$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.cer File: CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.cer (raw, json) Hash identifier: ko20JAxc9w0F+T/dzj9r1JJ0pRkR/mSK4UbwU4WMPkk= Subject key identifier: CB:B5:E8:D8:79:96:C4:89:7C:9F:5D:C0:CB:32:86:4F:4F:0C:5A:7A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 65D8AC1D6EE8FD0A1C77CAB18D899524F713FB80 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.mft caRepository: rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 05 Dec 2024 03:51:00 +0000 Certificate not after: Thu 04 Dec 2025 03:56:00 +0000 Subordinate resources: IP: 103.129.68.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:d8:ac:1d:6e:e8:fd:0a:1c:77:ca:b1:8d:89:95:24:f7:13:fb:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 5 03:51:00 2024 GMT Not After : Dec 4 03:56:00 2025 GMT Subject: CN=CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:bb:1f:7d:9f:14:50:a0:54:d7:25:d4:8f:11: a7:7f:ef:9b:90:6c:87:09:8a:bb:54:2e:21:e2:b7: f8:09:f8:8e:e3:72:b0:78:e1:c2:f9:f3:a9:a7:ac: 56:08:4a:9d:15:98:25:9e:4b:5f:14:f7:fe:ce:3b: ca:f1:3b:c2:b9:12:2f:2f:e2:1f:a1:1e:b7:f7:4c: 19:51:19:f7:ce:02:a8:e9:69:40:7b:df:0a:a2:e0: 15:b1:8c:d0:33:51:ec:94:42:c4:7f:64:56:48:e5: 52:59:79:ae:ec:5e:43:62:23:ec:52:51:4f:5c:8e: 0b:80:01:c2:35:c7:ca:0d:af:d8:12:06:7a:38:99: 1c:f5:59:ca:a2:32:e7:4e:7a:46:53:f1:d5:7b:63: ee:67:39:41:b4:bf:2c:a7:7b:68:fd:a7:d3:47:a4: c0:b3:4a:78:47:1d:2b:56:64:2e:59:57:3f:58:46: be:a1:55:50:48:e2:75:1f:df:ca:7d:5d:00:78:b6: 3d:18:03:16:47:2e:39:8d:cb:1a:8e:c6:3c:d9:de: 42:1c:49:67:a8:64:1d:35:bd:e4:bf:a1:83:72:4a: 1b:93:97:36:e8:b4:ad:46:cc:a4:d6:5f:e8:f2:45: 59:9a:f6:31:07:54:af:40:57:bf:06:0b:51:06:10: 77:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CB:B5:E8:D8:79:96:C4:89:7C:9F:5D:C0:CB:32:86:4F:4F:0C:5A:7A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/57f6e57b-4c26-442b-8afc-0329eedafb72/0/CBB5E8D87996C4897C9F5DC0CB32864F4F0C5A7A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.68.0/22 Signature Algorithm: sha256WithRSAEncryption 47:67:c4:a7:c9:32:c5:00:27:2b:8e:c2:09:38:61:16:5c:c3: c7:ef:8f:05:e9:dd:81:79:fb:ca:55:db:35:fd:8f:5f:35:f0: 57:95:52:e1:56:87:1b:fe:8e:9a:65:66:2e:31:65:5e:a3:4e: f3:ad:1a:63:f4:15:3e:3e:50:2c:96:09:d6:b5:81:20:06:aa: 5e:f1:34:0c:23:37:69:45:a7:eb:07:ff:db:c2:ab:ec:12:e2: 80:75:f9:5b:fb:d8:f0:9e:f6:5d:fc:c3:c3:bc:99:58:33:ff: d0:46:67:06:f0:64:a9:d8:fa:4a:eb:cc:f6:33:06:3b:ca:5f: 4c:e8:6b:f8:02:41:9f:f0:69:8d:f8:d5:3b:db:fd:61:26:fc: 26:3c:24:6f:c5:fc:0b:96:e0:fd:41:16:15:51:bc:0c:d1:9d: e0:ab:5c:8b:b8:db:b4:49:5f:7a:51:dd:93:8c:97:de:50:85: d8:24:5e:aa:6b:96:8a:9a:01:95:27:11:bf:0d:24:42:65:a4: 9d:cd:24:3f:de:57:8e:1e:6a:30:15:d6:f7:09:e2:ca:f0:c7: 4d:d4:07:d0:a9:a5:2c:59:89:e8:84:84:6c:7b:0b:60:89:e9: 9c:e3:13:0e:4b:6f:31:0f:97:c3:99:cf:37:94:33:58:28:cc: b6:fc:8b:64 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZdisHW7o/Qocd8qxjYmVJPcT+4AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNTAzNTEwMFoX DTI1MTIwNDAzNTYwMFowMzExMC8GA1UEAxMoQ0JCNUU4RDg3OTk2QzQ4OTdDOUY1 REMwQ0IzMjg2NEY0RjBDNUE3QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMq7H32fFFCgVNcl1I8Rp3/vm5BshwmKu1QuIeK3+An4juNysHjhwvnzqaes VghKnRWYJZ5LXxT3/s47yvE7wrkSLy/iH6Eet/dMGVEZ984CqOlpQHvfCqLgFbGM 0DNR7JRCxH9kVkjlUll5ruxeQ2Ij7FJRT1yOC4ABwjXHyg2v2BIGejiZHPVZyqIy 5056RlPx1Xtj7mc5QbS/LKd7aP2n00ekwLNKeEcdK1ZkLllXP1hGvqFVUEjidR/f yn1dAHi2PRgDFkcuOY3LGo7GPNneQhxJZ6hkHTW95L+hg3JKG5OXNui0rUbMpNZf 6PJFWZr2MQdUr0BXvwYLUQYQd+kCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMu16Nh5lsSJfJ9dwMsyhk9PDFp6MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81N2Y2ZTU3Yi00YzI2LTQ0MmItOGFmYy0wMzI5ZWVkYWZiNzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3ZjZlNTdi LTRjMjYtNDQyYi04YWZjLTAzMjllZWRhZmI3Mi8wL0NCQjVFOEQ4Nzk5NkM0ODk3 QzlGNURDMENCMzI4NjRGNEYwQzVBN0EubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJngUQwDQYJKoZIhvcNAQELBQADggEBAEdnxKfJMsUAJyuOwgk4YRZcw8fvjwXp 3YF5+8pV2zX9j1818FeVUuFWhxv+jpplZi4xZV6jTvOtGmP0FT4+UCyWCda1gSAG ql7xNAwjN2lFp+sH/9vCq+wS4oB1+Vv72PCe9l38w8O8mVgz/9BGZwbwZKnY+krr zPYzBjvKX0zoa/gCQZ/waY341Tvb/WEm/CY8JG/F/AuW4P1BFhVRvAzRneCrXIu4 27RJX3pR3ZOMl95QhdgkXqprloqaAZUnEb8NJEJlpJ3NJD/eV44eajAV1vcJ4srw x03UB9CppSxZieiEhGx7C2CJ6ZzjEw5LbzEPl8OZzzeUM1gozLb8i2Q= -----END CERTIFICATE-----Generated at Sat Apr 5 06:23:49 2025 by rpki-client