$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer File: C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.cer (raw, json) Hash identifier: UUEvx06TQeTOuXgTn/4j7CGz07TWdHvgtG7l67eA8P4= Subject key identifier: C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0168DDE012E739375788678B4F396EE86AF61CE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.mft caRepository: rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 19:38:44 +0000 Certificate not after: Mon 30 Jun 2025 19:43:44 +0000 Subordinate resources: IP: 103.156.16.0/23 IP: 2406:7bc0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:68:dd:e0:12:e7:39:37:57:88:67:8b:4f:39:6e:e8:6a:f6:1c:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 19:38:44 2024 GMT Not After : Jun 30 19:43:44 2025 GMT Subject: CN=C25D5056A69CE0D0685BAD8E48F33A4A62A5C582 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:16:b4:aa:94:b0:e1:08:52:8f:df:47:b5:d0: bf:58:d7:34:22:93:53:5a:d6:36:d8:75:5d:ae:36: a3:06:5b:e5:5a:b1:55:15:f7:51:b6:e9:ce:7b:f1: 0f:56:b9:d0:c5:ac:12:40:f0:14:31:3f:46:24:55: d1:b8:d3:88:a4:ad:ac:bf:f5:5b:ad:d3:ec:fb:ca: 50:67:2e:d4:41:f7:ca:6e:6e:24:1b:27:1a:c9:01: 38:7e:03:1e:7e:a6:c2:f5:68:27:be:8c:80:7c:fb: 98:ce:26:79:52:b5:61:d4:01:fd:34:97:f2:b6:d2: ec:4d:70:7e:0b:08:38:dc:23:24:7d:ed:ce:0a:c5: 65:1b:50:da:4e:94:eb:8e:ef:6d:48:79:4b:26:b4: 2c:2d:cd:da:ba:af:cd:9e:18:39:d7:15:ab:9f:19: fa:36:12:a0:b8:2b:ef:f8:7a:ae:a3:16:8b:55:55: d7:e7:67:25:82:c7:57:aa:bc:ca:85:7b:75:f9:7f: ee:d4:83:a3:35:11:e7:11:9e:62:6d:9b:3e:a3:10: c3:7b:87:9b:eb:f5:e9:12:b6:30:42:c0:f4:37:e0: 3a:23:db:16:da:3a:86:2a:f1:73:ce:7f:83:bc:80: c5:ae:18:40:c9:05:53:e4:7f:6a:de:9d:8e:9c:01: a0:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C2:5D:50:56:A6:9C:E0:D0:68:5B:AD:8E:48:F3:3A:4A:62:A5:C5:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f96401e3-9f62-4b3c-bffb-783355ae6770/0/C25D5056A69CE0D0685BAD8E48F33A4A62A5C582.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.16.0/23 IPv6: 2406:7bc0::/32 Signature Algorithm: sha256WithRSAEncryption 6b:0f:84:ce:6a:9e:04:7a:1d:cd:c9:c5:ac:e2:fb:81:65:0d: db:55:31:d1:f3:0c:7f:5d:c5:9c:bd:5e:c5:06:ec:d1:c2:cf: b5:c2:6e:7c:72:89:20:8a:97:75:30:80:1e:67:85:1a:52:be: 9c:76:c0:30:6c:1d:21:7e:86:2f:e2:c5:3b:ed:4d:0e:b5:00: cd:36:1b:53:71:38:7f:bb:90:fd:68:f3:b1:ca:a0:7c:c1:7f: 38:60:aa:c6:02:b1:c1:81:35:f2:a8:06:78:eb:0c:bd:d6:aa: 94:5e:90:c8:21:0b:41:b5:ef:18:c7:f0:44:3f:67:b9:d0:b3: 30:d8:41:a8:6c:f2:17:74:af:06:32:48:fa:0e:37:d0:0e:ef: b2:3f:6a:2f:87:2a:8a:d5:7c:5a:13:ef:60:a5:53:c8:3e:1f: e5:90:dc:60:1a:b4:f0:7a:a1:e2:1e:55:ca:ea:1d:64:3b:f6: 5c:ef:cd:e9:e0:ca:b5:7f:12:ef:4f:14:66:10:4f:10:3b:73: db:45:6c:25:bb:46:58:30:fb:66:3a:af:99:27:27:0a:13:c1: dd:ba:05:ba:b8:47:34:da:49:18:e0:98:55:3c:2c:57:bc:ff: e9:17:ee:4c:c3:1a:ab:58:45:86:da:5c:77:b7:8d:07:b0:d9: 9a:2e:cf:de -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUAWjd4BLnOTdXiGeLTzlu6Gr2HOMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE5Mzg0NFoX DTI1MDYzMDE5NDM0NFowMzExMC8GA1UEAxMoQzI1RDUwNTZBNjlDRTBEMDY4NUJB RDhFNDhGMzNBNEE2MkE1QzU4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOoWtKqUsOEIUo/fR7XQv1jXNCKTU1rWNth1Xa42owZb5VqxVRX3Ubbpznvx D1a50MWsEkDwFDE/RiRV0bjTiKStrL/1W63T7PvKUGcu1EH3ym5uJBsnGskBOH4D Hn6mwvVoJ76MgHz7mM4meVK1YdQB/TSX8rbS7E1wfgsIONwjJH3tzgrFZRtQ2k6U 647vbUh5Sya0LC3N2rqvzZ4YOdcVq58Z+jYSoLgr7/h6rqMWi1VV1+dnJYLHV6q8 yoV7dfl/7tSDozUR5xGeYm2bPqMQw3uHm+v16RK2MELA9DfgOiPbFto6hirxc85/ g7yAxa4YQMkFU+R/at6djpwBoJMCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMJdUFamnODQaFutjkjzOkpipcWCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mOTY0MDFlMy05ZjYyLTRiM2MtYmZmYi03ODMzNTVhZTY3NzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y5NjQwMWUz LTlmNjItNGIzYy1iZmZiLTc4MzM1NWFlNjc3MC8wL0MyNUQ1MDU2QTY5Q0UwRDA2 ODVCQUQ4RTQ4RjMzQTRBNjJBNUM1ODIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnBAwDQQCAAIwBwMFACQGe8AwDQYJKoZIhvcNAQELBQADggEBAGsPhM5qngR6 Hc3Jxazi+4FlDdtVMdHzDH9dxZy9XsUG7NHCz7XCbnxyiSCKl3UwgB5nhRpSvpx2 wDBsHSF+hi/ixTvtTQ61AM02G1NxOH+7kP1o87HKoHzBfzhgqsYCscGBNfKoBnjr DL3WqpRekMghC0G17xjH8EQ/Z7nQszDYQahs8hd0rwYySPoON9AO77I/ai+HKorV fFoT72ClU8g+H+WQ3GAatPB6oeIeVcrqHWQ79lzvzengyrV/Eu9PFGYQTxA7c9tF bCW7Rlgw+2Y6r5knJwoTwd26Bbq4RzTaSRjgmFU8LFe8/+kX7kzDGqtYRYbaXHe3 jQew2Zouz94= -----END CERTIFICATE-----Generated at Mon Nov 25 13:02:00 2024 by rpki-client on console-fra.rpki-client.org