$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer File: 1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.cer (raw, json) Hash identifier: o4hLmxIoLXE8u3Q0STqf9t8iC34jBfI7SAM3g9t7Xio= Subject key identifier: 1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1E4E67AAD404D6487344F66E6E52233AAE7656F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.mft caRepository: rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 04 Apr 2024 15:29:20 +0000 Certificate not after: Thu 03 Apr 2025 15:34:20 +0000 Subordinate resources: IP: 103.216.106.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:4e:67:aa:d4:04:d6:48:73:44:f6:6e:6e:52:23:3a:ae:76:56:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 4 15:29:20 2024 GMT Not After : Apr 3 15:34:20 2025 GMT Subject: CN=1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:71:6b:22:12:b2:8d:b2:e3:a4:0c:93:5b:bf: 0c:78:10:b4:db:22:46:5d:27:6e:43:2b:bd:ed:0a: ea:c1:75:6d:3b:ab:87:43:92:a3:14:83:78:4c:65: 6c:72:00:eb:fa:04:37:c9:8e:36:45:4d:d0:0b:4c: f4:f7:21:01:bd:a5:38:69:e8:9a:e2:28:a5:81:5e: 04:fa:15:17:c4:2c:bf:2f:26:48:93:d0:03:40:5b: ba:f0:ca:98:c6:cd:24:7f:65:b2:b7:58:6f:d3:47: db:26:9a:aa:ea:e7:83:bb:54:80:4a:d7:f3:bf:d1: 84:52:c7:5c:a3:6b:64:53:be:12:59:96:21:6e:ad: b6:11:f7:c6:e0:0d:be:b5:56:c8:14:fb:fc:41:26: 50:79:a9:57:d7:92:1f:c9:ea:2b:79:84:77:55:df: a7:a1:8a:4d:9a:90:1b:c2:e4:6c:e7:b9:78:66:e3: 06:f9:9e:43:c6:ae:53:ca:58:2b:4a:1f:4e:27:71: 7d:75:62:f0:ca:8f:37:d1:01:64:24:9c:4e:6d:e5: 69:b5:3a:0a:f2:0f:78:dd:32:e6:f3:48:96:1d:bf: b0:37:e5:c7:f0:05:02:92:39:19:0b:f4:a9:1b:fd: 7f:0a:18:45:b4:9e:8e:1f:5a:f2:0d:fd:e7:c2:20: a0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1C:EE:2E:2E:FC:E3:07:A6:8E:4B:F3:59:C6:EA:FF:9E:91:93:03:A5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dfef3890-445d-4b23-8fb3-b3018a799ece/0/1CEE2E2EFCE307A68E4BF359C6EAFF9E919303A5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.106.0/23 Signature Algorithm: sha256WithRSAEncryption 44:2a:e3:b3:b0:86:2f:e5:a1:51:b3:a8:c3:d1:0c:dc:00:1f: 12:ac:d7:2c:81:d7:50:d8:ad:c3:81:da:45:6d:49:aa:a0:ec: 02:e8:23:d7:b8:c5:b7:f3:16:d2:3a:d7:f4:89:cb:44:9e:aa: bb:20:16:36:0a:50:63:0b:50:1f:88:fe:64:a7:ed:61:bc:85: 9b:25:31:7f:17:fc:e4:f3:66:8d:be:5d:77:1a:bc:b0:10:97: d8:9e:3a:96:f2:30:5c:6d:f1:e9:e6:6c:fd:73:8b:00:a6:c9: b4:22:f6:36:c9:25:02:43:5f:19:cc:40:9c:ed:56:f8:3f:f6: b6:ee:a3:ce:e2:63:6f:74:2f:c6:05:9b:0c:eb:af:37:43:a4: 42:3e:4c:7f:38:7c:0b:a3:c1:4c:c5:67:8d:8a:dd:8e:ea:4a: 3c:7a:24:9f:e4:79:d8:fe:c5:a0:b5:30:2f:21:5f:45:3a:a1: 6d:e1:cf:03:7e:89:13:36:89:c5:e1:d8:1a:2a:e1:a6:c5:d3: b9:fe:66:96:b1:28:ac:33:ed:76:6c:61:2f:72:5f:aa:a3:89: 31:81:d6:4a:6f:ba:cb:a5:d5:ee:90:ed:f9:ce:ca:ad:44:d2: 15:da:cd:65:b0:25:9e:26:62:cb:ec:05:bf:64:71:8a:c3:03: d1:c8:a5:a4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHk5nqtQE1khzRPZublIjOq52VvUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQwNDE1MjkyMFoX DTI1MDQwMzE1MzQyMFowMzExMC8GA1UEAxMoMUNFRTJFMkVGQ0UzMDdBNjhFNEJG MzU5QzZFQUZGOUU5MTkzMDNBNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANlxayISso2y46QMk1u/DHgQtNsiRl0nbkMrve0K6sF1bTurh0OSoxSDeExl bHIA6/oEN8mONkVN0AtM9PchAb2lOGnomuIopYFeBPoVF8Qsvy8mSJPQA0BbuvDK mMbNJH9lsrdYb9NH2yaaqurng7tUgErX87/RhFLHXKNrZFO+ElmWIW6tthH3xuAN vrVWyBT7/EEmUHmpV9eSH8nqK3mEd1Xfp6GKTZqQG8LkbOe5eGbjBvmeQ8auU8pY K0ofTidxfXVi8MqPN9EBZCScTm3labU6CvIPeN0y5vNIlh2/sDflx/AFApI5GQv0 qRv9fwoYRbSejh9a8g3958IgoKMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBzuLi784wemjkvzWcbq/56RkwOlMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZmVmMzg5MC00NDVkLTRiMjMtOGZiMy1iMzAxOGE3OTllY2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmZWYzODkw LTQ0NWQtNGIyMy04ZmIzLWIzMDE4YTc5OWVjZS8wLzFDRUUyRTJFRkNFMzA3QTY4 RTRCRjM1OUM2RUFGRjlFOTE5MzAzQTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFn2GowDQYJKoZIhvcNAQELBQADggEBAEQq47Owhi/loVGzqMPRDNwAHxKs1yyB 11DYrcOB2kVtSaqg7ALoI9e4xbfzFtI61/SJy0SeqrsgFjYKUGMLUB+I/mSn7WG8 hZslMX8X/OTzZo2+XXcavLAQl9ieOpbyMFxt8enmbP1ziwCmybQi9jbJJQJDXxnM QJztVvg/9rbuo87iY290L8YFmwzrrzdDpEI+TH84fAujwUzFZ42K3Y7qSjx6JJ/k edj+xaC1MC8hX0U6oW3hzwN+iRM2icXh2Boq4abF07n+ZpaxKKwz7XZsYS9yX6qj iTGB1kpvusul1e6Q7fnOyq1E0hXazWWwJZ4mYsvsBb9kcYrDA9HIpaQ= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:14 2024 by rpki-client on console-fra.rpki-client.org