$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/067116F928280AE09336BC39D005AAC13695F63C.cer File: 067116F928280AE09336BC39D005AAC13695F63C.cer (raw, json) Hash identifier: OmsxXlmTWPSOU4LEy4w1gHyqrqkiBjKgpY1lIEbL498= Subject key identifier: 06:71:16:F9:28:28:0A:E0:93:36:BC:39:D0:05:AA:C1:36:95:F6:3C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5C40A76A48C14E7ADCD3B9B75E8AED8583C6D3AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0/067116F928280AE09336BC39D005AAC13695F63C.mft caRepository: rsync://repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 11 Sep 2024 04:11:56 +0000 Certificate not after: Wed 10 Sep 2025 04:16:56 +0000 Subordinate resources: IP: 103.82.246.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:40:a7:6a:48:c1:4e:7a:dc:d3:b9:b7:5e:8a:ed:85:83:c6:d3:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 11 04:11:56 2024 GMT Not After : Sep 10 04:16:56 2025 GMT Subject: CN=067116F928280AE09336BC39D005AAC13695F63C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c7:33:a8:f4:85:6c:fd:ff:ab:94:60:61:81: a2:1b:6d:2d:16:4d:c3:b8:9c:6b:a3:86:7b:46:b9: 9f:1c:93:2a:5b:54:30:72:93:03:5f:5b:cc:59:23: 13:fc:7f:ce:56:a0:c7:35:26:73:24:3d:57:c1:82: c0:a3:44:a6:ba:86:28:9e:d1:fe:80:65:b4:2a:d5: e5:f0:0c:5c:7d:a9:59:88:30:87:75:74:2e:33:48: 57:37:ab:d5:e0:52:59:f5:e7:9c:9f:d3:34:56:3d: 01:8d:ba:de:31:ce:e3:f8:d9:f9:7f:95:e3:1f:47: c5:5f:84:c7:ef:40:12:b7:da:61:9c:93:08:8f:e6: 61:40:d0:7a:b3:2e:fe:05:74:ef:85:6e:45:46:a1: 84:32:87:6c:39:48:05:10:13:1c:9f:40:3e:dc:06: c8:16:5e:d3:83:6f:ff:86:44:f1:9e:9c:af:4e:3a: c1:97:bb:f8:eb:13:2d:f6:b9:80:b9:28:b9:67:d4: 96:08:88:00:ee:a3:a1:ac:74:b5:f9:8e:69:a9:4a: a5:c8:94:c7:79:23:f6:4a:21:ea:09:e3:7f:a6:8e: c9:68:cd:09:d3:17:21:e1:f8:9b:a6:ed:95:af:00: 98:a5:a6:42:70:65:0d:15:c2:16:dc:f7:66:08:51: 01:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 06:71:16:F9:28:28:0A:E0:93:36:BC:39:D0:05:AA:C1:36:95:F6:3C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bce0fe5a-e468-49d9-931b-ab4b924a45c2/0/067116F928280AE09336BC39D005AAC13695F63C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.246.0/24 Signature Algorithm: sha256WithRSAEncryption 29:e9:d7:c4:e2:6f:be:27:79:37:f9:a2:3f:77:da:06:ae:31: d8:d9:b5:4e:94:c7:ee:f3:db:05:3f:1e:74:e4:37:9a:84:cd: 4a:d9:8c:cc:0c:70:c9:a2:74:ac:0a:b2:b7:f7:90:ce:ec:d0: 56:af:72:17:a1:44:19:66:6d:b2:e2:48:38:1b:c4:4d:49:65: e7:81:c3:bb:68:e8:25:28:cd:fa:ad:7e:40:b6:f4:c3:4c:4b: 9e:85:aa:c7:af:34:ca:b4:65:3e:63:1f:c3:58:7b:0a:b8:d9: e9:d4:3c:37:24:5e:19:52:4a:30:29:95:4a:fa:65:99:c8:02: 35:01:cd:e4:64:a7:a9:16:4d:25:e6:6b:0c:4b:89:69:28:f5: 9e:5c:77:16:3d:58:31:60:25:72:a8:19:5a:81:b8:b5:6c:43: 05:40:76:38:78:df:4d:23:df:47:03:f3:f9:12:d5:bf:2c:c6: 06:8e:99:72:36:e7:f7:34:fa:44:9e:d4:5f:f0:12:d2:d1:cb: 29:42:13:50:52:b0:41:b5:79:ce:aa:d1:1b:86:6e:44:8f:1e: 43:85:9d:f8:9a:3f:2e:de:f9:eb:51:b9:14:87:39:a9:1c:d3: b6:58:f0:d2:fc:cd:3d:95:74:51:e1:06:73:a3:37:17:c0:4f: cb:c3:84:6e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUXECnakjBTnrc07m3XorthYPG068wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxMTA0MTE1NloX DTI1MDkxMDA0MTY1NlowMzExMC8GA1UEAxMoMDY3MTE2RjkyODI4MEFFMDkzMzZC QzM5RDAwNUFBQzEzNjk1RjYzQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANfHM6j0hWz9/6uUYGGBohttLRZNw7ica6OGe0a5nxyTKltUMHKTA19bzFkj E/x/zlagxzUmcyQ9V8GCwKNEprqGKJ7R/oBltCrV5fAMXH2pWYgwh3V0LjNIVzer 1eBSWfXnnJ/TNFY9AY263jHO4/jZ+X+V4x9HxV+Ex+9AErfaYZyTCI/mYUDQerMu /gV074VuRUahhDKHbDlIBRATHJ9APtwGyBZe04Nv/4ZE8Z6cr046wZe7+OsTLfa5 gLkouWfUlgiIAO6joax0tfmOaalKpciUx3kj9koh6gnjf6aOyWjNCdMXIeH4m6bt la8AmKWmQnBlDRXCFtz3ZghRAWUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAZxFvkoKArgkza8OdAFqsE2lfY8MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iY2UwZmU1YS1lNDY4LTQ5ZDktOTMxYi1hYjRiOTI0YTQ1YzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JjZTBmZTVh LWU0NjgtNDlkOS05MzFiLWFiNGI5MjRhNDVjMi8wLzA2NzExNkY5MjgyODBBRTA5 MzM2QkMzOUQwMDVBQUMxMzY5NUY2M0MubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnUvYwDQYJKoZIhvcNAQELBQADggEBACnp18Tib74neTf5oj932gauMdjZtU6U x+7z2wU/HnTkN5qEzUrZjMwMcMmidKwKsrf3kM7s0FavchehRBlmbbLiSDgbxE1J ZeeBw7to6CUozfqtfkC29MNMS56FqsevNMq0ZT5jH8NYewq42enUPDckXhlSSjAp lUr6ZZnIAjUBzeRkp6kWTSXmawxLiWko9Z5cdxY9WDFgJXKoGVqBuLVsQwVAdjh4 300j30cD8/kS1b8sxgaOmXI25/c0+kSe1F/wEtLRyylCE1BSsEG1ec6q0RuGbkSP HkOFnfiaPy7e+etRuRSHOakc07ZY8NL8zT2VdFHhBnOjNxfAT8vDhG4= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:17 2024 by rpki-client on console-ams.rpki-client.org