$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer File: E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.cer (raw, json) Hash identifier: QbroyYuyuuFoBBPqU0cSJNhURN0nL+0ibJuGHGCtvIc= Subject key identifier: E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 08B67C30F0056DB3BA81168C0A7DAC6E6FD4D04C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.mft caRepository: rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 25 Jun 2024 18:46:57 +0000 Certificate not after: Tue 24 Jun 2025 18:51:57 +0000 Subordinate resources: IP: 103.21.195.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:b6:7c:30:f0:05:6d:b3:ba:81:16:8c:0a:7d:ac:6e:6f:d4:d0:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jun 25 18:46:57 2024 GMT Not After : Jun 24 18:51:57 2025 GMT Subject: CN=E35D44338E5937B4AE269DDDCDA40A28F87F3EC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:45:87:ba:8d:73:ba:3b:af:7e:ea:0a:9f:d4: bc:7d:2c:37:2c:cd:f5:98:cf:39:19:05:b5:7d:8d: f1:a5:62:7a:dd:83:82:1d:f3:13:2b:9a:9f:00:c8: ba:15:cf:4a:7e:3e:4a:2f:10:a9:11:54:0c:10:6f: b5:cf:48:f1:f6:f0:35:7a:95:79:c4:2b:2d:fc:4f: 2c:7a:6b:9d:a1:91:fb:18:8d:f1:27:26:f1:99:2d: 26:11:61:42:c7:de:ce:33:9b:c8:71:d8:11:f6:2b: 80:3b:a5:54:40:ec:49:eb:bf:8e:c6:f6:f5:ab:ba: db:2e:e8:9e:44:5e:ab:70:91:70:5a:36:df:dc:f4: cb:d5:cb:6b:9f:f4:24:8b:aa:ae:02:82:11:c4:ee: b5:ac:a8:a9:21:2e:1f:6d:18:0d:70:ca:4c:d9:8c: 20:08:7f:48:fa:c6:cb:b7:3f:27:24:43:6c:ac:96: 86:ff:1c:a1:a0:d0:82:a0:eb:1b:fb:4d:55:76:22: d7:09:27:7b:a1:ec:66:61:77:af:6c:29:a0:2a:41: 20:f5:d2:b4:59:a1:e5:47:92:cc:f0:b6:fa:19:8a: 7e:43:02:45:13:ca:9f:66:79:a2:4b:6d:62:2d:0b: 0e:db:44:17:ac:c9:39:89:c0:47:2e:5e:49:bc:0d: fd:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E3:5D:44:33:8E:59:37:B4:AE:26:9D:DD:CD:A4:0A:28:F8:7F:3E:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a683b27c-a730-4002-91b8-d0366dfac77e/0/E35D44338E5937B4AE269DDDCDA40A28F87F3EC8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.21.195.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:fd:dc:ed:b3:5c:dc:3e:0a:79:f5:3a:22:bd:1e:cb:4c:92: 83:e5:e7:fb:e0:92:5c:fd:6c:4b:05:33:df:30:4d:63:2b:16: 71:b1:23:a1:18:df:e8:2b:23:b6:8f:1a:28:78:0e:f5:4d:0c: fb:e0:1a:8a:28:68:0d:1d:18:00:6e:c6:33:65:45:e3:06:ab: 3b:b3:48:39:67:4f:40:71:c2:59:fc:c5:a3:3e:f0:8e:56:5e: 65:37:7e:63:7b:88:26:17:86:80:2f:37:7d:8a:f9:e3:4c:7f: 3a:ff:b1:ea:02:91:64:32:f8:40:3c:3c:6a:9b:52:40:79:42: 70:6f:a6:ac:32:09:b8:35:e2:26:70:ad:bd:04:6e:95:bd:9b: e7:5e:22:32:1f:18:4d:fe:7e:2d:05:b8:ac:c7:75:d0:fa:a2: 11:4d:a0:13:44:b1:c3:39:b5:62:1c:3c:72:fd:51:e3:e1:98: f7:bd:18:e1:ff:e6:05:2e:e4:32:b5:e1:24:68:ab:35:47:62: bf:e6:ea:3d:e6:b3:e0:77:f2:51:24:1c:88:ef:46:47:fe:58: 21:9a:6c:0d:b7:a6:41:73:8a:a7:60:f4:7d:ee:a8:97:ad:b8: d0:aa:ca:b2:21:d9:38:b2:05:0e:60:21:f4:2c:9c:46:ea:65: 70:16:28:60 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCLZ8MPAFbbO6gRaMCn2sbm/U0EwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYyNTE4NDY1N1oX DTI1MDYyNDE4NTE1N1owMzExMC8GA1UEAxMoRTM1RDQ0MzM4RTU5MzdCNEFFMjY5 REREQ0RBNDBBMjhGODdGM0VDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALFFh7qNc7o7r37qCp/UvH0sNyzN9ZjPORkFtX2N8aViet2Dgh3zEyuanwDI uhXPSn4+Si8QqRFUDBBvtc9I8fbwNXqVecQrLfxPLHprnaGR+xiN8Scm8ZktJhFh QsfezjObyHHYEfYrgDulVEDsSeu/jsb29au62y7onkReq3CRcFo239z0y9XLa5/0 JIuqrgKCEcTutayoqSEuH20YDXDKTNmMIAh/SPrGy7c/JyRDbKyWhv8coaDQgqDr G/tNVXYi1wkne6HsZmF3r2wpoCpBIPXStFmh5UeSzPC2+hmKfkMCRRPKn2Z5oktt Yi0LDttEF6zJOYnARy5eSbwN/VcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFONdRDOOWTe0riad3c2kCij4fz7IMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNjgzYjI3Yy1hNzMwLTQwMDItOTFiOC1kMDM2NmRmYWM3N2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2ODNiMjdj LWE3MzAtNDAwMi05MWI4LWQwMzY2ZGZhYzc3ZS8wL0UzNUQ0NDMzOEU1OTM3QjRB RTI2OURERENEQTQwQTI4Rjg3RjNFQzgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnFcMwDQYJKoZIhvcNAQELBQADggEBAGv93O2zXNw+Cnn1OiK9HstMkoPl5/vg klz9bEsFM98wTWMrFnGxI6EY3+grI7aPGih4DvVNDPvgGoooaA0dGABuxjNlReMG qzuzSDlnT0Bxwln8xaM+8I5WXmU3fmN7iCYXhoAvN32K+eNMfzr/seoCkWQy+EA8 PGqbUkB5QnBvpqwyCbg14iZwrb0EbpW9m+deIjIfGE3+fi0FuKzHddD6ohFNoBNE scM5tWIcPHL9UePhmPe9GOH/5gUu5DK14SRoqzVHYr/m6j3ms+B38lEkHIjvRkf+ WCGabA23pkFziqdg9H3uqJetuNCqyrIh2TiyBQ5gIfQsnEbqZXAWKGA= -----END CERTIFICATE-----Generated at Sun Feb 16 20:39:29 2025 by rpki-client