$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D454E26475969CECE78A97B9152AFC76DB922AA3.cer File: D454E26475969CECE78A97B9152AFC76DB922AA3.cer (raw, json) Hash identifier: /WcAZiNZl+Xb6ZgHoQ3fnIkY9aruoNmN6+M3eS/oO2Q= Subject key identifier: D4:54:E2:64:75:96:9C:EC:E7:8A:97:B9:15:2A:FC:76:DB:92:2A:A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5462A854F7406A6AED5656467EC7C27815DD704D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0/D454E26475969CECE78A97B9152AFC76DB922AA3.mft caRepository: rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 02 Dec 2024 18:04:00 +0000 Certificate not after: Mon 01 Dec 2025 18:09:00 +0000 Subordinate resources: IP: 103.164.61.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:62:a8:54:f7:40:6a:6a:ed:56:56:46:7e:c7:c2:78:15:dd:70:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 2 18:04:00 2024 GMT Not After : Dec 1 18:09:00 2025 GMT Subject: CN=D454E26475969CECE78A97B9152AFC76DB922AA3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7c:8c:b9:29:75:3e:ec:42:ee:23:6e:83:e5: 77:02:2e:24:84:22:c4:b5:8c:df:4f:42:cd:9a:17: bd:eb:12:b9:15:97:a1:51:16:5a:9b:dd:8a:14:1e: 99:2b:6c:60:1b:83:ce:eb:4e:3d:14:ff:ce:00:6c: 63:8e:55:06:f7:97:a2:92:d2:44:5c:56:d9:d0:4f: 16:e7:71:5b:52:f0:90:6a:77:7b:d5:7e:b7:89:ec: 8f:fc:c8:c9:05:61:8c:ce:1f:2d:25:a7:69:77:97: 38:08:1a:36:28:ef:25:46:5b:39:ef:19:3b:8b:9f: 34:d4:eb:26:54:a2:59:45:f3:2b:81:0e:6e:68:60: e6:25:d2:88:ea:88:dd:84:f1:42:36:e9:62:2f:56: d6:8a:99:ee:23:79:83:7a:a6:03:df:e6:37:6e:6d: 1e:71:69:7f:51:3c:32:fc:32:82:56:97:af:79:2a: 09:b4:1e:71:7b:60:c7:2b:ef:50:ff:6e:99:5f:e1: 4d:66:55:e4:2f:6a:06:bd:c2:4f:20:b0:ea:ba:31: f8:1f:15:cf:7a:c9:2b:a0:7b:0b:75:7f:40:ac:56: 16:69:66:ce:2c:d3:d8:1a:66:cc:de:88:c2:c3:5a: 00:cf:32:9f:7a:9d:c5:04:fd:c8:3d:b3:4d:9c:06: 8c:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D4:54:E2:64:75:96:9C:EC:E7:8A:97:B9:15:2A:FC:76:DB:92:2A:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bb17c206-9b63-4c56-9436-475d82141a66/0/D454E26475969CECE78A97B9152AFC76DB922AA3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.61.0/24 Signature Algorithm: sha256WithRSAEncryption 3e:c1:c9:a8:4d:20:7f:3c:1f:00:df:f9:69:1d:57:ed:b7:aa: 12:89:46:00:4c:1f:d7:db:70:a3:ba:07:c1:9b:86:fc:56:14: dd:d9:c7:29:c3:0e:a2:e1:25:4a:00:a5:b9:cf:52:63:c1:77: b1:cb:54:49:04:07:d3:51:51:24:0b:97:91:56:c9:62:8d:93: 49:ff:f6:21:46:31:4d:82:76:23:2c:14:49:39:e1:a6:c8:b7: 0f:53:a8:28:24:af:38:12:ed:cb:a0:82:fb:bf:53:3e:79:df: d4:d8:df:67:14:8a:82:07:60:9a:83:c5:02:55:33:05:a9:b6: 43:f4:41:74:d3:8d:53:a4:3e:6f:01:0c:50:23:5a:b9:1d:24: 2d:48:8c:6b:2f:09:33:fe:f6:56:e7:7e:c6:00:7b:88:0e:1c: 05:50:00:3e:6a:52:0b:d1:44:63:97:9d:ce:c6:fd:38:42:6b: 08:17:bc:87:a7:34:73:fe:34:8c:c5:b7:23:5a:42:3c:54:2d: ff:d7:dd:a9:af:0f:29:43:3a:ea:ee:56:0a:1b:ed:b9:1c:94: 8e:14:17:fe:28:0d:34:02:f8:fe:2b:16:43:1c:b8:d3:8d:80: 89:bb:ec:56:96:7b:6a:7d:39:57:30:7a:b3:90:52:fc:7a:aa: e1:a6:e2:18 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVGKoVPdAamrtVlZGfsfCeBXdcE0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwMjE4MDQwMFoX DTI1MTIwMTE4MDkwMFowMzExMC8GA1UEAxMoRDQ1NEUyNjQ3NTk2OUNFQ0U3OEE5 N0I5MTUyQUZDNzZEQjkyMkFBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALB8jLkpdT7sQu4jboPldwIuJIQixLWM309CzZoXvesSuRWXoVEWWpvdihQe mStsYBuDzutOPRT/zgBsY45VBveXopLSRFxW2dBPFudxW1LwkGp3e9V+t4nsj/zI yQVhjM4fLSWnaXeXOAgaNijvJUZbOe8ZO4ufNNTrJlSiWUXzK4EObmhg5iXSiOqI 3YTxQjbpYi9W1oqZ7iN5g3qmA9/mN25tHnFpf1E8MvwyglaXr3kqCbQecXtgxyvv UP9umV/hTWZV5C9qBr3CTyCw6rox+B8Vz3rJK6B7C3V/QKxWFmlmzizT2BpmzN6I wsNaAM8yn3qdxQT9yD2zTZwGjBcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNRU4mR1lpzs54qXuRUq/HbbkiqjMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iYjE3YzIwNi05YjYzLTRjNTYtOTQzNi00NzVkODIxNDFhNjYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JiMTdjMjA2 LTliNjMtNGM1Ni05NDM2LTQ3NWQ4MjE0MWE2Ni8wL0Q0NTRFMjY0NzU5NjlDRUNF NzhBOTdCOTE1MkFGQzc2REI5MjJBQTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnpD0wDQYJKoZIhvcNAQELBQADggEBAD7ByahNIH88HwDf+WkdV+23qhKJRgBM H9fbcKO6B8GbhvxWFN3ZxynDDqLhJUoApbnPUmPBd7HLVEkEB9NRUSQLl5FWyWKN k0n/9iFGMU2CdiMsFEk54abItw9TqCgkrzgS7cuggvu/Uz5539TY32cUioIHYJqD xQJVMwWptkP0QXTTjVOkPm8BDFAjWrkdJC1IjGsvCTP+9lbnfsYAe4gOHAVQAD5q UgvRRGOXnc7G/ThCawgXvIenNHP+NIzFtyNaQjxULf/X3amvDylDOuruVgob7bkc lI4UF/4oDTQC+P4rFkMcuNONgIm77FaWe2p9OVcwerOQUvx6quGm4hg= -----END CERTIFICATE-----Generated at Sat Apr 5 06:26:43 2025 by rpki-client