$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer File: 18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer (raw, json) Hash identifier: vPJG/xk0+dX2qNmUnR4nT4Jw5yuGzUTCxxeJtGGF6OY= Subject key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 61997B6973D143196B46F5CDDCA15D2B891BFAF5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft caRepository: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 15:44:36 +0000 Certificate not after: Mon 30 Jun 2025 15:49:36 +0000 Subordinate resources: IP: 103.102.148.0/22 IP: 2001:df2:dd00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:99:7b:69:73:d1:43:19:6b:46:f5:cd:dc:a1:5d:2b:89:1b:fa:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 15:44:36 2024 GMT Not After : Jun 30 15:49:36 2025 GMT Subject: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:48:36:c8:ba:cc:be:11:e7:df:3d:6b:39:f2: 0d:dc:7e:8e:f1:62:1d:97:7a:7b:8a:fc:43:57:2b: b7:8c:06:bb:07:55:6f:22:51:dd:1c:e6:8e:dc:3a: 97:af:5c:f2:14:ea:22:4b:95:20:42:d8:7c:ed:3d: 02:fb:fc:2e:b7:b2:5f:2a:52:d9:cb:bd:7f:4d:bd: 8b:78:03:f4:2d:09:e9:bc:a4:a6:d9:ee:03:c8:5d: 8a:f8:20:4b:3f:df:d7:4e:f7:68:8b:55:ab:2d:ae: df:80:92:27:27:5a:c2:3a:05:6b:40:f9:e7:d5:4a: 50:1c:46:6e:73:1e:26:19:b4:fc:32:f3:92:ba:3c: 63:94:17:03:6a:7f:75:4b:c3:63:6d:c0:f4:e2:d7: e3:67:bf:fe:51:4e:1a:57:a6:e9:49:b8:7f:78:f8: 54:a8:1a:07:13:f1:e4:d1:12:1d:f1:4a:73:9b:c2: 51:ee:40:17:93:df:48:22:f9:ea:c0:fb:17:a4:36: 97:03:58:f5:95:11:6b:b2:f6:07:36:53:17:aa:29: 9f:6b:8d:d6:ce:a9:be:2c:11:92:b4:bd:26:ac:7f: 2d:94:2c:5d:f1:08:17:11:a2:b4:f6:65:73:05:f6: aa:ef:b7:e1:cf:26:d7:ee:b4:5b:7d:11:dd:93:7b: 59:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.148.0/22 IPv6: 2001:df2:dd00::/48 Signature Algorithm: sha256WithRSAEncryption 09:b9:00:39:ec:31:27:ea:fe:55:35:da:e5:34:66:2b:c2:06: 2b:28:65:e2:8a:14:2b:ef:f0:6b:7e:b3:21:11:38:ee:ee:6d: 3b:29:fb:56:57:0e:55:fd:b2:da:70:66:5b:37:28:fb:6a:c7: c6:a9:9b:29:35:11:ce:c0:ef:72:4a:2e:8b:04:b8:cc:56:86: 5a:7a:88:c5:32:9d:61:fb:58:a9:07:f1:37:7b:54:22:fd:b4: a4:74:e3:81:78:04:63:49:f1:33:0f:4c:36:dd:81:8a:96:dd: e5:3b:5f:5c:43:65:cf:e7:91:6c:0f:e6:49:52:9d:a7:5d:67: 55:30:6e:fe:40:bf:a1:4d:62:1d:bf:90:2c:9d:87:2a:ba:2d: 6d:e8:84:28:17:26:6c:a5:ae:82:97:af:ac:67:b3:c8:60:46: 47:99:44:c1:b6:d5:40:09:08:24:1d:ac:ee:82:41:91:89:e7: c6:d2:26:dd:38:50:02:e9:e4:6d:74:42:9f:a1:74:5d:0a:b4: e0:3f:f9:5e:0c:3c:c4:1b:6c:e6:b3:5b:8b:5b:6f:30:52:19: c2:32:59:72:e1:7a:4e:d4:c2:4b:a8:2f:90:03:0a:96:03:64: 64:3a:c2:55:e7:fb:10:dd:ac:1b:8b:33:5b:3c:c9:8a:fd:08: ad:4f:c0:15 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUYZl7aXPRQxlrRvXN3KFdK4kb+vUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE1NDQzNloX DTI1MDYzMDE1NDkzNlowMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1 MDY5ODI1NkUwRURFRjlBNTE2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZINsi6zL4R5989aznyDdx+jvFiHZd6e4r8Q1crt4wGuwdVbyJR3Rzmjtw6 l69c8hTqIkuVIELYfO09Avv8LreyXypS2cu9f029i3gD9C0J6bykptnuA8hdivgg Sz/f1073aItVqy2u34CSJydawjoFa0D559VKUBxGbnMeJhm0/DLzkro8Y5QXA2p/ dUvDY23A9OLX42e//lFOGlem6Um4f3j4VKgaBxPx5NESHfFKc5vCUe5AF5PfSCL5 6sD7F6Q2lwNY9ZURa7L2BzZTF6opn2uN1s6pviwRkrS9Jqx/LZQsXfEIFxGitPZl cwX2qu+34c8m1+60W30R3ZN7WbECAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBjp3FusquaNHJ9QaYJW4O3vmlFpMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iYTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNi LTVhNTktNDBmMy04NmEwLWNkZTViOTRjZWY4Ni8wLzE4RTlEQzVCQUNBQUU2OEQx QzlGNTA2OTgyNTZFMEVERUY5QTUxNjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnZpQwDwQCAAIwCQMHACABDfLdADANBgkqhkiG9w0BAQsFAAOCAQEACbkAOewx J+r+VTXa5TRmK8IGKyhl4ooUK+/wa36zIRE47u5tOyn7VlcOVf2y2nBmWzco+2rH xqmbKTURzsDvckouiwS4zFaGWnqIxTKdYftYqQfxN3tUIv20pHTjgXgEY0nxMw9M Nt2Bipbd5TtfXENlz+eRbA/mSVKdp11nVTBu/kC/oU1iHb+QLJ2HKrotbeiEKBcm bKWugpevrGezyGBGR5lEwbbVQAkIJB2s7oJBkYnnxtIm3ThQAunkbXRCn6F0XQq0 4D/5Xgw8xBts5rNbi1tvMFIZwjJZcuF6TtTCS6gvkAMKlgNkZDrCVef7EN2sG4sz WzzJiv0IrU/AFQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:39 2024 by rpki-client on console-ams.rpki-client.org