$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B152586AE46FCAB640629D941147319E05FCF34B.cer File: B152586AE46FCAB640629D941147319E05FCF34B.cer (raw, json) Hash identifier: 60EgDDJlvbfDva8JNF3SiHOfNSa+JsCWzvNoh4bj8qU= Subject key identifier: B1:52:58:6A:E4:6F:CA:B6:40:62:9D:94:11:47:31:9E:05:FC:F3:4B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 64C974465F222AC148348AE2BFE59E8FED6EEE58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/B152586AE46FCAB640629D941147319E05FCF34B.mft caRepository: rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 19 Dec 2024 23:24:38 +0000 Certificate not after: Thu 18 Dec 2025 23:29:38 +0000 Subordinate resources: IP: 103.176.227.0/24 IP: 2001:df0:7c40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 14 Apr 2025 16:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c9:74:46:5f:22:2a:c1:48:34:8a:e2:bf:e5:9e:8f:ed:6e:ee:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 19 23:24:38 2024 GMT Not After : Dec 18 23:29:38 2025 GMT Subject: CN=B152586AE46FCAB640629D941147319E05FCF34B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:e2:de:c6:cb:5d:e9:2e:4e:22:bb:ac:f6:eb: 32:10:f7:cf:3f:eb:e2:58:04:02:86:fe:77:00:5c: 93:eb:2c:bd:6c:74:41:23:2a:4f:5a:4d:cc:bf:1d: 9a:5e:0c:2d:83:15:e2:7c:91:07:ec:40:25:e7:82: 31:79:0b:7c:47:03:9b:09:1e:9d:03:4c:ab:6e:39: 8d:a6:20:01:70:30:d8:8b:1c:2c:7a:44:b1:4b:93: 8a:72:ec:5a:e0:28:cb:41:e2:f8:e2:96:40:6f:80: 77:99:60:72:79:c1:57:9d:96:3c:e9:e8:43:a5:e9: c3:41:9d:ea:4c:ad:4b:a9:26:a6:16:a7:27:f1:5b: 93:a1:0c:72:5a:ba:fc:eb:96:b5:72:23:56:81:4e: 5a:b5:68:c1:a3:be:f7:dc:7b:86:d1:31:92:93:d1: 54:5c:e7:27:71:8b:a1:77:d3:63:fd:82:72:d2:a3: 50:f1:29:2d:61:93:94:37:01:a7:de:c9:f8:2e:d0: b1:30:3a:ca:6a:2a:c1:27:52:d4:76:d6:71:d4:c3: 65:a9:91:c4:99:f8:0e:a8:1c:31:3e:55:ee:3a:be: f6:5b:7d:fe:26:6b:76:b3:8f:ad:45:24:22:f1:c8: 7c:e8:e2:f7:c8:71:23:c7:9f:4b:4e:bc:bc:0b:06: 44:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B1:52:58:6A:E4:6F:CA:B6:40:62:9D:94:11:47:31:9E:05:FC:F3:4B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6a9e2898-023b-4741-8735-a0718cc6cf2b/0/B152586AE46FCAB640629D941147319E05FCF34B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.227.0/24 IPv6: 2001:df0:7c40::/48 Signature Algorithm: sha256WithRSAEncryption 96:8a:21:9e:c4:70:bb:20:a0:d9:9d:39:27:c7:fd:1d:1f:dd: f6:e7:49:cb:59:e1:e7:0c:c1:ff:b4:f5:e4:e3:e9:9f:03:21: a1:35:ad:5c:d2:c3:88:3e:a9:d6:8d:65:58:8f:61:af:56:0d: 68:e0:68:0b:8e:49:ee:75:f4:fb:20:a6:5b:7a:0b:b1:da:f3: b9:84:d5:1a:d4:91:07:fd:7f:ec:e3:bb:fc:8f:60:fa:06:45: c4:33:1e:7b:cc:f2:c7:77:26:81:f8:4b:c8:6d:1b:0f:bd:55: 74:71:b0:76:08:c7:82:fa:22:fe:d6:28:27:dd:02:78:d3:6d: ea:9d:d5:86:84:0b:58:1f:b9:50:11:14:6e:fa:46:be:24:a4: 26:46:7a:74:64:28:91:17:e7:5a:da:11:2e:35:18:3e:be:51: fe:21:28:c8:30:0f:1d:67:a3:a6:86:53:0c:da:9d:69:70:bf: 88:e7:ac:68:3d:8a:67:09:56:8b:66:3c:14:04:25:07:17:c7: 3c:94:45:47:ff:1a:63:f6:f0:65:fb:ae:f1:d8:90:d0:f1:fa: 62:dd:65:25:84:8f:97:9b:8f:ad:e4:03:5c:53:ae:cd:ac:88: f2:3b:a6:d9:39:47:6f:19:23:d4:67:33:92:c7:df:a6:47:e6: 35:a7:5e:5f -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUZMl0Rl8iKsFINIriv+Wej+1u7lgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxOTIzMjQzOFoX DTI1MTIxODIzMjkzOFowMzExMC8GA1UEAxMoQjE1MjU4NkFFNDZGQ0FCNjQwNjI5 RDk0MTE0NzMxOUUwNUZDRjM0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKri3sbLXekuTiK7rPbrMhD3zz/r4lgEAob+dwBck+ssvWx0QSMqT1pNzL8d ml4MLYMV4nyRB+xAJeeCMXkLfEcDmwkenQNMq245jaYgAXAw2IscLHpEsUuTinLs WuAoy0Hi+OKWQG+Ad5lgcnnBV52WPOnoQ6Xpw0Gd6kytS6kmphanJ/Fbk6EMclq6 /OuWtXIjVoFOWrVowaO+99x7htExkpPRVFznJ3GLoXfTY/2CctKjUPEpLWGTlDcB p97J+C7QsTA6ymoqwSdS1HbWcdTDZamRxJn4DqgcMT5V7jq+9lt9/iZrdrOPrUUk IvHIfOji98hxI8efS068vAsGRJ0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLFSWGrkb8q2QGKdlBFHMZ4F/PNLMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82YTllMjg5OC0wMjNiLTQ3NDEtODczNS1hMDcxOGNjNmNmMmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhOWUyODk4 LTAyM2ItNDc0MS04NzM1LWEwNzE4Y2M2Y2YyYi8wL0IxNTI1ODZBRTQ2RkNBQjY0 MDYyOUQ5NDExNDczMTlFMDVGQ0YzNEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnsOMwDwQCAAIwCQMHACABDfB8QDANBgkqhkiG9w0BAQsFAAOCAQEAloohnsRw uyCg2Z05J8f9HR/d9udJy1nh5wzB/7T15OPpnwMhoTWtXNLDiD6p1o1lWI9hr1YN aOBoC45J7nX0+yCmW3oLsdrzuYTVGtSRB/1/7OO7/I9g+gZFxDMee8zyx3cmgfhL yG0bD71VdHGwdgjHgvoi/tYoJ90CeNNt6p3VhoQLWB+5UBEUbvpGviSkJkZ6dGQo kRfnWtoRLjUYPr5R/iEoyDAPHWejpoZTDNqdaXC/iOesaD2KZwlWi2Y8FAQlBxfH PJRFR/8aY/bwZfuu8diQ0PH6Yt1lJYSPl5uPreQDXFOuzayI8jum2TlHbxkj1Gcz ksffpkfmNadeXw== -----END CERTIFICATE-----Generated at Fri Apr 11 09:00:27 2025 by rpki-client