$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer File: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer (raw, json) Hash identifier: HhJy2+koACOEl7Gt1pu5sNlKn56l4PaGXLMnEmTNDUk= Subject key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 111FFB027234C5B89F9F06CAAD655A16F3C5DF12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft caRepository: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 16:49:54 +0000 Certificate not after: Mon 30 Jun 2025 16:54:54 +0000 Subordinate resources: IP: 45.64.96.0/22 IP: 103.28.148.0/23 IP: 103.31.250.0/23 IP: 2001:df0:273::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:1f:fb:02:72:34:c5:b8:9f:9f:06:ca:ad:65:5a:16:f3:c5:df:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 16:49:54 2024 GMT Not After : Jun 30 16:54:54 2025 GMT Subject: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:86:82:9f:2b:60:c1:a8:98:94:91:8f:5c:d5: 73:23:b7:94:eb:e6:b6:58:1c:60:51:32:e5:8d:08: de:a4:a4:2a:28:8b:21:51:99:be:b6:76:10:b2:6c: 18:e3:0b:4f:ec:27:76:c2:97:17:b2:16:5c:f9:a1: 26:08:ea:66:97:49:e5:13:64:d7:d8:f6:6b:34:40: d3:39:51:2d:e2:76:4b:e3:1c:d0:87:66:63:b7:95: c8:aa:5f:3a:f0:90:f8:27:09:28:80:cc:56:c3:31: eb:c0:cb:15:4b:d9:94:f5:fb:18:81:52:63:f3:f3: 23:f9:2c:88:d3:de:7b:1a:04:72:5e:93:f7:6c:b3: 22:ce:e9:fc:5e:ed:5b:46:55:ed:ac:12:4d:04:fb: 9d:7a:24:33:be:ac:c0:f0:60:9c:5e:76:f6:36:2d: 56:d7:2c:3e:b0:18:d3:0a:18:7b:9a:08:95:dd:e5: 3c:25:88:6b:69:d4:1a:a1:9a:c8:43:30:d8:42:b1: f6:7d:6b:cd:0b:65:d6:47:f5:c9:83:29:99:82:fd: ad:07:cd:de:3e:9a:7a:7a:72:21:81:e6:17:77:0f: c3:8f:11:17:0c:31:87:9d:b8:be:d4:e7:4a:69:02: 14:c2:9a:a1:b3:a7:58:03:6b:ce:b9:a8:42:c7:d3: 2d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.96.0/22 103.28.148.0/23 103.31.250.0/23 IPv6: 2001:df0:273::/48 Signature Algorithm: sha256WithRSAEncryption 03:46:95:62:a2:1b:0f:01:5c:6d:88:5e:a5:72:73:e8:82:83: 4f:88:4e:0f:04:12:1d:bc:a7:1c:a0:0c:3f:f8:83:52:f7:2a: 13:d4:e7:c4:9d:18:c3:8a:3f:61:8f:f0:b6:44:46:03:63:20: cf:06:86:e0:25:82:5a:e9:7e:ca:3a:31:6a:2a:8f:a6:94:8d: 43:04:0a:98:47:b9:91:d3:d2:8a:f4:2b:41:2c:27:e8:70:52: 53:ce:e4:40:0c:62:8e:0b:af:cf:85:4b:74:aa:af:14:4f:13: 36:1b:8d:94:94:5b:b8:81:53:8b:a7:fe:9b:46:20:b2:ed:93: 67:20:2a:51:54:4e:2b:2c:56:ef:02:d5:26:b3:d6:56:f5:d7: 2f:79:46:7c:0f:f1:44:90:e3:a6:18:fe:a7:a0:c2:5b:c5:c7: a3:7b:a4:48:fd:2c:3d:c4:a2:8b:7a:c2:f0:10:70:1a:76:26: 58:ba:2d:27:3f:58:61:56:fe:6f:c8:06:83:59:5f:f8:88:2b: f5:27:38:04:f6:59:52:a6:5e:dd:79:8e:75:09:d4:bf:77:f9: 19:9d:69:a3:bf:3c:b9:3e:90:5c:cb:00:16:18:a4:fc:db:d4: a8:02:cf:cf:20:7b:46:7d:b1:b3:a2:dc:c8:e1:ed:c3:f4:d6: 9f:0a:56:10 -----BEGIN CERTIFICATE----- MIIF4jCCBMqgAwIBAgIUER/7AnI0xbifnwbKrWVaFvPF3xIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE2NDk1NFoX DTI1MDYzMDE2NTQ1NFowMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3 NkFFMkIwOUMyMzQyN0MxOTFBNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyGgp8rYMGomJSRj1zVcyO3lOvmtlgcYFEy5Y0I3qSkKiiLIVGZvrZ2ELJs GOMLT+wndsKXF7IWXPmhJgjqZpdJ5RNk19j2azRA0zlRLeJ2S+Mc0IdmY7eVyKpf OvCQ+CcJKIDMVsMx68DLFUvZlPX7GIFSY/PzI/ksiNPeexoEcl6T92yzIs7p/F7t W0ZV7awSTQT7nXokM76swPBgnF529jYtVtcsPrAY0woYe5oIld3lPCWIa2nUGqGa yEMw2EKx9n1rzQtl1kf1yYMpmYL9rQfN3j6aenpyIYHmF3cPw48RFwwxh524vtTn SmkCFMKaobOnWANrzrmoQsfTLSECAwEAAaOCAtUwggLRMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBDKF3bvqK81KS52risJwjQnwZGmMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiYzZhYTAz LTFiNGQtNDM4ZS1hOWYzLWVmZWFhZTZiMDkyMS8wLzEwQ0ExNzc2RUZBOEFGMzUy OTJFNzZBRTJCMDlDMjM0MjdDMTkxQTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwPAYIKwYBBQUHAQcBAf8ELTArMBgEAgABMBID BAItQGADBAFnHJQDBAFnH/owDwQCAAIwCQMHACABDfACczANBgkqhkiG9w0BAQsF AAOCAQEAA0aVYqIbDwFcbYhepXJz6IKDT4hODwQSHbynHKAMP/iDUvcqE9TnxJ0Y w4o/YY/wtkRGA2MgzwaG4CWCWul+yjoxaiqPppSNQwQKmEe5kdPSivQrQSwn6HBS U87kQAxijguvz4VLdKqvFE8TNhuNlJRbuIFTi6f+m0Ygsu2TZyAqUVROKyxW7wLV JrPWVvXXL3lGfA/xRJDjphj+p6DCW8XHo3ukSP0sPcSii3rC8BBwGnYmWLotJz9Y YVb+b8gGg1lf+Igr9Sc4BPZZUqZe3XmOdQnUv3f5GZ1po788uT6QXMsAFhik/NvU qALPzyB7Rn2xs6LcyOHtw/TWnwpWEA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:39 2024 by rpki-client on console-ams.rpki-client.org