$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1678F34665D7A5281AECD895B892F07EA136CF72.cer File: 1678F34665D7A5281AECD895B892F07EA136CF72.cer (raw, json) Hash identifier: E54GHOyS4u9Z8K6ezEvvrAXUXtuwI41htJx/qagqefo= Subject key identifier: 16:78:F3:46:65:D7:A5:28:1A:EC:D8:95:B8:92:F0:7E:A1:36:CF:72 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3C72CFED7E94BE158D326FEF69DD3CD170F7DF9B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.mft caRepository: rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Jul 2024 04:22:52 +0000 Certificate not after: Tue 01 Jul 2025 04:27:52 +0000 Subordinate resources: IP: 202.129.224.0/22 IP: 2001:df3:e600::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:72:cf:ed:7e:94:be:15:8d:32:6f:ef:69:dd:3c:d1:70:f7:df:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 04:22:52 2024 GMT Not After : Jul 1 04:27:52 2025 GMT Subject: CN=1678F34665D7A5281AECD895B892F07EA136CF72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c9:e3:e4:f2:01:6b:51:ac:3f:a6:9d:89:0b: 39:0b:14:f0:be:3d:aa:a6:4e:0b:29:f8:a6:33:c7: b3:5a:dc:c3:5b:82:c3:6e:45:99:f5:8d:fa:0b:05: 8d:da:47:c3:7f:97:ee:d8:08:75:ab:66:ee:47:46: 4a:50:bd:9a:08:65:79:60:69:c9:12:29:83:4c:44: a5:e6:95:ea:6c:6b:4d:81:84:92:f7:69:72:20:af: 72:d4:5e:8d:3f:b0:a8:6d:78:24:b7:63:00:1a:6b: 4d:a0:5b:fd:db:20:70:c6:ec:f3:18:d8:be:42:87: 20:c4:c8:ce:4a:a3:58:4a:89:96:65:f8:f7:37:e5: 0a:ff:ea:18:16:f8:7e:9a:a1:25:31:b7:6d:61:5b: 6e:4b:38:d7:be:f3:94:c4:f8:48:0b:e5:73:04:5c: d8:36:90:7d:7a:a4:30:45:84:15:2c:64:39:7f:30: af:dd:5a:43:1f:66:2b:0e:90:45:aa:05:6f:3e:f4: 55:4f:5a:5a:79:7e:fd:37:33:75:9b:bf:34:90:e0: fd:fa:80:b6:55:7b:6a:36:34:60:7b:08:21:35:b5: fa:60:6e:17:32:3d:fa:cb:36:a8:6b:ad:48:a1:de: c2:ca:59:6d:0f:0c:3f:08:13:c3:29:f9:1e:6c:69: 2d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 16:78:F3:46:65:D7:A5:28:1A:EC:D8:95:B8:92:F0:7E:A1:36:CF:72 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.129.224.0/22 IPv6: 2001:df3:e600::/48 Signature Algorithm: sha256WithRSAEncryption 19:5d:19:f0:3c:19:ac:33:90:a9:7e:3f:93:1c:1a:2b:be:b2: 2f:a3:f9:a7:17:64:89:b4:6f:ea:37:d6:93:29:77:25:3e:69: 32:80:bc:68:3c:c9:78:d6:e2:39:24:8f:29:15:35:00:37:7d: 39:1e:51:97:72:40:08:a7:11:ad:18:e0:ed:3b:90:a0:27:df: bc:4b:cc:af:3d:fe:a2:3c:e5:7e:5d:c0:57:2a:f9:4b:c6:ef: 8a:1e:bc:89:f4:d0:3a:6e:53:34:e4:c1:22:4e:53:eb:a2:dd: 8a:e3:19:b1:da:c9:a7:60:4d:e4:d9:c6:a2:bb:3c:00:75:70: 7d:bd:ba:9b:9a:5b:ff:ef:39:04:fb:7f:a3:0e:bc:29:06:64: 30:c7:ec:54:c8:20:b8:a0:ee:06:96:6b:a0:f0:98:96:dd:5b: 6e:c0:d2:4e:c3:30:d3:ef:68:df:ff:6e:a6:38:fb:6b:1f:01: 2b:96:3f:3f:36:64:89:aa:5e:74:c7:51:fd:b3:e3:0f:61:2f: 28:00:d2:94:5b:50:d4:db:81:07:e2:a3:8d:6b:29:56:17:af: ca:08:03:73:d2:36:68:60:98:71:dd:00:a3:dd:b7:a6:21:70: 64:92:77:8e:0b:97:a4:17:20:c1:17:fc:1e:bc:69:d9:d7:49: a2:c3:4b:8a -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUPHLP7X6UvhWNMm/vad080XD335swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjA0MjI1MloX DTI1MDcwMTA0Mjc1MlowMzExMC8GA1UEAxMoMTY3OEYzNDY2NUQ3QTUyODFBRUNE ODk1Qjg5MkYwN0VBMTM2Q0Y3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPJ4+TyAWtRrD+mnYkLOQsU8L49qqZOCyn4pjPHs1rcw1uCw25FmfWN+gsF jdpHw3+X7tgIdatm7kdGSlC9mghleWBpyRIpg0xEpeaV6mxrTYGEkvdpciCvctRe jT+wqG14JLdjABprTaBb/dsgcMbs8xjYvkKHIMTIzkqjWEqJlmX49zflCv/qGBb4 fpqhJTG3bWFbbks4177zlMT4SAvlcwRc2DaQfXqkMEWEFSxkOX8wr91aQx9mKw6Q RaoFbz70VU9aWnl+/TczdZu/NJDg/fqAtlV7ajY0YHsIITW1+mBuFzI9+ss2qGut SKHewspZbQ8MPwgTwyn5HmxpLckCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBZ480Zl16UoGuzYlbiS8H6hNs9yMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NzkzNjg2Yi0zMzg0LTQ0MTItOGU3Yy1lOWQxYjg1MmFhMWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OTM2ODZi LTMzODQtNDQxMi04ZTdjLWU5ZDFiODUyYWExZS8wLzE2NzhGMzQ2NjVEN0E1Mjgx QUVDRDg5NUI4OTJGMDdFQTEzNkNGNzIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BALKgeAwDwQCAAIwCQMHACABDfPmADANBgkqhkiG9w0BAQsFAAOCAQEAGV0Z8DwZ rDOQqX4/kxwaK76yL6P5pxdkibRv6jfWkyl3JT5pMoC8aDzJeNbiOSSPKRU1ADd9 OR5Rl3JACKcRrRjg7TuQoCffvEvMrz3+ojzlfl3AVyr5S8bvih68ifTQOm5TNOTB Ik5T66LdiuMZsdrJp2BN5NnGors8AHVwfb26m5pb/+85BPt/ow68KQZkMMfsVMgg uKDuBpZroPCYlt1bbsDSTsMw0+9o3/9upjj7ax8BK5Y/PzZkiapedMdR/bPjD2Ev KADSlFtQ1NuBB+KjjWspVhevyggDc9I2aGCYcd0Ao923piFwZJJ3jguXpBcgwRf8 Hrxp2ddJosNLig== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:39 2024 by rpki-client on console-ams.rpki-client.org