$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/132FE11D02592F9985A978A727BF9B772762CDF8.cer File: 132FE11D02592F9985A978A727BF9B772762CDF8.cer (raw, json) Hash identifier: jTpazWarxxg9H3RlrjhYhxDr0AcN1W0h3xOIuHTNd2g= Subject key identifier: 13:2F:E1:1D:02:59:2F:99:85:A9:78:A7:27:BF:9B:77:27:62:CD:F8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 60BA0C65774CCC9E0EA628FF3CCAD8E5F2CACC1A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/235225a6-05d3-444c-bf3f-11e3ef7b6a15/0/132FE11D02592F9985A978A727BF9B772762CDF8.mft caRepository: rsync://repo-rpki.idnic.net/repo/235225a6-05d3-444c-bf3f-11e3ef7b6a15/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 06 Nov 2024 22:29:33 +0000 Certificate not after: Wed 05 Nov 2025 22:34:33 +0000 Subordinate resources: IP: 103.178.224.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:ba:0c:65:77:4c:cc:9e:0e:a6:28:ff:3c:ca:d8:e5:f2:ca:cc:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 6 22:29:33 2024 GMT Not After : Nov 5 22:34:33 2025 GMT Subject: CN=132FE11D02592F9985A978A727BF9B772762CDF8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:bb:e4:53:5b:0d:ca:4c:e4:ce:84:d5:ee:36: e5:cc:55:97:b3:55:b9:49:a0:b9:cf:a3:9e:96:70: e7:63:54:1f:03:33:81:29:a8:f4:64:48:1e:63:de: 8b:0a:fe:b4:5b:18:c0:30:06:74:9f:43:3d:dc:59: e6:d1:51:26:61:ff:e3:f8:ca:44:20:a3:db:d1:16: 88:a5:18:5c:0f:00:18:5b:07:a7:e6:7f:e8:39:60: d1:da:4d:4a:3a:8d:35:05:30:54:4b:15:d7:db:8d: 62:bd:0d:b0:3e:4f:d6:fd:95:9f:86:e4:07:07:16: 25:28:bf:a1:5b:05:fc:6b:d5:75:a5:c3:8d:79:c7: 2b:50:1b:58:d4:e2:15:d3:d4:ad:68:30:0e:ba:f0: 35:d2:14:6d:e9:85:1f:d7:8e:9f:e7:26:11:bd:00: 9b:b8:20:7a:84:40:91:9a:e9:1e:a9:ad:2e:ad:22: 55:72:39:89:4b:15:76:47:2c:9e:68:a6:36:e4:82: 44:57:ff:aa:b2:d0:16:d8:43:30:f2:4f:15:eb:73: 19:d3:58:6c:c7:38:4f:65:a8:4e:84:2c:b3:79:f8: 53:0f:dc:bf:86:4a:79:de:5e:49:ac:cc:67:77:01: 52:70:a7:79:96:81:32:16:66:6a:a9:32:9d:32:87: 4a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 13:2F:E1:1D:02:59:2F:99:85:A9:78:A7:27:BF:9B:77:27:62:CD:F8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/235225a6-05d3-444c-bf3f-11e3ef7b6a15/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/235225a6-05d3-444c-bf3f-11e3ef7b6a15/0/132FE11D02592F9985A978A727BF9B772762CDF8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.224.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:67:d1:5e:37:98:b6:db:27:44:04:4c:b3:72:95:d7:f0:65: b0:77:e6:60:aa:91:61:c1:4e:58:47:b4:5e:88:30:dd:c7:a1: 4d:bc:9f:92:55:85:e8:19:e5:8c:36:cc:64:42:03:4b:4a:e3: 0f:8d:71:cb:48:a2:82:36:d0:2f:3e:f1:02:7b:e1:51:6a:31: e9:cc:35:62:25:30:77:62:52:76:e1:23:b3:72:db:24:1e:03: 35:c7:c1:1b:b7:ae:af:df:5d:a5:26:18:c4:59:56:18:3d:de: 65:b1:be:51:f0:32:77:6f:9f:8b:26:92:9c:a7:e9:e8:92:26: b2:b2:cc:1d:0a:00:55:83:62:6d:86:70:79:ec:6c:e3:72:d8: a0:de:b5:bc:a2:74:d2:a3:b5:cc:b3:f4:2f:08:0f:3f:5a:27: 9c:c5:c8:7e:6c:21:4e:89:20:44:9e:49:d1:83:39:01:6e:29: f9:5c:70:79:6c:b6:9d:4e:cc:08:61:a0:74:13:66:37:aa:69: d1:c9:e3:11:6c:aa:cd:7f:e3:12:53:c9:65:a8:a0:78:27:39: be:18:7d:d7:8d:ec:f0:71:b8:ec:a4:31:0b:21:27:a3:66:bf: 9f:b6:ce:ab:f3:bf:f6:59:f5:e4:6f:7e:51:9b:fc:97:e7:ee: a3:42:e9:1e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYLoMZXdMzJ4Opij/PMrY5fLKzBowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwNjIyMjkzM1oX DTI1MTEwNTIyMzQzM1owMzExMC8GA1UEAxMoMTMyRkUxMUQwMjU5MkY5OTg1QTk3 OEE3MjdCRjlCNzcyNzYyQ0RGODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALK75FNbDcpM5M6E1e425cxVl7NVuUmguc+jnpZw52NUHwMzgSmo9GRIHmPe iwr+tFsYwDAGdJ9DPdxZ5tFRJmH/4/jKRCCj29EWiKUYXA8AGFsHp+Z/6Dlg0dpN SjqNNQUwVEsV19uNYr0NsD5P1v2Vn4bkBwcWJSi/oVsF/GvVdaXDjXnHK1AbWNTi FdPUrWgwDrrwNdIUbemFH9eOn+cmEb0Am7ggeoRAkZrpHqmtLq0iVXI5iUsVdkcs nmimNuSCRFf/qrLQFthDMPJPFetzGdNYbMc4T2WoToQss3n4Uw/cv4ZKed5eSazM Z3cBUnCneZaBMhZmaqkynTKHSqcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBMv4R0CWS+Zhal4pye/m3cnYs34MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yMzUyMjVhNi0wNWQzLTQ0NGMtYmYzZi0xMWUzZWY3YjZhMTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIzNTIyNWE2 LTA1ZDMtNDQ0Yy1iZjNmLTExZTNlZjdiNmExNS8wLzEzMkZFMTFEMDI1OTJGOTk4 NUE5NzhBNzI3QkY5Qjc3Mjc2MkNERjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsuAwDQYJKoZIhvcNAQELBQADggEBAExn0V43mLbbJ0QETLNyldfwZbB35mCq kWHBTlhHtF6IMN3HoU28n5JVhegZ5Yw2zGRCA0tK4w+NcctIooI20C8+8QJ74VFq MenMNWIlMHdiUnbhI7Ny2yQeAzXHwRu3rq/fXaUmGMRZVhg93mWxvlHwMndvn4sm kpyn6eiSJrKyzB0KAFWDYm2GcHnsbONy2KDetbyidNKjtcyz9C8IDz9aJ5zFyH5s IU6JIESeSdGDOQFuKflccHlstp1OzAhhoHQTZjeqadHJ4xFsqs1/4xJTyWWooHgn Ob4YfdeN7PBxuOykMQshJ6Nmv5+2zqvzv/ZZ9eRvflGb/Jfn7qNC6R4= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:45 2024 by rpki-client on console-fra.rpki-client.org