$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DF3717861F6521730921F11365C5A826CFF24DAA.cer File: DF3717861F6521730921F11365C5A826CFF24DAA.cer (raw, json) Hash identifier: jI9aZB+h12tMvtyfUBf/voGcNVIx0bp5ocr71BBKrjs= Subject key identifier: DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2E5A2F0D8305F3501D1D4A453125FF4EFE5F8AFD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.mft caRepository: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 12 Dec 2024 05:20:08 +0000 Certificate not after: Thu 11 Dec 2025 05:25:08 +0000 Subordinate resources: IP: 2001:df3:5bc0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:5a:2f:0d:83:05:f3:50:1d:1d:4a:45:31:25:ff:4e:fe:5f:8a:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Dec 12 05:20:08 2024 GMT Not After : Dec 11 05:25:08 2025 GMT Subject: CN=DF3717861F6521730921F11365C5A826CFF24DAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6b:c6:34:46:0f:e3:f3:47:13:1f:76:91:f6: bc:da:82:ce:ff:31:73:e6:2b:4a:95:1f:24:61:3a: b8:df:9e:fd:46:4e:a8:c5:75:4a:39:7a:a8:81:08: 83:a3:06:70:9c:67:8b:a4:5e:82:95:30:a5:22:8e: dc:f8:88:f7:32:ed:d4:8d:53:3d:d2:9c:4c:4b:ca: 9f:0a:e7:b6:50:1b:1f:87:ad:ce:fa:67:d6:ae:f3: 9b:bb:f2:69:ff:e9:25:5c:07:50:d6:cc:66:a2:46: 90:7a:f2:66:27:e2:d7:01:8d:cd:b8:63:bd:2c:72: e0:22:2a:e3:f0:91:93:55:c8:89:5f:10:7f:be:e9: a2:6c:e8:a7:e6:78:fa:44:6a:ad:9f:c5:3a:ee:89: 42:14:ab:2a:bf:24:3a:74:2a:f2:88:43:a7:a8:c1: ed:c5:50:6c:4a:2f:8f:b5:21:8d:21:ef:4f:d0:e7: 4c:4b:03:e6:46:c5:7b:76:a2:2f:c2:0b:b0:52:46: 70:8d:c3:f7:5f:0e:8f:dc:b1:38:9f:0a:ea:d0:50: a0:bc:52:c9:34:fc:8e:98:30:fe:c1:60:c2:3f:7c: d0:bc:5b:f5:aa:13:6f:90:09:e2:3b:ec:0a:a9:f4: 4a:e1:4e:b2:4d:26:37:a1:62:4e:63:96:cc:f9:f3: 18:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 75:b5:34:42:6d:3a:8a:64:18:b8:17:13:c2:df:41:74:7a:40: 92:8c:c4:99:ed:53:6a:2c:5b:b7:25:b9:32:46:84:dc:f8:b0: 8d:47:11:42:c8:b1:3d:ff:65:81:1d:a7:c1:74:29:06:6f:7f: 84:ed:07:d6:00:6c:1f:c2:87:19:66:c1:5e:ed:e1:72:fd:dd: 25:b9:6e:72:5b:6f:f8:c2:37:28:ac:a2:2b:29:68:a1:4a:65: 84:b9:05:c0:f8:ca:db:27:47:ae:f7:24:c2:36:de:21:d7:23: b4:4b:70:6e:d5:32:71:81:5a:de:56:ca:fb:b3:1a:a2:f3:c3: 6d:d4:c3:53:61:38:7c:96:ee:35:22:81:90:ae:01:45:15:fe: 7c:ec:30:6e:56:bd:5f:ea:7e:a2:89:0d:68:d4:04:17:94:e7: 5e:6d:e3:d1:95:4e:ee:93:1e:7c:87:a4:80:4b:d9:1f:41:0b: dc:7e:e4:9e:7b:8e:bf:46:6a:7b:20:4e:f8:ec:20:f8:13:59: a7:28:df:f2:5b:7f:02:80:c0:72:9a:f3:05:77:a0:cc:45:f7: 91:fc:76:f6:e0:c0:a7:f1:d9:b4:5a:5e:3d:c6:14:9e:36:f9: e8:51:5e:77:81:e0:8d:4c:ec:56:c4:5b:20:9f:e0:db:8f:1a: d0:2e:5f:0c -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIULlovDYMF81AdHUpFMSX/Tv5fiv0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTIxMjA1MjAwOFoX DTI1MTIxMTA1MjUwOFowMzExMC8GA1UEAxMoREYzNzE3ODYxRjY1MjE3MzA5MjFG MTEzNjVDNUE4MjZDRkYyNERBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNrxjRGD+PzRxMfdpH2vNqCzv8xc+YrSpUfJGE6uN+e/UZOqMV1Sjl6qIEI g6MGcJxni6RegpUwpSKO3PiI9zLt1I1TPdKcTEvKnwrntlAbH4etzvpn1q7zm7vy af/pJVwHUNbMZqJGkHryZifi1wGNzbhjvSxy4CIq4/CRk1XIiV8Qf77pomzop+Z4 +kRqrZ/FOu6JQhSrKr8kOnQq8ohDp6jB7cVQbEovj7UhjSHvT9DnTEsD5kbFe3ai L8ILsFJGcI3D918Oj9yxOJ8K6tBQoLxSyTT8jpgw/sFgwj980Lxb9aoTb5AJ4jvs Cqn0SuFOsk0mN6FiTmOWzPnzGGUCAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN83F4YfZSFzCSHxE2XFqCbP8k2qMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEy LWE3NDItNDUwYy1iMTkwLTUwMGU3NTQ1MjBkZS8xL0RGMzcxNzg2MUY2NTIxNzMw OTIxRjExMzY1QzVBODI2Q0ZGMjREQUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ3zW8AwDQYJKoZIhvcNAQELBQADggEBAHW1NEJtOopkGLgXE8LfQXR6QJKM xJntU2osW7cluTJGhNz4sI1HEULIsT3/ZYEdp8F0KQZvf4TtB9YAbB/ChxlmwV7t 4XL93SW5bnJbb/jCNyisoispaKFKZYS5BcD4ytsnR673JMI23iHXI7RLcG7VMnGB Wt5WyvuzGqLzw23Uw1NhOHyW7jUigZCuAUUV/nzsMG5WvV/qfqKJDWjUBBeU515t 49GVTu6THnyHpIBL2R9BC9x+5J57jr9GansgTvjsIPgTWaco3/JbfwKAwHKa8wV3 oMxF95H8dvbgwKfx2bRaXj3GFJ42+ehRXneB4I1M7FbEWyCf4NuPGtAuXww= -----END CERTIFICATE-----Generated at Sat Apr 5 06:29:40 2025 by rpki-client