$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F95ABFECD1F2CDA83B975C1651646721A611A82E.cer File: F95ABFECD1F2CDA83B975C1651646721A611A82E.cer (raw, json) Hash identifier: R9X/gZv5PjJ0/ybpBd+YzpUTbili6qgNJn93Ni1JFxM= Subject key identifier: F9:5A:BF:EC:D1:F2:CD:A8:3B:97:5C:16:51:64:67:21:A6:11:A8:2E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3DE195AA92F22EC7121D240471FAD8308819ACD4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/F95ABFECD1F2CDA83B975C1651646721A611A82E.mft caRepository: rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 01 Jan 2025 03:03:29 +0000 Certificate not after: Wed 31 Dec 2025 03:08:29 +0000 Subordinate resources: IP: 103.127.154.0/24 IP: 2001:df2:c40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 17:17:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:e1:95:aa:92:f2:2e:c7:12:1d:24:04:71:fa:d8:30:88:19:ac:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jan 1 03:03:29 2025 GMT Not After : Dec 31 03:08:29 2025 GMT Subject: CN=F95ABFECD1F2CDA83B975C1651646721A611A82E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:39:d4:5e:19:b3:d5:91:3c:7a:5b:4d:71:0d: 88:71:76:b9:39:f5:b4:36:2b:c8:73:94:c4:90:e1: fa:3f:c3:92:1f:29:50:cf:a2:da:94:52:ec:6c:25: 8a:fc:e4:45:77:63:3c:53:3a:57:35:3a:7f:d5:a3: f9:90:5e:33:31:97:81:07:af:17:89:7d:d1:f6:89: 52:3d:09:74:d0:c2:11:99:1c:7b:57:2b:98:80:e2: c0:0c:f3:35:9e:03:57:d5:52:97:24:37:78:34:87: 21:5b:3d:d6:86:08:86:f2:b2:eb:83:a1:b4:77:51: ed:26:c6:b1:6f:3c:3e:d0:77:8e:bb:42:39:1d:5d: 41:8b:4c:30:eb:4b:de:2e:f7:db:12:fd:1c:d3:a6: 97:10:48:1b:d4:f3:61:7c:06:ae:7d:20:06:6b:24: b8:f8:b1:39:e6:e1:a4:43:0d:b8:78:2a:f7:82:b4: 44:c3:f6:50:c2:e6:7d:8d:69:90:3c:96:43:1b:01: e0:a8:5f:87:3e:d7:08:3f:f3:15:3a:66:ab:23:40: 78:31:e2:1f:82:21:89:f1:02:87:8c:be:d6:f8:e5: a7:af:a4:c8:f1:50:4a:e8:ce:ce:fd:f4:12:5c:09: 23:c1:ad:58:12:58:2d:7f:11:40:18:20:ed:37:5f: 88:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F9:5A:BF:EC:D1:F2:CD:A8:3B:97:5C:16:51:64:67:21:A6:11:A8:2E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/F95ABFECD1F2CDA83B975C1651646721A611A82E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.154.0/24 IPv6: 2001:df2:c40::/48 Signature Algorithm: sha256WithRSAEncryption 17:f1:0b:1e:e7:1c:99:a9:dc:12:6a:8f:e1:47:1f:13:e9:dd: 50:8b:89:7b:ff:d2:a2:11:d8:d5:2b:cb:0b:01:e6:91:80:da: b6:51:21:23:7f:7d:dd:b4:57:b1:28:af:79:b4:9f:4d:d5:f3: a2:92:24:c9:e2:98:6a:d6:2b:df:78:c3:66:69:0c:b4:a8:9e: e2:4e:7e:ef:12:8f:90:94:e3:69:90:48:8e:1d:b1:6f:38:19: 3e:16:58:91:a5:11:8a:e0:ed:01:c3:c3:33:05:2e:7d:6b:28: 30:6e:82:a3:a6:1e:ac:84:62:2f:84:aa:b5:2d:df:d7:08:c4: 3c:f4:29:73:dc:d8:76:81:a1:c2:7e:da:54:5f:0f:76:cb:5a: 55:39:cf:38:08:4f:ea:57:33:54:17:f6:ff:f4:5a:17:dd:0a: 63:49:99:b0:6a:02:37:1c:d7:bf:bf:6f:1b:02:08:41:37:eb: 71:79:1d:21:a2:8a:50:39:71:3e:23:9a:cb:57:8a:0e:e2:64: de:5d:c9:8e:77:06:97:60:0f:66:0e:52:a8:55:70:db:a1:f2: f1:8c:fa:22:69:01:51:61:33:c6:48:30:41:76:67:28:fa:d7: 81:c9:72:85:3a:c7:7f:e9:78:c2:19:37:75:72:3d:0c:60:1a: c0:e6:7f:d8 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUPeGVqpLyLscSHSQEcfrYMIgZrNQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI1MDEwMTAzMDMyOVoX DTI1MTIzMTAzMDgyOVowMzExMC8GA1UEAxMoRjk1QUJGRUNEMUYyQ0RBODNCOTc1 QzE2NTE2NDY3MjFBNjExQTgyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN851F4Zs9WRPHpbTXENiHF2uTn1tDYryHOUxJDh+j/Dkh8pUM+i2pRS7Gwl ivzkRXdjPFM6VzU6f9Wj+ZBeMzGXgQevF4l90faJUj0JdNDCEZkce1crmIDiwAzz NZ4DV9VSlyQ3eDSHIVs91oYIhvKy64OhtHdR7SbGsW88PtB3jrtCOR1dQYtMMOtL 3i732xL9HNOmlxBIG9TzYXwGrn0gBmskuPixOebhpEMNuHgq94K0RMP2UMLmfY1p kDyWQxsB4Khfhz7XCD/zFTpmqyNAeDHiH4IhifECh4y+1vjlp6+kyPFQSujOzv30 ElwJI8GtWBJYLX8RQBgg7TdfiFMCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPlav+zR8s2oO5dcFlFkZyGmEaguMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mY2RlMWNmZC1jYmJjLTRmMDgtODljYi00MzVhNTkxMWYyYzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjZGUxY2Zk LWNiYmMtNGYwOC04OWNiLTQzNWE1OTExZjJjMi8wL0Y5NUFCRkVDRDFGMkNEQTgz Qjk3NUMxNjUxNjQ2NzIxQTYxMUE4MkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnf5owDwQCAAIwCQMHACABDfIMQDANBgkqhkiG9w0BAQsFAAOCAQEAF/ELHucc mancEmqP4UcfE+ndUIuJe//SohHY1SvLCwHmkYDatlEhI3993bRXsSivebSfTdXz opIkyeKYatYr33jDZmkMtKie4k5+7xKPkJTjaZBIjh2xbzgZPhZYkaURiuDtAcPD MwUufWsoMG6Co6YerIRiL4SqtS3f1wjEPPQpc9zYdoGhwn7aVF8PdstaVTnPOAhP 6lczVBf2//RaF90KY0mZsGoCNxzXv79vGwIIQTfrcXkdIaKKUDlxPiOay1eKDuJk 3l3JjncGl2APZg5SqFVw26Hy8Yz6ImkBUWEzxkgwQXZnKPrXgclyhTrHf+l4whk3 dXI9DGAawOZ/2A== -----END CERTIFICATE-----Generated at Sat Apr 5 10:13:12 2025 by rpki-client