$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/ED137633BAEE661A0ACBBF277089F107CB59439A.cer File: ED137633BAEE661A0ACBBF277089F107CB59439A.cer (raw, json) Hash identifier: 3+rv1DGQk5NlRazzXEt9+FgZqEq3DhTt5a/2+T01PSw= Subject key identifier: ED:13:76:33:BA:EE:66:1A:0A:CB:BF:27:70:89:F1:07:CB:59:43:9A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3DCD177EB259D1CBF9A5B80E482572EE48E6DCF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/ED137633BAEE661A0ACBBF277089F107CB59439A.mft caRepository: rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 23 Nov 2024 00:54:07 +0000 Certificate not after: Sat 22 Nov 2025 00:59:07 +0000 Subordinate resources: IP: 103.162.105.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:cd:17:7e:b2:59:d1:cb:f9:a5:b8:0e:48:25:72:ee:48:e6:dc:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Nov 23 00:54:07 2024 GMT Not After : Nov 22 00:59:07 2025 GMT Subject: CN=ED137633BAEE661A0ACBBF277089F107CB59439A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b1:7d:da:90:44:e1:7b:80:77:79:2d:2e:43: 58:83:87:50:c6:06:f6:b2:05:db:5e:69:c9:ef:15: 48:3d:3f:8d:d7:de:d0:11:5d:42:86:67:a2:01:40: 3c:e3:93:bb:10:3c:99:ae:d7:24:50:c5:d4:74:98: 31:f7:c0:cd:40:6a:f4:90:3a:1e:cb:4d:67:f2:56: e7:5d:22:ff:0e:4f:4c:23:db:59:6c:20:4e:a1:7c: af:d7:ec:24:50:79:be:a5:6b:7d:92:5f:e3:74:4d: 1d:97:03:f6:89:4d:56:12:8d:e1:37:11:a1:08:a0: 09:7d:81:d3:b6:4f:52:db:cb:31:8a:d1:34:2c:b9: 58:e9:5b:45:63:0c:52:f5:b4:8b:77:e3:ba:68:d4: 66:8b:90:29:36:ea:ac:2c:60:9d:06:9d:70:e8:ae: 25:df:a1:eb:f5:68:2e:54:cc:24:f8:77:0e:f6:85: d4:7b:50:2f:02:5a:02:4a:3b:a0:2b:23:d2:79:a3: f9:4f:70:00:8c:34:a9:bc:54:86:7e:58:a7:8d:e3: b7:60:a1:cb:f1:44:c3:22:ef:81:92:9d:a2:a4:d9: 7c:1b:bf:c9:e1:72:c7:7a:9a:f1:2c:2c:95:6b:9f: bc:62:1c:d0:5c:77:ca:00:06:0c:a8:37:c2:2d:a0: a0:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: ED:13:76:33:BA:EE:66:1A:0A:CB:BF:27:70:89:F1:07:CB:59:43:9A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/37224360-245d-4a1a-af36-f9befcdb70b7/0/ED137633BAEE661A0ACBBF277089F107CB59439A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.105.0/24 Signature Algorithm: sha256WithRSAEncryption 32:a9:a3:e7:a2:28:b9:cb:ea:74:c2:43:33:5f:61:8e:9d:e7: 65:be:ef:75:09:f6:4d:5f:84:10:7c:80:8e:0c:5c:fd:03:53: 5b:9b:70:b4:9b:ba:f5:ce:41:14:38:78:87:cc:eb:f3:f1:58: 27:f5:48:b0:ff:a8:0f:13:18:8f:12:95:8f:43:1a:9a:ee:3e: c8:a3:af:02:e1:ff:03:3e:14:b3:ca:c6:7c:67:bc:c0:2b:0a: bb:04:90:b3:ef:09:54:f3:45:82:33:fd:6e:13:22:2b:bc:7d: 0c:93:b0:6a:de:44:95:43:20:36:62:d0:e9:be:d9:82:79:63: 69:10:a5:4c:8a:6e:ef:d2:23:fd:5e:f4:9f:f7:43:11:65:a6: 8b:e9:b5:d1:93:bd:8e:ce:cc:65:98:6b:ad:0e:ea:06:7f:09: 1f:3e:c1:05:02:3a:2e:9d:35:c9:07:fb:10:e7:ec:e8:c3:70: a0:22:87:fc:cf:aa:8a:35:7b:8f:ec:71:5d:2d:2c:aa:00:9c: 19:93:ec:4f:50:48:9d:87:fb:d7:a6:14:db:62:2b:30:90:c6: a5:39:ac:dd:57:dc:f7:77:67:6c:91:66:bb:a5:fe:ad:44:0a: 6f:28:d9:5b:8d:d1:3b:22:b7:1a:0d:fa:a6:c0:13:05:32:cd: c9:d8:67:7f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPc0XfrJZ0cv5pbgOSCVy7kjm3PcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyMzAwNTQwN1oX DTI1MTEyMjAwNTkwN1owMzExMC8GA1UEAxMoRUQxMzc2MzNCQUVFNjYxQTBBQ0JC RjI3NzA4OUYxMDdDQjU5NDM5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2xfdqQROF7gHd5LS5DWIOHUMYG9rIF215pye8VSD0/jdfe0BFdQoZnogFA POOTuxA8ma7XJFDF1HSYMffAzUBq9JA6HstNZ/JW510i/w5PTCPbWWwgTqF8r9fs JFB5vqVrfZJf43RNHZcD9olNVhKN4TcRoQigCX2B07ZPUtvLMYrRNCy5WOlbRWMM UvW0i3fjumjUZouQKTbqrCxgnQadcOiuJd+h6/VoLlTMJPh3DvaF1HtQLwJaAko7 oCsj0nmj+U9wAIw0qbxUhn5Yp43jt2Chy/FEwyLvgZKdoqTZfBu/yeFyx3qa8Sws lWufvGIc0Fx3ygAGDKg3wi2goOcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFO0TdjO67mYaCsu/J3CJ8QfLWUOaMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zNzIyNDM2MC0yNDVkLTRhMWEtYWYzNi1mOWJlZmNkYjcwYjcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3MjI0MzYw LTI0NWQtNGExYS1hZjM2LWY5YmVmY2RiNzBiNy8wL0VEMTM3NjMzQkFFRTY2MUEw QUNCQkYyNzcwODlGMTA3Q0I1OTQzOUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnomkwDQYJKoZIhvcNAQELBQADggEBADKpo+eiKLnL6nTCQzNfYY6d52W+73UJ 9k1fhBB8gI4MXP0DU1ubcLSbuvXOQRQ4eIfM6/PxWCf1SLD/qA8TGI8SlY9DGpru PsijrwLh/wM+FLPKxnxnvMArCrsEkLPvCVTzRYIz/W4TIiu8fQyTsGreRJVDIDZi 0Om+2YJ5Y2kQpUyKbu/SI/1e9J/3QxFlpovptdGTvY7OzGWYa60O6gZ/CR8+wQUC Oi6dNckH+xDn7OjDcKAih/zPqoo1e4/scV0tLKoAnBmT7E9QSJ2H+9emFNtiKzCQ xqU5rN1X3Pd3Z2yRZrul/q1ECm8o2VuN0TsitxoN+qbAEwUyzcnYZ38= -----END CERTIFICATE-----Generated at Sat Apr 5 07:00:52 2025 by rpki-client