$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1E8E853BD0B0EC8B2C020B975B205A556C14E8E9.cer File: 1E8E853BD0B0EC8B2C020B975B205A556C14E8E9.cer (raw, json) Hash identifier: EEsm91ysndFpTTKRbQ0BuEbSBiF9mpIl32ulE0Nrrxs= Subject key identifier: 1E:8E:85:3B:D0:B0:EC:8B:2C:02:0B:97:5B:20:5A:55:6C:14:E8:E9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6F60D99CBD8CE03668BB8EB73FC710A6413AC209 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ea0bdcc5-4cd9-46b0-9d7b-d231a9e57b50/0/1E8E853BD0B0EC8B2C020B975B205A556C14E8E9.mft caRepository: rsync://repo-rpki.idnic.net/repo/ea0bdcc5-4cd9-46b0-9d7b-d231a9e57b50/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 31 Mar 2024 13:07:36 +0000 Certificate not after: Sun 30 Mar 2025 13:12:36 +0000 Subordinate resources: IP: 103.165.252.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:60:d9:9c:bd:8c:e0:36:68:bb:8e:b7:3f:c7:10:a6:41:3a:c2:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 31 13:07:36 2024 GMT Not After : Mar 30 13:12:36 2025 GMT Subject: CN=1E8E853BD0B0EC8B2C020B975B205A556C14E8E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:4f:4c:ef:50:17:23:08:f7:b5:84:28:de:73: 2d:dd:a8:95:d6:8d:06:60:47:0a:aa:89:2b:ee:a0: 28:06:c0:ce:7b:fc:51:f7:f3:6a:51:63:94:09:ed: b7:09:83:24:85:f6:e8:8e:61:d2:b1:c9:2a:9e:10: b8:62:67:2d:f6:13:fb:22:6c:03:79:bf:b5:cd:2e: bc:03:8c:64:29:a9:28:c9:65:d9:98:82:64:a2:57: 77:35:eb:61:81:3a:a0:6f:04:f6:85:58:81:03:3a: fe:de:9d:f7:ac:19:03:24:35:04:58:6e:0f:c2:13: d8:a8:3c:47:64:19:d0:7f:bc:50:ea:0a:25:c1:60: 5c:0b:f5:b1:8b:ca:eb:6d:20:e0:2d:84:ff:df:7e: 10:01:c5:0e:67:db:3c:ae:c4:2c:5d:24:cc:2d:86: 19:ff:24:c0:7e:44:9e:e3:44:05:a2:93:fb:8e:6a: 57:61:1c:43:e8:74:95:48:5f:1f:9f:03:b8:8a:12: db:20:05:6b:cb:54:49:dd:25:c7:1b:52:60:d2:dd: 28:f0:09:42:87:35:1d:39:3f:5b:37:a8:95:5c:a2: a1:4b:79:cf:85:8a:e3:c4:cb:2a:5b:cf:c0:8b:03: c7:ca:7e:1f:ef:70:cf:a3:a0:c2:52:20:c7:f9:16: f9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1E:8E:85:3B:D0:B0:EC:8B:2C:02:0B:97:5B:20:5A:55:6C:14:E8:E9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ea0bdcc5-4cd9-46b0-9d7b-d231a9e57b50/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ea0bdcc5-4cd9-46b0-9d7b-d231a9e57b50/0/1E8E853BD0B0EC8B2C020B975B205A556C14E8E9.