:21:fe:4b: 0d:71:79:31:6e:34:9f:2b:8b:5f:bc:4a:c4:c5:18: 34:9f:0e:3a:ec:ef:13:a0:8b:9c:2a:41:a3:81:05: 84:05:cd:ac:60:76:27:b5:fb:de:72:4e:11:6c:1f: 3b:e3:d1:fb:fc:5b:3d:50:1b:8f:8e:71:c1:e8:61: 1c:4b:5d:9c:98:7d:c2:44:0c:d8:d0:cf:1b:6e:35: 6c:bb:39:b5:38:17:bd:9d:af:2c:44:8b:35:0c:fa: 07:f7:fc:da:d6:69:44:80:fe:9d:c1:03:41:c8:e9: 63:ca:41:0b:43:32:44:34:e9:9a:42:4a:01:f9:95: fc:4c:29:f1:ce:e2:3d:ce:d6:c1:b8:26:e3:3a:4b: 9b:81:3b:f2:f1:77:28:ad:a6:3a:6b:51:8e:70:43: 7d:e4:a8:5b:dc:7b:2e:65:df:d1:12:eb:ef:fb:12: 8c:72:df:1a:01:5b:a3:d3:42:22:74:f7:ca:b3:f5: 30:f9:ef:db:c3:ca:04:e3:71:d9:55:01:f2:cd:19: 08:72:41:ec:71:22:39:4a:74:69:e2:01:54:70:63: 71:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AD:5F:12:1B:CE:74:2F:D0:35:8A:E3:47:D9:84:F2:09:BC:38:18:71 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/AD5F121BCE742FD0358AE347D984F209BC381871.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.24.0/23 Signature Algorithm: sha256WithRSAEncryption 30:41:63:f9:de:85:19:42:86:f9:43:47:27:bf:5d:ae:b1:52: b7:81:8c:59:e6:fd:4c:6e:6d:82:7c:7d:13:f4:28:fa:94:dd: 81:67:53:cd:b7:00:33:74:84:1d:af:02:5d:93:46:70:8a:b9: 96:ff:2a:1a:62:de:21:36:2a:4b:bf:e4:b6:8c:08:86:33:96: da:6c:5a:e5:26:4f:24:dd:e9:90:48:f9:5d:71:13:f4:95:c9: 78:f9:0f:cf:32:64:71:91:7f:62:52:f9:ba:3c:38:dd:46:5d: 46:02:8d:58:6e:a2:29:ac:f1:01:f8:b9:04:97:60:52:ec:45: c4:ff:68:1b:24:39:55:f0:38:00:21:42:2c:e0:41:98:91:17: a8:5b:27:93:33:67:e6:16:18:a7:61:60:58:c7:5c:87:eb:c3: b6:24:b8:8d:d1:c3:4a:8e:53:00:bb:c4:bf:c1:10:c8:2e:61: 59:00:e8:74:92:5e:22:2e:77:20:dd:41:c7:e1:d0:82:80:cc: a8:d2:29:a9:e3:dd:61:d8:88:29:82:49:49:33:5b:96:54:a9: 26:07:cf:70:cf:94:29:c6:96:2e:23:55:6c:32:9b:40:21:37: ec:ba:12:94:d5:c9:dc:49:a4:97:1e:a2:ec:15:3f:4e:6a:9e: 64:2b:77:ac -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUSpUfi3EV4scq6n9o8u1OL/HTKyswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyMDExNDgzNloX DTI1MDcxOTExNTMzNlowMzExMC8GA1UEAxMoQUQ1RjEyMUJDRTc0MkZEMDM1OEFF MzQ3RDk4NEYyMDlCQzM4MTg3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCTFKM4sxzBDpk8uAZp+pV3XqHmck4DWaDm7poycSN9crYUzvn5bCYIIf5L DXF5MW40nyuLX7xKxMUYNJ8OOuzvE6CLnCpBo4EFhAXNrGB2J7X73nJOEWwfO+PR +/xbPVAbj45xwehhHEtdnJh9wkQM2NDPG241bLs5tTgXvZ2vLESLNQz6B/f82tZp RID+ncEDQcjpY8pBC0MyRDTpmkJKAfmV/Ewp8c7iPc7Wwbgm4zpLm4E78vF3KK2m OmtRjnBDfeSoW9x7LmXf0RLr7/sSjHLfGgFbo9NCInT3yrP1MPnv28PKBONx2VUB 8s0ZCHJB7HEiOUp0aeIBVHBjcZ0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK1fEhvOdC/QNYrjR9mE8gm8OBhxMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YjQwYjA5ZS1lOWY4LTQ4MjYtOTJiNS1iYTlkNTc1NzliMjYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNDBiMDll LWU5ZjgtNDgyNi05MmI1LWJhOWQ1NzU3OWIyNi8wL0FENUYxMjFCQ0U3NDJGRDAz NThBRTM0N0Q5ODRGMjA5QkMzODE4NzEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqhgwDQYJKoZIhvcNAQELBQADggEBADBBY/nehRlChvlDRye/Xa6xUreBjFnm /UxubYJ8fRP0KPqU3YFnU823ADN0hB2vAl2TRnCKuZb/Khpi3iE2Kku/5LaMCIYz ltpsWuUmTyTd6ZBI+V1xE/SVyXj5D88yZHGRf2JS+bo8ON1GXUYCjVhuoims8QH4 uQSXYFLsRcT/aBskOVXwOAAhQizgQZiRF6hbJ5MzZ+YWGKdhYFjHXIfrw7YkuI3R w0qOUwC7xL/BEMguYVkA6HSSXiIudyDdQcfh0IKAzKjSKanj3WHYiCmCSUkzW5ZU qSYHz3DPlCnGli4jVWwym0AhN+y6EpTVydxJpJceouwVP05qnmQrd6w= -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:20 2025 by rpki-client