$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer File: 1CA9E40710262DA751A67E932477D6E12B4B2DED.cer (raw, json) Hash identifier: JaFTTLaSd7HGTx4ofrL3j5cx5oALiel/kIpCPR5DefY= Subject key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 76E890903161E61C10A80EDA64EC9B2D910513E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft caRepository: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 15:30:05 +0000 Certificate not after: Mon 30 Jun 2025 15:35:05 +0000 Subordinate resources: IP: 103.123.104.0/22 IP: 2403:9fc0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:e8:90:90:31:61:e6:1c:10:a8:0e:da:64:ec:9b:2d:91:05:13:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 15:30:05 2024 GMT Not After : Jun 30 15:35:05 2025 GMT Subject: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5e:1d:24:30:bd:e4:06:6e:06:b3:c9:b5:38: 2e:00:21:82:c1:36:53:aa:2b:cb:8f:fd:7e:00:32: 00:41:30:52:ec:a2:d6:c6:1a:22:4d:16:da:71:73: bd:a7:76:b4:7e:a1:5b:bc:f8:4a:c5:45:ca:26:0f: 5c:c5:d9:f9:ff:3c:48:57:80:f2:ae:eb:02:5d:d0: 5b:75:6f:be:2a:16:bd:3a:b6:0a:8b:2b:3b:a8:f6: 4c:23:fc:21:11:0e:46:76:6a:ae:13:2c:71:08:bb: 95:68:f1:3f:24:8d:a9:20:e5:64:cf:84:1d:e2:6c: 3b:28:d3:bb:5d:36:74:09:fa:5e:1b:5f:46:54:d7: 0f:91:2a:7f:55:21:cc:43:a5:38:79:c0:6e:36:58: 3e:a8:66:bc:36:07:50:87:6b:6c:fb:5c:05:b4:01: 2e:d9:0d:99:cd:2b:32:b0:62:26:92:d7:a9:22:ad: 93:61:20:9e:72:38:fe:05:9f:ec:86:a2:8b:2f:85: c4:7e:b1:af:fb:2b:dc:6e:b1:25:6a:03:52:a9:46: c9:d7:7f:81:0b:24:47:d8:95:25:a3:07:69:20:de: cb:dc:cb:b4:db:50:6b:de:f4:07:ee:54:6a:74:2b: e4:ed:90:c5:8f:61:8b:4b:de:64:d1:ee:2f:b3:c8: 43:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.104.0/22 IPv6: 2403:9fc0::/32 Signature Algorithm: sha256WithRSAEncryption 17:fb:db:5d:29:3d:b9:d0:d4:15:ae:5a:78:3e:e8:55:1b:f5: b2:a8:c9:95:4d:97:d5:af:ed:88:83:ed:4b:f5:1d:b6:0c:12: 08:f3:37:23:f4:dd:68:95:55:46:e8:2f:43:e9:d8:c5:75:7d: 80:e2:2e:5b:bf:41:d6:2a:b0:5d:c8:7c:68:dd:0b:51:fc:84: 8f:bc:dd:bf:d6:f7:b0:10:80:ab:96:66:35:8f:42:58:89:9d: 0f:9b:55:e1:c2:e3:b5:21:10:c7:64:23:97:9b:dd:c5:c1:b7: 9e:99:c3:94:bb:8c:99:14:9a:f6:41:92:d0:2d:01:e0:0c:4a: ff:9c:d0:ba:b8:04:75:a0:cf:13:37:64:4c:d7:dc:ca:ed:7a: 2c:cf:82:35:94:ba:b6:d6:32:98:bc:5b:77:62:cb:e5:f2:f4: 33:7e:dd:7c:98:c3:05:85:79:81:eb:59:96:a1:2a:45:02:f0: 51:36:ef:48:01:92:4a:22:7b:b4:25:44:5e:51:60:12:7d:aa: 75:92:4f:d7:eb:35:33:d4:5a:68:78:b0:e1:7e:ee:6a:51:d5: 31:1d:ae:62:69:1a:fc:91:ba:b6:0c:3d:1a:1c:f0:25:74:a1: 45:00:e2:90:0a:50:36:93:ff:50:f6:61:68:f9:00:95:8d:43: 57:2a:00:e9 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUduiQkDFh5hwQqA7aZOybLZEFE+QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE1MzAwNVoX DTI1MDYzMDE1MzUwNVowMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3 RTkzMjQ3N0Q2RTEyQjRCMkRFRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKReHSQwveQGbgazybU4LgAhgsE2U6ory4/9fgAyAEEwUuyi1sYaIk0W2nFz vad2tH6hW7z4SsVFyiYPXMXZ+f88SFeA8q7rAl3QW3VvvioWvTq2CosrO6j2TCP8 IREORnZqrhMscQi7lWjxPySNqSDlZM+EHeJsOyjTu102dAn6XhtfRlTXD5Eqf1Uh zEOlOHnAbjZYPqhmvDYHUIdrbPtcBbQBLtkNmc0rMrBiJpLXqSKtk2EgnnI4/gWf 7Iaiiy+FxH6xr/sr3G6xJWoDUqlGydd/gQskR9iVJaMHaSDey9zLtNtQa970B+5U anQr5O2QxY9hi0veZNHuL7PIQ88CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFByp5AcQJi2nUaZ+kyR31uErSy3tMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kYWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVm LTU3MTMtNDE1My04NzFiLTFiMDA4ZjdmZmRkMi8wLzFDQTlFNDA3MTAyNjJEQTc1 MUE2N0U5MzI0NzdENkUxMkI0QjJERUQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJne2gwDQQCAAIwBwMFACQDn8AwDQYJKoZIhvcNAQELBQADggEBABf7210pPbnQ 1BWuWng+6FUb9bKoyZVNl9Wv7YiD7Uv1HbYMEgjzNyP03WiVVUboL0Pp2MV1fYDi Llu/QdYqsF3IfGjdC1H8hI+83b/W97AQgKuWZjWPQliJnQ+bVeHC47UhEMdkI5eb 3cXBt56Zw5S7jJkUmvZBktAtAeAMSv+c0Lq4BHWgzxM3ZEzX3MrteizPgjWUurbW Mpi8W3diy+Xy9DN+3XyYwwWFeYHrWZahKkUC8FE270gBkkoie7QlRF5RYBJ9qnWS T9frNTPUWmh4sOF+7mpR1TEdrmJpGvyRurYMPRoc8CV0oUUA4pAKUDaT/1D2YWj5 AJWNQ1cqAOk= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:14 2024 by rpki-client on console-fra.rpki-client.org