$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer File: 0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.cer (raw, json) Hash identifier: 9V4PXWqlZrJHSYf9Wdlz/A3pQQRuRoZiwpGuwppFNqE= Subject key identifier: 0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0B4BDB0E0A5655D6717F4B4C42D4407768FFA82E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.mft caRepository: rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 14 May 2024 17:14:49 +0000 Certificate not after: Tue 13 May 2025 17:19:49 +0000 Subordinate resources: IP: 103.84.208.0/22 IP: 2400:a340::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:4b:db:0e:0a:56:55:d6:71:7f:4b:4c:42:d4:40:77:68:ff:a8:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 14 17:14:49 2024 GMT Not After : May 13 17:19:49 2025 GMT Subject: CN=0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:30:11:67:cd:d2:96:5f:ee:a0:8c:93:df:79: 78:e3:c1:d1:30:15:be:46:43:3f:54:19:7f:b5:9e: d9:c2:f1:97:69:a1:95:d9:f1:51:e0:f0:42:21:6c: 41:fc:b9:4a:5e:16:75:f7:f3:0a:be:92:a9:1c:1c: 84:67:e0:28:81:cf:f3:93:d7:2d:32:c4:53:35:3a: 26:d0:23:91:e9:68:e4:f7:ec:9d:bb:82:ca:9c:99: 35:ae:88:93:f2:5a:b8:67:12:55:56:a5:d1:50:2b: 10:da:79:f6:89:36:d7:54:a9:eb:8e:5b:c7:cb:53: 12:57:e2:bd:c2:67:2c:cb:7f:e1:48:e7:ec:b2:36: b0:0b:19:a5:56:ec:74:30:50:09:0f:5f:be:6c:31: 12:51:76:e2:f7:63:ff:2f:7c:03:b3:2d:23:5d:53: 15:70:57:0b:ca:70:bc:d3:3e:34:d3:b1:7c:d0:0c: fd:c2:76:7f:ba:5b:1c:9f:18:7f:b6:3c:3a:0a:76: 09:cd:7b:a0:fc:b3:93:c5:ad:a8:35:a3:94:58:8b: b5:7c:34:27:c3:a6:9e:7c:af:6a:4d:2a:a5:ae:54: 3b:2c:e8:87:7c:b6:0c:94:67:32:0c:60:74:16:80: 79:0d:bd:98:1c:8d:1e:f8:8d:24:9c:8d:ca:a9:47: c0:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0E:42:26:A5:F1:76:6A:EA:E7:68:A2:A6:76:C3:E8:B2:CA:EA:DC:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ae0e5ac2-b6bb-4bec-9dc9-e430a6733216/0/0E4226A5F1766AEAE768A2A676C3E8B2CAEADC96.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.208.0/22 IPv6: 2400:a340::/32 Signature Algorithm: sha256WithRSAEncryption 22:83:6b:41:78:8d:98:99:16:cf:8d:41:a6:3f:83:64:e3:dd: b9:f9:99:a2:01:c0:76:d8:fe:56:87:0b:fc:97:61:52:4e:44: 1c:9a:7b:59:b9:df:9c:1c:c5:70:53:ff:03:19:cc:6e:2a:bb: 32:73:16:5d:33:44:d6:8f:4c:c8:31:ad:69:14:9c:7d:a6:62: 9a:0d:ca:57:c1:1d:c9:47:0f:56:bb:60:ae:14:95:6a:f7:37: c9:f8:1f:6d:02:c5:93:37:e6:dc:48:66:16:f2:ee:e7:fa:93: 52:fa:7b:e6:28:df:52:56:4c:49:65:0b:ad:34:73:32:96:80: e3:a2:79:59:2f:f4:04:18:46:9f:c7:ad:a0:6d:26:16:28:e5: e2:dc:2c:ec:81:0d:62:c3:13:55:3a:b2:3b:88:8c:4b:b9:a8: 62:70:ed:af:ef:9e:ee:8c:2a:86:10:64:02:3f:59:7f:f4:76: 9b:a6:e0:4b:a5:7c:29:fb:0d:b1:96:f1:a6:da:76:3a:78:e4: 9c:e1:3a:7b:5e:41:6c:82:47:69:43:b3:f1:fd:ce:e5:b4:22: a8:da:f3:b3:0d:8d:be:90:41:a8:66:56:c3:1a:c8:a7:11:09: 22:b1:ba:31:e3:bb:f5:54:5f:52:dc:30:b7:a0:53:e1:f2:d4: 16:52:9d:67 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUC0vbDgpWVdZxf0tMQtRAd2j/qC4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUxNDE3MTQ0OVoX DTI1MDUxMzE3MTk0OVowMzExMC8GA1UEAxMoMEU0MjI2QTVGMTc2NkFFQUU3NjhB MkE2NzZDM0U4QjJDQUVBREM5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANwwEWfN0pZf7qCMk995eOPB0TAVvkZDP1QZf7We2cLxl2mhldnxUeDwQiFs Qfy5Sl4WdffzCr6SqRwchGfgKIHP85PXLTLEUzU6JtAjkelo5PfsnbuCypyZNa6I k/JauGcSVVal0VArENp59ok211Sp645bx8tTElfivcJnLMt/4Ujn7LI2sAsZpVbs dDBQCQ9fvmwxElF24vdj/y98A7MtI11TFXBXC8pwvNM+NNOxfNAM/cJ2f7pbHJ8Y f7Y8Ogp2Cc17oPyzk8WtqDWjlFiLtXw0J8Omnnyvak0qpa5UOyzoh3y2DJRnMgxg dBaAeQ29mByNHviNJJyNyqlHwGUCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFA5CJqXxdmrq52iipnbD6LLK6tyWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZTBlNWFjMi1iNmJiLTRiZWMtOWRjOS1lNDMwYTY3MzMyMTYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMGU1YWMy LWI2YmItNGJlYy05ZGM5LWU0MzBhNjczMzIxNi8wLzBFNDIyNkE1RjE3NjZBRUFF NzY4QTJBNjc2QzNFOEIyQ0FFQURDOTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnVNAwDQQCAAIwBwMFACQAo0AwDQYJKoZIhvcNAQELBQADggEBACKDa0F4jZiZ Fs+NQaY/g2Tj3bn5maIBwHbY/laHC/yXYVJORByae1m535wcxXBT/wMZzG4quzJz Fl0zRNaPTMgxrWkUnH2mYpoNylfBHclHD1a7YK4UlWr3N8n4H20CxZM35txIZhby 7uf6k1L6e+Yo31JWTEllC600czKWgOOieVkv9AQYRp/HraBtJhYo5eLcLOyBDWLD E1U6sjuIjEu5qGJw7a/vnu6MKoYQZAI/WX/0dpum4EulfCn7DbGW8abadjp45Jzh OnteQWyCR2lDs/H9zuW0Iqja87MNjb6QQahmVsMayKcRCSKxujHju/VUX1LcMLeg U+Hy1BZSnWc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:13 2024 by rpki-client on console-fra.rpki-client.org