$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer File: DF19949CE17DC116E7B7C2248C933405B7A1AEF2.cer (raw, json) Hash identifier: uj7IeyyKS6v3k1/uXr+nOkBZ2bYwAtCQQgcWDUoWpds= Subject key identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5AEFE594062635E3124FD881527F5D342712A363 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft caRepository: rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 05 Dec 2024 14:02:42 +0000 Certificate not after: Thu 04 Dec 2025 14:07:42 +0000 Subordinate resources: IP: 103.166.234.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:ef:e5:94:06:26:35:e3:12:4f:d8:81:52:7f:5d:34:27:12:a3:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 5 14:02:42 2024 GMT Not After : Dec 4 14:07:42 2025 GMT Subject: CN=DF19949CE17DC116E7B7C2248C933405B7A1AEF2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:68:db:59:30:e2:be:e5:03:82:68:8d:47:52: a1:f4:ff:0c:ec:cf:2d:7a:56:72:82:a8:4e:dc:08: 7a:8d:c8:29:a0:df:3b:1e:4e:ad:d0:2b:0b:0a:12: ce:13:79:44:89:b3:33:53:c2:22:13:9d:d6:40:e7: 26:4d:7a:20:55:c7:59:8b:e4:b1:21:df:d6:ac:71: 64:38:d1:84:fc:2b:6f:94:cd:f5:3f:c1:ce:84:69: 12:f5:89:6c:2a:59:33:eb:65:9d:f0:81:4c:cd:a9: 77:84:ae:8c:c7:f6:65:6b:52:03:19:bf:a8:14:4d: 37:6a:31:19:2b:eb:dd:df:72:cd:86:fd:05:db:34: 70:70:ca:66:26:93:90:e8:f8:b8:00:22:0c:c0:27: be:ef:ab:88:e4:22:55:94:4c:4d:60:7c:15:41:13: a6:7a:75:3e:8e:0f:ec:d4:a0:c1:9b:83:2b:42:47: 9d:a9:60:16:04:ab:00:83:7c:96:f0:98:aa:16:f9: bb:6e:dd:d5:1c:a6:79:51:85:64:f8:71:bb:99:48: a6:eb:9c:41:0e:16:45:36:4b:65:81:b0:95:c4:b3: fc:9e:e0:d3:3c:ba:8e:5d:bb:ed:83:74:bf:17:ce: fb:c4:4c:7e:0d:85:a7:59:14:a6:63:9b:13:1e:9e: cd:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:19:94:9C:E1:7D:C1:16:E7:B7:C2:24:8C:93:34:05:B7:A1:AE:F2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3aef786b-6226-44af-852d-1fb045c4deb3/0/DF19949CE17DC116E7B7C2248C933405B7A1AEF2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.234.0/24 Signature Algorithm: sha256WithRSAEncryption 01:68:b5:99:90:62:d6:48:f2:69:cd:32:5f:8d:c5:ca:73:f0: 6a:a7:d4:25:f7:e4:ef:9b:e1:26:7b:00:5c:c8:ae:a2:33:49: 22:71:00:ef:bd:29:4a:78:c8:6c:6c:39:09:86:74:52:67:7a: c6:5f:96:83:10:2d:a6:be:9e:18:64:06:0f:52:a8:a8:7f:85: bf:d1:c2:f3:0d:7f:5c:8f:cc:5c:18:39:8e:67:6b:0c:16:7e: ab:28:e0:2d:44:d1:c6:87:5d:66:9e:1e:4d:5b:47:af:56:e1: 34:77:83:6c:6f:5d:ab:65:9b:3c:ea:80:fa:9b:cc:9f:5f:17: 5b:de:d3:d8:64:26:cd:4d:9e:a7:85:29:ca:0d:81:44:57:81: b3:a5:98:59:05:b6:16:68:3e:e8:e3:4f:80:27:97:51:4d:59: 6b:b6:e2:d4:24:20:cd:7f:8e:e0:57:f0:ae:17:62:cf:ee:84: 8f:e5:9d:08:87:00:50:e7:b4:9b:da:01:72:8d:ed:1d:10:88: 46:60:1f:a5:19:11:a1:a5:81:be:f4:24:64:27:94:7e:30:c7: 6a:3b:50:2d:18:b2:ce:49:87:62:67:b6:62:20:4f:47:2e:01: c7:af:70:24:04:04:45:4a:68:ce:11:50:00:8f:15:b0:1c:08: df:4c:60:79 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWu/llAYmNeMST9iBUn9dNCcSo2MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIwNTE0MDI0MloX DTI1MTIwNDE0MDc0MlowMzExMC8GA1UEAxMoREYxOTk0OUNFMTdEQzExNkU3QjdD MjI0OEM5MzM0MDVCN0ExQUVGMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMZo21kw4r7lA4JojUdSofT/DOzPLXpWcoKoTtwIeo3IKaDfOx5OrdArCwoS zhN5RImzM1PCIhOd1kDnJk16IFXHWYvksSHf1qxxZDjRhPwrb5TN9T/BzoRpEvWJ bCpZM+tlnfCBTM2pd4SujMf2ZWtSAxm/qBRNN2oxGSvr3d9yzYb9Bds0cHDKZiaT kOj4uAAiDMAnvu+riOQiVZRMTWB8FUETpnp1Po4P7NSgwZuDK0JHnalgFgSrAIN8 lvCYqhb5u27d1RymeVGFZPhxu5lIpuucQQ4WRTZLZYGwlcSz/J7g0zy6jl277YN0 vxfO+8RMfg2Fp1kUpmObEx6ezccCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN8ZlJzhfcEW57fCJIyTNAW3oa7yMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYWVmNzg2Yi02MjI2LTQ0YWYtODUyZC0xZmIwNDVjNGRlYjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNhZWY3ODZi LTYyMjYtNDRhZi04NTJkLTFmYjA0NWM0ZGViMy8wL0RGMTk5NDlDRTE3REMxMTZF N0I3QzIyNDhDOTMzNDA1QjdBMUFFRjIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnpuowDQYJKoZIhvcNAQELBQADggEBAAFotZmQYtZI8mnNMl+Nxcpz8Gqn1CX3 5O+b4SZ7AFzIrqIzSSJxAO+9KUp4yGxsOQmGdFJnesZfloMQLaa+nhhkBg9SqKh/ hb/RwvMNf1yPzFwYOY5nawwWfqso4C1E0caHXWaeHk1bR69W4TR3g2xvXatlmzzq gPqbzJ9fF1ve09hkJs1NnqeFKcoNgURXgbOlmFkFthZoPujjT4Anl1FNWWu24tQk IM1/juBX8K4XYs/uhI/lnQiHAFDntJvaAXKN7R0QiEZgH6UZEaGlgb70JGQnlH4w x2o7UC0Yss5Jh2JntmIgT0cuAcevcCQEBEVKaM4RUACPFbAcCN9MYHk= -----END CERTIFICATE-----Generated at Sat Apr 5 06:28:50 2025 by rpki-client