$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer File: 11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.cer (raw, json) Hash identifier: nrmnXKryl+MfrRRKPJifyW+7pK3wuIhZ7DEzdDFbkKM= Subject key identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1027B5A2D508E834F3AD1B11CAE45C97B5135C6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft caRepository: rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 07 Jun 2024 21:19:27 +0000 Certificate not after: Fri 06 Jun 2025 21:24:27 +0000 Subordinate resources: IP: 27.131.0.0/21 IP: 45.115.64.0/22 IP: 103.16.112.0/22 IP: 103.29.4.0/22 IP: 119.110.80.0/21 IP: 2401:ae00::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:27:b5:a2:d5:08:e8:34:f3:ad:1b:11:ca:e4:5c:97:b5:13:5c:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 7 21:19:27 2024 GMT Not After : Jun 6 21:24:27 2025 GMT Subject: CN=11C9BA28534BA44999B4BA5D6B0F28E568DF6E14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:c8:94:79:5d:20:3f:bc:60:a3:4b:a0:c2:25: 84:d5:65:fd:f4:89:68:86:94:1c:96:58:6d:ca:00: ab:eb:55:21:8e:8a:ed:e0:32:24:7d:b2:01:05:89: f9:e8:9e:1f:f3:af:54:62:77:45:3a:11:d4:58:30: 11:40:ee:92:cc:d8:c6:6e:90:fb:c0:3f:e1:6c:41: 5c:46:26:68:3c:65:9f:43:8f:40:96:82:b8:66:87: 4e:b0:0e:56:f3:74:cc:54:b2:d6:ce:30:7f:72:ba: e5:5d:38:b0:61:05:2f:12:f6:ce:75:1a:85:ec:b2: ca:fa:10:15:af:dd:ca:e4:e0:80:37:e5:ff:02:56: f9:6c:c3:a2:66:ca:25:0e:ec:fa:8c:6d:dc:14:ef: 46:a1:4b:71:04:63:22:7c:0c:09:19:32:e7:a7:89: f4:bf:9c:1e:61:30:18:22:b1:0d:d1:60:27:4f:99: 5f:b4:08:6e:d2:31:b0:37:8a:21:5a:94:77:d2:10: 3b:58:9b:fa:3f:6e:44:2d:32:4a:0a:6f:73:2f:49: 01:45:c9:9a:23:36:60:f6:fa:6b:54:48:3d:69:5b: 9f:36:6d:9a:cb:9d:64:8c:59:af:d4:90:0b:ff:26: b5:3d:d7:fb:28:8a:61:10:5c:65:9d:61:8d:17:fd: cb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 11:C9:BA:28:53:4B:A4:49:99:B4:BA:5D:6B:0F:28:E5:68:DF:6E:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a06b6673-47a1-45e5-b6c2-42ab8b476249/0/11C9BA28534BA44999B4BA5D6B0F28E568DF6E14.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.131.0.0/21 45.115.64.0/22 103.16.112.0/22 103.29.4.0/22 119.110.80.0/21 IPv6: 2401:ae00::/32 Signature Algorithm: sha256WithRSAEncryption 95:fc:7e:cd:b7:60:59:00:5a:02:c7:86:59:9b:0b:45:bb:4b: 79:73:0d:62:9e:95:9f:47:fa:55:75:5e:6a:0a:57:72:62:b6: 0a:f3:7e:22:05:ec:8a:90:8d:22:5b:34:13:a9:b1:e0:78:4b: 6c:fe:df:3d:d3:6c:5c:fc:f7:b6:ff:f4:d2:8d:58:d9:33:37: f9:8d:2f:67:4b:41:d3:24:b9:f3:87:86:29:b0:96:0d:f8:a3: c4:a0:58:24:c5:72:4c:26:5a:fd:1a:74:e1:09:a8:ff:83:5e: c1:47:82:bb:f7:3f:08:29:9b:01:39:0b:de:34:68:fa:63:a2: 2d:95:47:1e:cf:d7:cd:08:fd:77:96:db:90:c0:57:d4:23:bc: 5b:88:44:cd:82:b6:58:65:d5:68:0e:1c:0e:64:42:69:82:2e: 2d:3b:7b:28:7f:d3:01:29:49:c4:85:08:51:e3:c9:75:0e:46: b6:83:94:35:f6:9e:20:9f:2c:8f:55:e1:53:3b:58:bf:96:46: d3:7f:10:c7:08:4b:e4:08:30:6a:af:05:cc:91:b2:9a:fd:8c: f0:5f:2b:e6:d7:a4:03:8d:6e:a7:a6:4d:3d:1e:29:07:53:e3: 79:eb:64:a2:27:16:3c:b4:4f:0f:71:d6:63:f5:71:bc:7a:2a: 18:d6:be:c5 -----BEGIN CERTIFICATE----- MIIF7DCCBNSgAwIBAgIUECe1otUI6DTzrRsRyuRcl7UTXGswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwNzIxMTkyN1oX DTI1MDYwNjIxMjQyN1owMzExMC8GA1UEAxMoMTFDOUJBMjg1MzRCQTQ0OTk5QjRC QTVENkIwRjI4RTU2OERGNkUxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL/IlHldID+8YKNLoMIlhNVl/fSJaIaUHJZYbcoAq+tVIY6K7eAyJH2yAQWJ +eieH/OvVGJ3RToR1FgwEUDukszYxm6Q+8A/4WxBXEYmaDxln0OPQJaCuGaHTrAO VvN0zFSy1s4wf3K65V04sGEFLxL2znUaheyyyvoQFa/dyuTggDfl/wJW+WzDombK JQ7s+oxt3BTvRqFLcQRjInwMCRky56eJ9L+cHmEwGCKxDdFgJ0+ZX7QIbtIxsDeK IVqUd9IQO1ib+j9uRC0ySgpvcy9JAUXJmiM2YPb6a1RIPWlbnzZtmsudZIxZr9SQ C/8mtT3X+yiKYRBcZZ1hjRf9yycCAwEAAaOCAt8wggLbMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBHJuihTS6RJmbS6XWsPKOVo324UMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMDZiNjY3My00N2ExLTQ1ZTUtYjZjMi00MmFiOGI0NzYyNDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNmI2Njcz LTQ3YTEtNDVlNS1iNmMyLTQyYWI4YjQ3NjI0OS8wLzExQzlCQTI4NTM0QkE0NDk5 OUI0QkE1RDZCMEYyOEU1NjhERjZFMTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MCQEAgABMB4D BAMbgwADBAItc0ADBAJnEHADBAJnHQQDBAN3blAwDQQCAAIwBwMFACQBrgAwDQYJ KoZIhvcNAQELBQADggEBAJX8fs23YFkAWgLHhlmbC0W7S3lzDWKelZ9H+lV1XmoK V3JitgrzfiIF7IqQjSJbNBOpseB4S2z+3z3TbFz897b/9NKNWNkzN/mNL2dLQdMk ufOHhimwlg34o8SgWCTFckwmWv0adOEJqP+DXsFHgrv3PwgpmwE5C940aPpjoi2V Rx7P180I/XeW25DAV9QjvFuIRM2Ctlhl1WgOHA5kQmmCLi07eyh/0wEpScSFCFHj yXUORraDlDX2niCfLI9V4VM7WL+WRtN/EMcIS+QIMGqvBcyRspr9jPBfK+bXpAON bqemTT0eKQdT43nrZKInFjy0Tw9x1mP1cbx6KhjWvsU= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:39 2024 by rpki-client on console-ams.rpki-client.org