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.165.252.0/24 Signature Algorithm: sha256WithRSAEncryption 09:80:0a:44:97:7d:9b:a0:5c:8e:dc:21:5c:f1:b8:8e:d8:30: f3:54:71:66:99:99:c2:66:9c:f6:3b:1f:de:c2:3b:06:86:11: 6a:60:ed:18:bf:d7:ee:93:e4:de:9c:12:ed:4d:1c:1a:4f:2b: ae:98:56:7a:15:d1:7b:0f:76:1c:14:2e:94:f7:c7:d5:12:c3: cd:18:72:c9:9a:d3:eb:7f:08:05:dd:b2:fb:1f:7e:22:f8:77: e1:16:05:1f:b9:a5:01:07:17:a1:2d:75:21:a7:07:19:ae:31: 43:af:e5:0b:bf:5d:82:8b:b7:5b:16:82:29:3a:85:91:de:fe: 38:25:b7:a7:13:1c:b1:2a:19:48:2a:ac:9a:7f:d1:67:35:87: 8a:de:60:d5:02:9e:91:bb:3e:fa:15:4d:ba:ea:75:94:77:cc: 83:a8:2e:d5:1f:31:1e:1e:3e:ba:2f:6f:d8:92:8e:38:fb:6c: 88:e3:7f:4c:90:36:be:ac:c2:0d:e9:39:2a:2d:88:bb:08:df: f2:7e:ce:9d:db:fe:35:e6:f3:0e:81:5c:3c:17:db:52:e5:71: 1f:f8:ab:83:ad:f0:9b:b5:7b:a8:50:41:3a:9a:63:7f:27:49: c7:b8:c3:1f:be:13:27:97:50:ea:fd:91:11:84:27:f4:70:13: 9c:bc:72:61 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUb2DZnL2M4DZou463P8cQpkE6wgkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMzMTEzMDczNloX DTI1MDMzMDEzMTIzNlowMzExMC8GA1UEAxMoMUU4RTg1M0JEMEIwRUM4QjJDMDIw Qjk3NUIyMDVBNTU2QzE0RThFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM9PTO9QFyMI97WEKN5zLd2oldaNBmBHCqqJK+6gKAbAznv8UffzalFjlAnt twmDJIX26I5h0rHJKp4QuGJnLfYT+yJsA3m/tc0uvAOMZCmpKMll2ZiCZKJXdzXr YYE6oG8E9oVYgQM6/t6d96wZAyQ1BFhuD8IT2Kg8R2QZ0H+8UOoKJcFgXAv1sYvK 620g4C2E/99+EAHFDmfbPK7ELF0kzC2GGf8kwH5EnuNEBaKT+45qV2EcQ+h0lUhf H58DuIoS2yAFa8tUSd0lxxtSYNLdKPAJQoc1HTk/WzeolVyioUt5z4WK48TLKlvP wIsDx8p+H+9wz6OgwlIgx/kW+asCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFB6OhTvQsOyLLAILl1sgWlVsFOjpMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lYTBiZGNjNS00Y2Q5LTQ2YjAtOWQ3Yi1kMjMxYTllNTdiNTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhMGJkY2M1 LTRjZDktNDZiMC05ZDdiLWQyMzFhOWU1N2I1MC8wLzFFOEU4NTNCRDBCMEVDOEIy QzAyMEI5NzVCMjA1QTU1NkMxNEU4RTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnpfwwDQYJKoZIhvcNAQELBQADggEBAAmACkSXfZugXI7cIVzxuI7YMPNUcWaZ mcJmnPY7H97COwaGEWpg7Ri/1+6T5N6cEu1NHBpPK66YVnoV0XsPdhwULpT3x9US w80Ycsma0+t/CAXdsvsffiL4d+EWBR+5pQEHF6EtdSGnBxmuMUOv5Qu/XYKLt1sW gik6hZHe/jglt6cTHLEqGUgqrJp/0Wc1h4reYNUCnpG7PvoVTbrqdZR3zIOoLtUf MR4eProvb9iSjjj7bIjjf0yQNr6swg3pOSotiLsI3/J+zp3b/jXm8w6BXDwX21Ll cR/4q4Ot8Ju1e6hQQTqaY38nSce4wx++EyeXUOr9kRGEJ/RwE5y8cmE= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:45 2024 by rpki-client on console-fra.rpki-client.org