$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DFE92467290F9E190072585C1045251D6F8B05A3.cer File: DFE92467290F9E190072585C1045251D6F8B05A3.cer (raw, json) Hash identifier: Nu7bP/zbXL3PkYPVLkqXZog7eHtxfI34AmxBtFnDSh4= Subject key identifier: DF:E9:24:67:29:0F:9E:19:00:72:58:5C:10:45:25:1D:6F:8B:05:A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 60BAF9AF37936F79C273B4829076A3ECCC9D92D9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.mft caRepository: rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 07 Jan 2025 18:10:58 +0000 Certificate not after: Tue 06 Jan 2026 18:15:58 +0000 Subordinate resources: IP: 103.185.52.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ba:f9:af:37:93:6f:79:c2:73:b4:82:90:76:a3:ec:cc:9d:92:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 7 18:10:58 2025 GMT Not After : Jan 6 18:15:58 2026 GMT Subject: CN=DFE92467290F9E190072585C1045251D6F8B05A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:92:3b:75:c7:ee:40:6c:5c:06:99:a1:f8:8c: eb:04:cd:d7:21:2f:b3:ee:d6:a4:9c:7a:5a:80:43: 55:92:1d:9a:c4:fd:17:5c:1a:fb:ea:40:46:94:d7: 54:a2:55:62:ea:2b:f3:99:e3:42:52:ac:8f:56:30: 4e:16:ad:9b:a0:d2:d2:9e:8c:a5:ae:d8:44:09:c6: 8f:c8:1f:1e:a9:40:10:73:21:f7:24:6e:f6:fe:67: a9:94:2f:53:36:e6:1a:2e:cc:99:28:46:f9:68:c3: 14:a5:11:8b:07:38:45:33:0b:53:e6:e2:44:63:4f: 69:67:90:81:e2:be:2f:0d:50:5f:08:04:38:06:9e: e8:9d:f7:cc:9b:19:ad:b8:fe:ff:fd:e0:12:1a:83: 87:c8:f7:e3:5a:04:1a:f8:37:19:e9:ee:3c:c7:0f: 77:0f:44:b5:b7:4f:b8:a0:2c:2e:26:4a:eb:d3:0b: 47:78:80:72:ac:c1:9d:77:e1:15:99:51:01:16:f2: 07:da:10:13:99:3f:3f:0d:97:d1:4d:88:05:f1:bb: c3:f9:05:e6:9a:3a:54:72:8e:5f:d4:5c:7b:d4:4e: b6:e3:be:d0:af:80:23:33:66:ef:7b:2d:ed:a4:57: 74:3a:0e:3b:ac:57:72:cd:52:df:a6:ce:cf:65:60: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:E9:24:67:29:0F:9E:19:00:72:58:5C:10:45:25:1D:6F:8B:05:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6c4574e2-3b94-4160-8eb8-8f09aad82c2c/0/DFE92467290F9E190072585C1045251D6F8B05A3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.52.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:1f:ca:81:24:7b:38:05:5d:0f:54:57:e3:b7:ab:10:3e:40: 73:c4:7a:60:3e:17:ed:61:a7:5e:7f:88:93:2c:a3:39:e0:55: 77:b4:79:88:df:c3:86:00:2f:3a:89:bc:1a:b9:88:6e:ec:d1: ee:7c:b4:10:e4:25:1b:98:80:0e:fb:36:9a:97:86:7d:33:db: 2c:ab:07:6d:c7:b3:cd:1e:6f:9a:80:8e:71:62:ee:56:9e:dc: 1d:31:3c:f4:1a:6a:59:78:0f:1b:6f:c5:6b:32:21:8b:67:46: c1:95:60:a7:86:15:a5:86:b5:1c:97:0f:aa:ad:3d:17:3b:3f: 79:04:ba:af:65:da:d9:20:d3:8d:c2:d3:24:58:64:8a:61:32: 07:92:30:1c:f4:77:61:d3:fd:ca:9d:fb:96:c9:6b:54:99:a5: 4d:7a:11:e6:b3:5f:fa:22:4e:27:f2:e7:e6:0b:93:5c:5c:2f: 68:d5:84:e2:81:1f:00:d7:2d:83:05:66:60:09:b1:cf:44:a6: f8:cc:f8:08:21:06:f7:82:6c:15:6e:d5:0c:47:d7:a7:72:4d: 3e:92:ed:19:29:e5:a0:c7:ec:f9:61:6d:f8:17:51:3e:15:7e: e9:b3:6d:0d:fa:88:01:0f:e9:fa:15:e3:89:93:67:ed:ad:33: c7:cf:08:70 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYLr5rzeTb3nCc7SCkHaj7MydktkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwNzE4MTA1OFoX DTI2MDEwNjE4MTU1OFowMzExMC8GA1UEAxMoREZFOTI0NjcyOTBGOUUxOTAwNzI1 ODVDMTA0NTI1MUQ2RjhCMDVBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCSO3XH7kBsXAaZofiM6wTN1yEvs+7WpJx6WoBDVZIdmsT9F1wa++pARpTX VKJVYuor85njQlKsj1YwThatm6DS0p6Mpa7YRAnGj8gfHqlAEHMh9yRu9v5nqZQv UzbmGi7MmShG+WjDFKURiwc4RTMLU+biRGNPaWeQgeK+Lw1QXwgEOAae6J33zJsZ rbj+//3gEhqDh8j341oEGvg3GenuPMcPdw9EtbdPuKAsLiZK69MLR3iAcqzBnXfh FZlRARbyB9oQE5k/Pw2X0U2IBfG7w/kF5po6VHKOX9Rce9ROtuO+0K+AIzNm73st 7aRXdDoOO6xXcs1S36bOz2VgHEUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN/pJGcpD54ZAHJYXBBFJR1viwWjMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82YzQ1NzRlMi0zYjk0LTQxNjAtOGViOC04ZjA5YWFkODJjMmMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNDU3NGUy LTNiOTQtNDE2MC04ZWI4LThmMDlhYWQ4MmMyYy8wL0RGRTkyNDY3MjkwRjlFMTkw MDcyNTg1QzEwNDUyNTFENkY4QjA1QTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuTQwDQYJKoZIhvcNAQELBQADggEBAC4fyoEkezgFXQ9UV+O3qxA+QHPEemA+ F+1hp15/iJMsozngVXe0eYjfw4YALzqJvBq5iG7s0e58tBDkJRuYgA77NpqXhn0z 2yyrB23Hs80eb5qAjnFi7lae3B0xPPQaall4DxtvxWsyIYtnRsGVYKeGFaWGtRyX D6qtPRc7P3kEuq9l2tkg043C0yRYZIphMgeSMBz0d2HT/cqd+5bJa1SZpU16Eeaz X/oiTify5+YLk1xcL2jVhOKBHwDXLYMFZmAJsc9EpvjM+AghBveCbBVu1QxH16dy TT6S7Rkp5aDH7PlhbfgXUT4VfumzbQ36iAEP6foV44mTZ+2tM8fPCHA= -----END CERTIFICATE-----Generated at Sat Apr 5 08:51:13 2025 by rpki-client