$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer File: D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.cer (raw, json) Hash identifier: qrScTGv5Uj4AqbtrQ8xyXymiL6cab4aUMhQkI0QsL3w= Subject key identifier: D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0FCDD11043A5315F16B317F8A341F487DC83FDAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.mft caRepository: rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 06 Dec 2024 00:18:22 +0000 Certificate not after: Fri 05 Dec 2025 00:23:22 +0000 Subordinate resources: IP: 103.181.252.0/23 IP: 2001:df0:7ac0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:cd:d1:10:43:a5:31:5f:16:b3:17:f8:a3:41:f4:87:dc:83:fd:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 6 00:18:22 2024 GMT Not After : Dec 5 00:23:22 2025 GMT Subject: CN=D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:33:fd:27:f0:ec:cb:31:66:ce:07:e1:b8:89: 0a:66:8b:27:3f:4d:63:76:df:23:9d:8b:b0:1c:52: 99:ff:5a:14:69:92:1d:c0:87:cb:55:7c:02:bb:18: c0:2c:41:98:c1:22:a1:74:2b:b7:79:bf:1e:6c:9f: 45:2c:45:87:59:99:5a:12:cc:a6:0a:a6:23:b5:cd: ec:6a:ee:a8:de:12:12:fb:30:ef:dc:78:03:d3:f0: 5e:c1:e3:d5:b3:42:bd:9c:e4:bb:3c:57:3e:5c:da: d2:d3:3c:49:36:de:2c:ce:32:38:b3:ca:69:b7:7b: 46:1c:da:52:a4:17:35:2e:f4:57:df:95:9d:bf:07: ba:3c:05:31:ef:fe:e5:92:8c:66:d4:94:b4:0a:74: 39:10:2e:8a:c9:30:77:4b:b8:81:7e:30:4f:26:f0: 98:ce:f2:43:22:78:4b:d7:bc:df:8d:75:73:bb:2c: 60:90:70:d0:84:14:04:24:7e:00:5b:a2:23:1b:ea: 19:32:03:44:87:33:86:da:c7:48:b7:7c:4b:ad:7e: a7:b7:ab:fc:c5:3c:7e:e7:7b:b9:6a:27:94:b0:56: 86:0a:80:6f:0a:bb:22:73:76:fa:d7:b6:34:99:0e: a5:44:df:f4:8f:fa:6f:0a:80:9b:43:99:44:59:5d: 59:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D2:9E:D5:B5:FC:4D:BF:FE:44:7D:DD:02:2C:0D:01:EB:00:BA:8F:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/285243e5-c660-4112-bdc3-594412dedc4d/0/D29ED5B5FC4DBFFE447DDD022C0D01EB00BA8F14.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.252.0/23 IPv6: 2001:df0:7ac0::/48 Signature Algorithm: sha256WithRSAEncryption 30:84:98:5d:75:c0:7e:b8:ff:ac:20:8b:f3:28:ce:8a:ee:44: 14:3a:29:4e:d5:02:fb:c5:43:19:d1:dd:6d:c2:58:8b:19:1f: 3b:c7:da:9d:44:ab:5b:2d:19:fa:a9:31:04:2d:d6:a0:1d:af: fc:ee:78:40:bf:9f:22:01:21:61:02:16:ab:24:54:f3:13:ed: 9f:20:de:12:fb:81:d5:d8:17:bb:03:d2:3f:4b:07:df:e2:3d: 26:73:bf:2c:29:8b:fb:88:68:d0:81:2e:24:12:bb:49:2c:f6: b4:71:2c:9c:3c:db:b8:7c:4d:e4:f3:32:c6:9e:f3:8c:95:ce: c5:fb:dd:a9:59:02:84:6c:a9:1a:ae:8a:55:bf:b8:16:f7:63: 25:f5:12:8d:89:93:e1:e1:14:e3:54:fc:56:30:99:9e:8a:eb: 87:a3:45:0e:e7:05:dd:99:ca:bc:86:e1:08:f9:d8:a6:5e:2e: 19:77:fa:46:6b:e0:f1:16:87:42:69:19:31:6b:28:49:f9:52: 8e:86:d0:fb:c0:56:d1:eb:5b:60:84:12:e2:f6:8e:8a:b5:73: 71:d1:55:13:17:85:20:52:63:c7:89:5f:fe:df:ee:17:38:88: 3b:42:19:72:e7:f9:cd:50:fc:d7:68:24:86:16:9b:dd:f4:12: 05:28:bd:fb -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUD83REEOlMV8Wsxf4o0H0h9yD/aswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNjAwMTgyMloX DTI1MTIwNTAwMjMyMlowMzExMC8GA1UEAxMoRDI5RUQ1QjVGQzREQkZGRTQ0N0RE RDAyMkMwRDAxRUIwMEJBOEYxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYz/Sfw7MsxZs4H4biJCmaLJz9NY3bfI52LsBxSmf9aFGmSHcCHy1V8ArsY wCxBmMEioXQrt3m/HmyfRSxFh1mZWhLMpgqmI7XN7GruqN4SEvsw79x4A9PwXsHj 1bNCvZzkuzxXPlza0tM8STbeLM4yOLPKabd7RhzaUqQXNS70V9+Vnb8HujwFMe/+ 5ZKMZtSUtAp0ORAuiskwd0u4gX4wTybwmM7yQyJ4S9e83411c7ssYJBw0IQUBCR+ AFuiIxvqGTIDRIczhtrHSLd8S61+p7er/MU8fud7uWonlLBWhgqAbwq7InN2+te2 NJkOpUTf9I/6bwqAm0OZRFldWfcCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNKe1bX8Tb/+RH3dAiwNAesAuo8UMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yODUyNDNlNS1jNjYwLTQxMTItYmRjMy01OTQ0MTJkZWRjNGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI4NTI0M2U1 LWM2NjAtNDExMi1iZGMzLTU5NDQxMmRlZGM0ZC8wL0QyOUVENUI1RkM0REJGRkU0 NDdEREQwMjJDMEQwMUVCMDBCQThGMTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFntfwwDwQCAAIwCQMHACABDfB6wDANBgkqhkiG9w0BAQsFAAOCAQEAMISYXXXA frj/rCCL8yjOiu5EFDopTtUC+8VDGdHdbcJYixkfO8fanUSrWy0Z+qkxBC3WoB2v /O54QL+fIgEhYQIWqyRU8xPtnyDeEvuB1dgXuwPSP0sH3+I9JnO/LCmL+4ho0IEu JBK7SSz2tHEsnDzbuHxN5PMyxp7zjJXOxfvdqVkChGypGq6KVb+4FvdjJfUSjYmT 4eEU41T8VjCZnorrh6NFDucF3ZnKvIbhCPnYpl4uGXf6Rmvg8RaHQmkZMWsoSflS jobQ+8BW0etbYIQS4vaOirVzcdFVExeFIFJjx4lf/t/uFziIO0IZcuf5zVD812gk hhab3fQSBSi9+w== -----END CERTIFICATE-----Generated at Sat Apr 5 06:19:56 2025 by rpki-client