$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer File: CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.cer (raw, json) Hash identifier: 1uj2YhgZHXFP6k+eXrts4v+Jy6q2bOlvtPvTLAKMZI8= Subject key identifier: CC:43:05:AA:0B:68:48:DF:D0:76:6C:FE:7B:42:D2:B4:48:E1:6E:DB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4ED726E31FAAA5672090198EB6A77923C1245BF9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.mft caRepository: rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 30 Jul 2023 23:34:55 +0000 Certificate not after: Sun 28 Jul 2024 23:39:55 +0000 Subordinate resources: IP: 103.242.104.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:d7:26:e3:1f:aa:a5:67:20:90:19:8e:b6:a7:79:23:c1:24:5b:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 23:34:55 2023 GMT Not After : Jul 28 23:39:55 2024 GMT Subject: CN=CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:34:13:a9:b0:f5:80:4a:08:e2:0e:3a:ed:68: 09:32:0b:06:5e:45:a5:00:96:56:86:7d:a9:48:e6: 43:04:fd:23:f6:14:84:db:53:d0:ba:b3:99:8d:1e: bb:2b:a8:5e:fc:cd:5d:54:70:b2:b8:26:2d:45:b4: 3a:bb:68:0a:e3:c5:d3:11:3b:6d:e6:dd:74:0c:7f: 6d:e5:44:b0:7c:60:c3:64:ff:c1:f9:df:b6:b6:56: a0:53:2e:8b:5a:83:8f:a0:59:8e:18:8d:d0:ed:b6: fc:e1:70:a2:7e:bf:89:3c:91:cf:9e:20:98:b2:f8: e6:03:02:92:f0:17:4c:4a:c3:71:d6:68:80:b6:85: a3:a3:f2:a4:24:d1:4a:b1:36:a8:3d:50:42:50:59: 5c:6b:bd:d3:c1:d2:9a:df:df:df:f6:ff:17:6a:15: c9:7f:3c:05:93:59:32:b3:9a:cb:46:e6:35:c1:d4: a0:de:f3:1a:88:c3:e7:41:63:18:0d:82:95:fd:de: 0e:01:e0:33:53:ce:1c:12:1c:a5:cf:a6:16:a4:92: 1c:61:94:4e:49:0a:c8:5b:b0:40:4a:8a:b3:64:76: fe:4c:1c:70:6c:6f:0a:9e:0c:63:28:de:ba:b4:b3: ee:94:74:5a:0c:c7:62:b9:5d:b4:46:1a:13:ee:1d: 1d:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CC:43:05:AA:0B:68:48:DF:D0:76:6C:FE:7B:42:D2:B4:48:E1:6E:DB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4e45c9eb-3bb6-4203-8c86-f08b64da3ea9/0/CC4305AA0B6848DFD0766CFE7B42D2B448E16EDB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.104.0/22 Signature Algorithm: sha256WithRSAEncryption 77:d3:7e:d6:46:7d:f7:58:d1:69:c8:f5:a6:1a:22:05:8e:10: f0:62:6b:2c:39:3a:62:ae:4c:9e:e8:53:60:51:fe:cf:b6:e3: 99:77:14:d1:b1:41:f1:1c:82:2c:7b:c0:83:fb:90:c9:21:1c: ab:08:1c:92:25:36:fb:79:31:62:56:7e:c8:25:3b:b8:c8:4b: b3:a3:9c:e5:a2:f5:d7:c4:8e:fb:7e:6c:2e:32:a7:0e:32:44: 11:f9:b4:db:22:43:bd:61:d4:66:6a:67:81:a4:1d:b6:be:dc: fa:ef:6a:8d:b9:96:47:0f:9d:18:98:73:39:e2:f1:68:e6:1d: 4f:ad:b1:96:0a:af:9e:61:c6:72:63:ae:e8:7e:bf:40:43:a3: 49:60:50:6d:7c:4b:a7:3e:3e:92:d0:ad:01:0d:f1:63:4d:33: 70:74:4c:48:8a:e4:55:6e:7a:13:44:f7:fd:2d:cb:3f:d5:a3: ad:30:ef:19:05:17:8c:92:1f:af:a0:49:36:e9:9d:d0:f9:cc: 53:86:d2:64:a3:5f:f3:e0:4a:d0:58:76:3b:d8:01:cc:92:f4: 25:f2:a8:63:e8:73:c3:49:0e:a0:93:91:0e:c1:7f:c4:c3:dd: df:46:40:7f:7c:ee:21:fa:7d:2e:be:06:2d:73:43:4c:ac:85: 63:4d:3e:81 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUTtcm4x+qpWcgkBmOtqd5I8EkW/kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMDIzMzQ1NVoX DTI0MDcyODIzMzk1NVowMzExMC8GA1UEAxMoQ0M0MzA1QUEwQjY4NDhERkQwNzY2 Q0ZFN0I0MkQyQjQ0OEUxNkVEQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMk0E6mw9YBKCOIOOu1oCTILBl5FpQCWVoZ9qUjmQwT9I/YUhNtT0LqzmY0e uyuoXvzNXVRwsrgmLUW0OrtoCuPF0xE7bebddAx/beVEsHxgw2T/wfnftrZWoFMu i1qDj6BZjhiN0O22/OFwon6/iTyRz54gmLL45gMCkvAXTErDcdZogLaFo6PypCTR SrE2qD1QQlBZXGu908HSmt/f3/b/F2oVyX88BZNZMrOay0bmNcHUoN7zGojD50Fj GA2Clf3eDgHgM1POHBIcpc+mFqSSHGGUTkkKyFuwQEqKs2R2/kwccGxvCp4MYyje urSz7pR0WgzHYrldtEYaE+4dHe0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMxDBaoLaEjf0HZs/ntC0rRI4W7bMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZTQ1YzllYi0zYmI2LTQyMDMtOGM4Ni1mMDhiNjRkYTNlYTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRlNDVjOWVi LTNiYjYtNDIwMy04Yzg2LWYwOGI2NGRhM2VhOS8wL0NDNDMwNUFBMEI2ODQ4REZE MDc2NkNGRTdCNDJEMkI0NDhFMTZFREIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJn8mgwDQYJKoZIhvcNAQELBQADggEBAHfTftZGffdY0WnI9aYaIgWOEPBiayw5 OmKuTJ7oU2BR/s+245l3FNGxQfEcgix7wIP7kMkhHKsIHJIlNvt5MWJWfsglO7jI S7OjnOWi9dfEjvt+bC4ypw4yRBH5tNsiQ71h1GZqZ4GkHba+3Prvao25lkcPnRiY czni8WjmHU+tsZYKr55hxnJjruh+v0BDo0lgUG18S6c+PpLQrQEN8WNNM3B0TEiK 5FVuehNE9/0tyz/Vo60w7xkFF4ySH6+gSTbpndD5zFOG0mSjX/PgStBYdjvYAcyS 9CXyqGPoc8NJDqCTkQ7Bf8TD3d9GQH987iH6fS6+Bi1zQ0yshWNNPoE= -----END CERTIFICATE-----Generated at Wed May 8 17:45:25 2024 by rpki-client on console-ams.rpki-client.org