$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer File: 0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer (raw, json) Hash identifier: cjMtTmE6ZT+fAHvYj7569aCYjk3IlO5p5/GoEX828uw= Subject key identifier: 0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 66D537D1AB9B9BCEE17DEA78B294C178ED3A6DAD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.mft caRepository: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 16:26:12 +0000 Certificate not after: Mon 30 Jun 2025 16:31:12 +0000 Subordinate resources: IP: 103.77.156.0/22 IP: 2407:9c80::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:d5:37:d1:ab:9b:9b:ce:e1:7d:ea:78:b2:94:c1:78:ed:3a:6d:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 16:26:12 2024 GMT Not After : Jun 30 16:31:12 2025 GMT Subject: CN=0E8637C23FD7FD1ABF91B025E48040909797EA6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ff:1d:0c:0d:33:c0:7b:5d:b6:22:1f:75:6c: 90:0d:44:28:75:ae:19:4c:41:52:98:0e:93:76:0b: 66:2b:37:bd:02:fc:b0:f7:be:9f:39:7d:a3:09:ed: 64:2b:0f:67:30:25:a0:a8:52:c9:48:65:83:59:c9: 01:ba:4b:51:a0:0c:2d:b3:7a:6f:8d:20:de:ed:75: e1:71:a7:48:28:79:d7:ab:71:be:63:26:23:14:61: 97:af:c3:44:8f:b9:9b:05:6d:cd:ad:6d:39:89:1f: c0:49:6b:02:c1:42:95:c0:40:f6:ab:49:cc:66:38: 33:04:1d:d0:50:92:d0:49:d0:b7:84:0b:ad:c1:d9: d4:15:dd:37:63:c9:c0:55:9b:8e:fb:3c:15:f6:ac: 58:97:f9:65:c6:05:15:5d:75:da:63:b7:0f:7f:36: 42:a3:0b:17:76:7e:d1:6d:56:76:8f:89:e8:be:86: d6:d9:67:32:76:7c:8b:24:76:27:35:40:28:88:44: 4d:27:aa:f7:0b:f7:2f:e6:05:bd:30:93:e7:2e:8c: 17:08:1d:99:14:f3:10:46:dc:11:f8:84:c7:ae:78: 1c:a4:4e:46:77:74:b2:cc:07:1a:e4:db:af:d3:b1: 66:cd:0d:2e:3f:2c:0f:83:1f:55:e2:03:a9:01:ca: 3c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.77.156.0/22 IPv6: 2407:9c80::/32 Signature Algorithm: sha256WithRSAEncryption 2b:32:34:a5:7f:37:04:c2:a4:0c:e9:b3:8e:38:4d:0b:dd:63: b6:c4:12:a7:1c:a2:25:b2:fe:28:d0:94:9d:25:c3:6e:ad:3f: b5:58:b8:4a:b2:76:6f:53:82:04:40:04:29:1f:27:63:6e:9c: 48:5d:e9:ac:da:0c:1d:13:7f:dd:67:13:77:fa:e6:d4:ba:c3: e5:17:8f:44:18:7d:b6:c4:fa:8e:4d:97:b0:61:fc:32:33:3a: 95:9b:79:ba:45:73:8d:a8:a0:5b:2f:74:80:08:5f:36:4d:fd: d2:8b:3d:23:bb:8d:0e:0c:97:f7:41:21:a4:73:1f:87:e5:9f: 59:fb:20:06:63:df:de:5a:09:d5:94:b8:a5:96:4d:85:08:85: 5c:33:c3:ea:88:9d:c6:82:03:12:35:4a:68:97:ab:7a:f5:2c: a7:3f:44:0f:0d:84:74:5c:38:3e:89:37:ea:92:7d:4b:89:b8: 14:bc:17:61:f9:6a:88:0c:09:14:bf:2d:19:68:f8:60:50:4e: 2d:43:52:ba:46:d7:d2:39:34:f6:e0:11:05:d6:4f:df:ca:12: 7d:15:45:d8:2e:d2:77:b4:c5:ac:60:48:1f:f9:96:e0:37:e6: ad:9f:48:2b:f4:16:df:9c:c4:2c:44:c0:14:c9:44:60:3f:a0: eb:94:c7:e5 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUZtU30aubm87hfep4spTBeO06ba0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE2MjYxMloX DTI1MDYzMDE2MzExMlowMzExMC8GA1UEAxMoMEU4NjM3QzIzRkQ3RkQxQUJGOTFC MDI1RTQ4MDQwOTA5Nzk3RUE2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7/HQwNM8B7XbYiH3VskA1EKHWuGUxBUpgOk3YLZis3vQL8sPe+nzl9ownt ZCsPZzAloKhSyUhlg1nJAbpLUaAMLbN6b40g3u114XGnSCh516txvmMmIxRhl6/D RI+5mwVtza1tOYkfwElrAsFClcBA9qtJzGY4MwQd0FCS0EnQt4QLrcHZ1BXdN2PJ wFWbjvs8FfasWJf5ZcYFFV112mO3D382QqMLF3Z+0W1Wdo+J6L6G1tlnMnZ8iyR2 JzVAKIhETSeq9wv3L+YFvTCT5y6MFwgdmRTzEEbcEfiEx654HKRORnd0sswHGuTb r9OxZs0NLj8sD4MfVeIDqQHKPGUCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFA6GN8I/1/0av5GwJeSAQJCXl+psMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hYzNmMjI4OC04OGNmLTRkMmItYmJhNi1hMDNkZDVmODM3NjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjM2YyMjg4 LTg4Y2YtNGQyYi1iYmE2LWEwM2RkNWY4Mzc2MS8wLzBFODYzN0MyM0ZEN0ZEMUFC RjkxQjAyNUU0ODA0MDkwOTc5N0VBNkMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnTZwwDQQCAAIwBwMFACQHnIAwDQYJKoZIhvcNAQELBQADggEBACsyNKV/NwTC pAzps444TQvdY7bEEqccoiWy/ijQlJ0lw26tP7VYuEqydm9TggRABCkfJ2NunEhd 6azaDB0Tf91nE3f65tS6w+UXj0QYfbbE+o5Nl7Bh/DIzOpWbebpFc42ooFsvdIAI XzZN/dKLPSO7jQ4Ml/dBIaRzH4fln1n7IAZj395aCdWUuKWWTYUIhVwzw+qIncaC AxI1SmiXq3r1LKc/RA8NhHRcOD6JN+qSfUuJuBS8F2H5aogMCRS/LRlo+GBQTi1D UrpG19I5NPbgEQXWT9/KEn0VRdgu0ne0xaxgSB/5luA35q2fSCv0Ft+cxCxEwBTJ RGA/oOuUx+U= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:44 2024 by rpki-client on console-fra.rpki-client.org