$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer File: 0246DD14AF68F5E5512ABD88D1DB7507E6913C96.cer (raw, json) Hash identifier: DZ6WBFccARDlvP04KCDfGdPA22CCI+M69A7cHQJX0ew= Subject key identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3764A42D91AD6E0BD32CE286E253CD1C5CF29BA2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.mft caRepository: rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 14 Mar 2024 19:52:21 +0000 Certificate not after: Thu 13 Mar 2025 19:57:21 +0000 Subordinate resources: IP: 103.167.136.0/23 IP: 2407:6d40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:64:a4:2d:91:ad:6e:0b:d3:2c:e2:86:e2:53:cd:1c:5c:f2:9b:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 14 19:52:21 2024 GMT Not After : Mar 13 19:57:21 2025 GMT Subject: CN=0246DD14AF68F5E5512ABD88D1DB7507E6913C96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ce:9f:f0:3f:40:71:71:09:60:2d:27:15:48: 3f:5a:ef:79:60:4d:96:54:de:12:b4:de:fd:72:aa: 25:01:76:1a:ce:da:f5:52:aa:a4:7c:d6:99:e4:07: 45:89:96:6a:78:01:50:d1:98:cf:3e:9c:ad:b6:da: ef:9b:c3:53:d9:99:13:53:19:ce:06:c7:c8:b4:b4: cc:ac:ad:14:15:4f:f2:5b:5b:9e:0d:fe:f6:a1:14: 2e:2f:9d:7d:44:03:1e:b1:b3:bb:79:42:cc:b9:f3: 1d:99:57:d6:7b:b4:eb:22:23:36:60:ef:46:c1:e9: 98:9a:bd:72:8a:0b:37:6d:25:f9:53:96:65:c5:bf: 5f:67:f2:26:58:97:d3:16:87:f9:1e:9c:90:db:36: 86:32:49:40:fc:d4:51:10:d4:88:38:fb:d5:8d:ef: 3a:62:dd:83:67:d2:c6:a5:f3:12:85:4c:f6:cc:b1: 57:c5:7b:f0:63:bc:f6:38:c9:28:7c:72:55:1e:1d: fa:42:6f:f9:1e:41:e7:b3:d4:80:59:b5:40:7d:b3: 9d:c6:93:37:9c:15:46:37:85:b4:d9:d2:e0:8d:47: 9f:92:6d:f0:40:5d:ac:95:e3:96:86:58:d2:03:b5: aa:d4:48:df:5f:6f:9c:ca:9c:f4:b0:12:a6:50:44: a3:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 02:46:DD:14:AF:68:F5:E5:51:2A:BD:88:D1:DB:75:07:E6:91:3C:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9dfb3992-1d2f-46ce-886a-8e22a32611f8/0/0246DD14AF68F5E5512ABD88D1DB7507E6913C96.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.136.0/23 IPv6: 2407:6d40::/32 Signature Algorithm: sha256WithRSAEncryption 40:eb:92:b5:59:ae:2e:a8:63:2c:a9:c5:8f:bc:46:ed:69:e2: ce:c3:ae:92:fc:d8:af:eb:7b:ee:04:94:a6:35:89:cc:73:47: 1e:9d:88:51:ed:e8:7a:f5:f9:c8:1b:07:3c:39:96:25:67:e0: 18:96:34:26:72:be:f7:23:74:36:7a:64:74:a4:bb:48:08:64: 1e:a0:68:24:23:8a:0b:cf:22:bd:b4:ed:70:70:d3:5a:57:9b: 0a:88:1a:79:f2:4b:17:c0:4c:77:32:bc:4d:9a:1d:26:3e:1f: 42:23:da:de:11:4b:75:cf:3b:e7:ee:1b:21:db:0c:8b:06:4f: 1b:57:9b:78:5b:4f:3e:22:5f:90:20:cf:02:c8:9e:1b:ca:fb: 0b:c9:5e:a6:be:36:08:e3:94:a3:86:79:59:a3:1d:fc:d9:cc: 08:71:3a:51:63:10:e6:4d:91:03:13:02:53:cd:73:7f:fd:90: d9:73:e4:ee:8a:0e:30:cc:16:98:e7:61:26:e0:39:2f:85:c0: 52:ec:e1:b1:47:38:37:ee:2a:c2:d1:3d:30:aa:c5:6c:88:89: 6d:0b:0c:ce:87:7a:93:3f:75:36:f1:ea:bd:f1:53:51:6d:16: 9e:26:f1:a6:d7:cb:8e:2f:c2:a7:b6:a7:fa:aa:b1:16:47:31: a0:91:43:07 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUN2SkLZGtbgvTLOKG4lPNHFzym6IwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxNDE5NTIyMVoX DTI1MDMxMzE5NTcyMVowMzExMC8GA1UEAxMoMDI0NkREMTRBRjY4RjVFNTUxMkFC RDg4RDFEQjc1MDdFNjkxM0M5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMbOn/A/QHFxCWAtJxVIP1rveWBNllTeErTe/XKqJQF2Gs7a9VKqpHzWmeQH RYmWangBUNGYzz6crbba75vDU9mZE1MZzgbHyLS0zKytFBVP8ltbng3+9qEULi+d fUQDHrGzu3lCzLnzHZlX1nu06yIjNmDvRsHpmJq9cooLN20l+VOWZcW/X2fyJliX 0xaH+R6ckNs2hjJJQPzUURDUiDj71Y3vOmLdg2fSxqXzEoVM9syxV8V78GO89jjJ KHxyVR4d+kJv+R5B57PUgFm1QH2zncaTN5wVRjeFtNnS4I1Hn5Jt8EBdrJXjloZY 0gO1qtRI319vnMqc9LASplBEo3kCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAJG3RSvaPXlUSq9iNHbdQfmkTyWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85ZGZiMzk5Mi0xZDJmLTQ2Y2UtODg2YS04ZTIyYTMyNjExZjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlkZmIzOTky LTFkMmYtNDZjZS04ODZhLThlMjJhMzI2MTFmOC8wLzAyNDZERDE0QUY2OEY1RTU1 MTJBQkQ4OEQxREI3NTA3RTY5MTNDOTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnp4gwDQQCAAIwBwMFACQHbUAwDQYJKoZIhvcNAQELBQADggEBAEDrkrVZri6o YyypxY+8Ru1p4s7DrpL82K/re+4ElKY1icxzRx6diFHt6Hr1+cgbBzw5liVn4BiW NCZyvvcjdDZ6ZHSku0gIZB6gaCQjigvPIr207XBw01pXmwqIGnnySxfATHcyvE2a HSY+H0Ij2t4RS3XPO+fuGyHbDIsGTxtXm3hbTz4iX5AgzwLInhvK+wvJXqa+Ngjj lKOGeVmjHfzZzAhxOlFjEOZNkQMTAlPNc3/9kNlz5O6KDjDMFpjnYSbgOS+FwFLs 4bFHODfuKsLRPTCqxWyIiW0LDM6HepM/dTbx6r3xU1FtFp4m8abXy44vwqe2p/qq sRZHMaCRQwc= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:44 2024 by rpki-client on console-fra.rpki-client.org