$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer File: C70A343932991281F91796DB87B011987603BBF4.cer (raw, json) Hash identifier: PNdCEcFovdwbD0+fvoJ/9tXr5jvLjGdIS7SxruSRaow= Subject key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3EA8F585122974BA260DFA672AC24311CC641FAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft caRepository: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 21 Jan 2025 16:40:24 +0000 Certificate not after: Tue 20 Jan 2026 16:45:24 +0000 Subordinate resources: IP: 103.184.120.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:a8:f5:85:12:29:74:ba:26:0d:fa:67:2a:c2:43:11:cc:64:1f:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 21 16:40:24 2025 GMT Not After : Jan 20 16:45:24 2026 GMT Subject: CN=C70A343932991281F91796DB87B011987603BBF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b0:b5:f1:a9:d3:53:81:87:3c:bc:e3:fb:5a: 20:2d:ab:70:28:ca:a3:29:a8:d1:a4:39:19:be:56: 48:60:7f:c4:91:06:72:12:cb:33:1e:4b:7e:ec:c6: e6:a4:90:06:44:40:5d:20:6c:4d:db:df:a4:26:3d: 0f:b0:12:1e:5c:48:5d:24:e7:d9:b7:50:7e:fd:0e: c3:78:67:04:75:d4:0c:1e:6f:94:18:0a:94:ce:ac: dd:ba:cb:96:b8:1b:39:bb:cb:cc:70:d9:9e:ac:2e: 0c:0c:df:f8:1d:69:be:dc:93:84:1b:71:be:fe:ea: 73:63:c7:76:80:ba:27:39:2a:6e:46:6c:f4:ea:a9: f2:3b:42:f8:b3:ac:ae:a8:e0:17:13:ab:fc:35:9c: d0:53:ef:18:8c:bd:11:2d:48:c6:7c:43:35:49:33: 47:a4:18:a5:d0:f7:ff:e0:5b:f4:a1:4b:b5:ba:11: 6e:29:19:47:74:e4:84:3a:3d:5a:b6:ac:e3:63:04: 05:aa:b5:3d:15:d5:36:5b:2b:71:76:7f:f8:d9:25: 3f:4f:ab:d3:6a:10:ee:0a:1f:0d:c2:f9:01:20:7e: 2d:8b:09:84:77:92:09:00:57:ac:10:d6:6b:c1:24: 36:9e:9d:2a:09:b0:55:f2:3a:49:36:9e:d6:be:cd: 84:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.120.0/23 Signature Algorithm: sha256WithRSAEncryption 24:d5:69:0f:20:d6:a5:97:b8:4a:73:2d:4e:ad:75:e7:20:e4: 91:47:68:0d:02:33:7d:1a:45:2c:0a:b0:c8:15:4d:f6:0b:af: f0:7c:89:90:d7:49:7b:8b:69:f9:39:2c:9f:1b:dc:fb:8e:7d: 85:e8:bd:4d:58:52:b0:e7:f2:60:74:ce:fb:94:aa:02:b4:d1: 63:84:b3:90:aa:67:ef:91:a2:03:ad:57:78:67:97:ae:aa:e1: 90:2a:f9:79:b1:90:b7:10:d3:f4:81:bf:e1:6a:1f:9b:96:9b: 15:6f:01:e1:e2:9c:73:47:a0:4d:3b:c6:41:f2:91:6b:70:09: 23:83:91:57:05:f2:41:2e:01:6c:c3:c7:e3:6b:6c:0a:b7:8d: 98:d1:d1:5d:68:53:9e:1d:ec:79:c4:6e:6d:70:32:03:c6:61: 69:26:c5:4a:c0:67:85:49:8d:bd:cf:ae:19:68:98:dc:7a:f7: ca:49:37:5d:9c:86:19:d8:f4:14:c7:99:40:80:d1:03:43:37: 59:a1:77:d4:b7:4a:53:56:9e:db:93:52:7e:8c:e0:19:db:fd: 77:96:aa:25:24:9a:d4:db:37:32:d9:e8:61:20:91:ef:58:61: 83:f5:b6:7e:ef:f3:8f:b1:53:49:94:93:ae:85:72:1a:e9:19: e2:ef:52:63 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPqj1hRIpdLomDfpnKsJDEcxkH6swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEyMTE2NDAyNFoX DTI2MDEyMDE2NDUyNFowMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5 NkRCODdCMDExOTg3NjAzQkJGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSwtfGp01OBhzy84/taIC2rcCjKoymo0aQ5Gb5WSGB/xJEGchLLMx5LfuzG 5qSQBkRAXSBsTdvfpCY9D7ASHlxIXSTn2bdQfv0Ow3hnBHXUDB5vlBgKlM6s3brL lrgbObvLzHDZnqwuDAzf+B1pvtyThBtxvv7qc2PHdoC6JzkqbkZs9Oqp8jtC+LOs rqjgFxOr/DWc0FPvGIy9ES1IxnxDNUkzR6QYpdD3/+Bb9KFLtboRbikZR3TkhDo9 Wras42MEBaq1PRXVNlsrcXZ/+NklP0+r02oQ7gofDcL5ASB+LYsJhHeSCQBXrBDW a8EkNp6dKgmwVfI6STae1r7NhN0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMcKNDkymRKB+ReW24ewEZh2A7v0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYzE3Y2My LWY0YTItNDE1ZS04ZWEyLWY5YzQ3Zjc1YzRjYS8wL0M3MEEzNDM5MzI5OTEyODFG OTE3OTZEQjg3QjAxMTk4NzYwM0JCRjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuHgwDQYJKoZIhvcNAQELBQADggEBACTVaQ8g1qWXuEpzLU6tdecg5JFHaA0C M30aRSwKsMgVTfYLr/B8iZDXSXuLafk5LJ8b3PuOfYXovU1YUrDn8mB0zvuUqgK0 0WOEs5CqZ++RogOtV3hnl66q4ZAq+XmxkLcQ0/SBv+FqH5uWmxVvAeHinHNHoE07 xkHykWtwCSODkVcF8kEuAWzDx+NrbAq3jZjR0V1oU54d7HnEbm1wMgPGYWkmxUrA Z4VJjb3PrhlomNx698pJN12chhnY9BTHmUCA0QNDN1mhd9S3SlNWntuTUn6M4Bnb /XeWqiUkmtTbNzLZ6GEgke9YYYP1tn7v84+xU0mUk66FchrpGeLvUmM= -----END CERTIFICATE-----Generated at Sat Apr 5 10:07:55 2025 by rpki-client