$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.cer File: AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.cer (raw, json) Hash identifier: yM3jlhzdjtd7pBZTD4SPfI9JSrN0Z22WyAY8sKOgbew= Subject key identifier: AF:CF:00:A9:0B:7E:9E:A1:E3:01:82:B0:BF:F9:34:BE:4D:C0:97:1C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6C8C764B915E4EB7127D5AE7D3D3C973C8749E79 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0/AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.mft caRepository: rsync://repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 01 Aug 2024 14:50:58 +0000 Certificate not after: Thu 31 Jul 2025 14:55:58 +0000 Subordinate resources: IP: 103.30.212.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:8c:76:4b:91:5e:4e:b7:12:7d:5a:e7:d3:d3:c9:73:c8:74:9e:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Aug 1 14:50:58 2024 GMT Not After : Jul 31 14:55:58 2025 GMT Subject: CN=AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:84:35:16:0c:e3:9d:4e:79:ae:cd:56:16:4b: 20:76:96:28:66:c7:ab:b3:0b:de:89:c8:48:5c:77: 11:ab:f5:01:c4:e3:89:81:dd:29:2c:f7:11:2f:f3: 58:49:bf:73:1c:a8:3d:d7:27:c8:ec:da:3c:e3:5f: 59:7f:6f:ab:c4:9c:0a:48:54:57:0d:c5:b2:05:12: 61:05:32:40:55:df:23:0a:31:a5:ac:11:ac:3d:3a: 19:68:43:57:0e:bc:3a:a4:27:ac:21:78:24:8a:25: 04:46:fc:5f:f8:2e:12:8a:79:8b:ed:ba:08:ad:a2: 95:b8:cc:03:b7:e2:5b:0b:51:14:fb:cf:d1:86:83: 36:ba:33:3a:2a:46:90:36:b2:ec:94:5b:a6:dd:94: 3c:10:21:9f:cd:13:9c:85:de:ee:23:dc:e1:b3:06: 17:a1:59:e9:87:83:73:4c:97:24:b5:9c:26:7e:36: 86:e1:aa:3c:7a:1b:16:93:d5:01:87:9e:26:ac:b3: 1e:38:5c:2c:cc:25:2b:19:f8:6e:79:1d:16:fd:38: a9:b7:78:89:ec:83:85:5b:84:b1:a9:5f:d3:29:b1: 2f:03:d9:7e:8c:85:00:55:cf:46:53:03:fc:a0:51: 6c:36:73:8a:f4:73:76:66:47:9f:10:04:90:30:cb: 9b:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AF:CF:00:A9:0B:7E:9E:A1:E3:01:82:B0:BF:F9:34:BE:4D:C0:97:1C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2565a1cf-2950-47dc-a212-f653b8c3f5a9/0/AFCF00A90B7E9EA1E30182B0BFF934BE4DC0971C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.30.212.0/24 Signature Algorithm: sha256WithRSAEncryption 30:41:1d:4c:ea:eb:74:69:37:f7:f0:53:70:73:71:a0:15:d4: 06:4d:8e:42:8e:fa:e6:88:a8:c2:56:63:9c:00:7f:c0:ce:e6: ec:1b:17:8d:bf:03:7a:83:bd:0b:2d:d9:6c:7b:0b:2a:18:09: 84:62:b7:31:6b:1a:7e:81:35:a9:13:ef:7d:ab:16:e4:77:e1: 1a:01:6c:27:02:11:c1:d6:35:e7:16:e5:65:fa:25:fb:8a:ad: 8a:c8:d2:56:4c:53:ce:54:dc:4d:1e:cd:27:4f:c8:a8:25:98: ee:be:97:65:c2:6d:47:11:95:e5:9a:a8:71:9b:f0:3d:98:cf: 26:a7:d3:79:83:65:14:9e:3e:f4:39:b0:ce:c5:1b:6e:bc:73: 88:c3:f1:bc:36:71:84:f1:84:2c:9c:35:f7:31:36:9f:ce:3c: 5e:26:fa:91:7f:b0:7a:74:99:38:64:0f:28:fa:6f:d4:62:6b: 4a:e8:79:d4:f7:03:84:8b:5b:c4:29:87:7c:f3:16:48:70:2b: d9:8c:3d:55:3d:59:69:7c:34:12:8a:40:cc:02:09:62:68:ea: af:ac:23:b4:2b:b8:dc:85:84:ba:40:8c:b9:a3:a0:19:8f:64: 33:ec:aa:60:85:05:11:88:a1:d9:51:c1:7d:d3:ba:56:2a:ba: 81:2e:b1:15 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbIx2S5FeTrcSfVrn09PJc8h0nnkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwMTE0NTA1OFoX DTI1MDczMTE0NTU1OFowMzExMC8GA1UEAxMoQUZDRjAwQTkwQjdFOUVBMUUzMDE4 MkIwQkZGOTM0QkU0REMwOTcxQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMeENRYM451Oea7NVhZLIHaWKGbHq7ML3onISFx3Eav1AcTjiYHdKSz3ES/z WEm/cxyoPdcnyOzaPONfWX9vq8ScCkhUVw3FsgUSYQUyQFXfIwoxpawRrD06GWhD Vw68OqQnrCF4JIolBEb8X/guEop5i+26CK2ilbjMA7fiWwtRFPvP0YaDNrozOipG kDay7JRbpt2UPBAhn80TnIXe7iPc4bMGF6FZ6YeDc0yXJLWcJn42huGqPHobFpPV AYeeJqyzHjhcLMwlKxn4bnkdFv04qbd4ieyDhVuEsalf0ymxLwPZfoyFAFXPRlMD /KBRbDZzivRzdmZHnxAEkDDLm6ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK/PAKkLfp6h4wGCsL/5NL5NwJccMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yNTY1YTFjZi0yOTUwLTQ3ZGMtYTIxMi1mNjUzYjhjM2Y1YTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI1NjVhMWNm LTI5NTAtNDdkYy1hMjEyLWY2NTNiOGMzZjVhOS8wL0FGQ0YwMEE5MEI3RTlFQTFF MzAxODJCMEJGRjkzNEJFNERDMDk3MUMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnHtQwDQYJKoZIhvcNAQELBQADggEBADBBHUzq63RpN/fwU3BzcaAV1AZNjkKO +uaIqMJWY5wAf8DO5uwbF42/A3qDvQst2Wx7CyoYCYRitzFrGn6BNakT732rFuR3 4RoBbCcCEcHWNecW5WX6JfuKrYrI0lZMU85U3E0ezSdPyKglmO6+l2XCbUcRleWa qHGb8D2Yzyan03mDZRSePvQ5sM7FG268c4jD8bw2cYTxhCycNfcxNp/OPF4m+pF/ sHp0mThkDyj6b9Ria0roedT3A4SLW8Qph3zzFkhwK9mMPVU9WWl8NBKKQMwCCWJo 6q+sI7QruNyFhLpAjLmjoBmPZDPsqmCFBRGIodlRwX3TulYquoEusRU= -----END CERTIFICATE-----Generated at Sun Feb 16 20:50:23 2025 by rpki-client