$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer File: 1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer (raw, json) Hash identifier: MAOUeZ+JbeEYKlRIL0nzmSX5PMowp6Yu9LYxeL2rlk0= Subject key identifier: 1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6E5AD1EB5F412A61E2B0091F36E5200E47EF8692 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.mft caRepository: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 03 Jun 2024 13:13:44 +0000 Certificate not after: Mon 02 Jun 2025 13:18:44 +0000 Subordinate resources: IP: 103.14.74.0/23 IP: 2001:df7:5400::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:5a:d1:eb:5f:41:2a:61:e2:b0:09:1f:36:e5:20:0e:47:ef:86:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 3 13:13:44 2024 GMT Not After : Jun 2 13:18:44 2025 GMT Subject: CN=1EEA71B4C70A47D53BE3204FE2C48CEF927EC731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:a7:13:2a:5e:58:0f:1f:e4:ab:97:ee:88: 29:3f:25:e3:05:a8:7b:12:a3:32:ab:e5:2f:1c:77: 96:59:b3:42:51:08:7f:30:ae:f1:45:2b:9c:5f:54: 04:24:0c:47:ba:53:39:27:3f:67:74:6e:da:70:a0: cf:a2:3b:13:7c:72:85:be:be:cc:44:5e:63:c4:27: 9e:49:b3:c1:0a:b0:dd:56:95:d4:84:41:ac:9e:3e: 8f:68:56:3d:07:d8:85:69:4f:dc:dd:4b:3b:bc:6f: cb:c4:49:35:12:77:aa:64:ae:81:2a:a3:8c:ca:d3: 07:49:55:49:7f:9a:c4:da:57:b1:63:0f:ab:15:aa: a3:4b:7a:bd:2a:35:97:96:b0:a6:ae:50:28:91:f7: 1e:be:e9:58:b9:0d:dc:f6:97:c4:53:84:fa:9e:e3: 56:ed:1c:04:4a:fd:d9:b6:37:d8:20:c8:70:30:01: 96:cf:36:f5:af:b0:ef:b9:79:a1:35:87:57:7b:e3: 98:b4:5a:47:70:82:bd:a3:98:a4:c4:45:4d:6f:06: f3:e5:63:21:e9:77:ca:4e:62:10:2f:ee:37:a5:7c: 68:e7:7a:f0:3a:e5:14:a0:76:e3:8c:a3:d4:2c:aa: da:79:0c:49:9d:72:d8:bf:e1:04:a0:1a:47:80:8f: df:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.74.0/23 IPv6: 2001:df7:5400::/48 Signature Algorithm: sha256WithRSAEncryption 13:79:ba:e0:38:77:08:cb:35:70:e5:52:2b:b3:d7:1a:10:fe: 5c:df:01:4b:f6:52:9b:4c:3d:ad:51:ce:55:5c:6e:75:7a:fb: 79:1a:d9:d0:66:1c:82:26:0b:6d:f7:67:f9:3e:42:09:75:65: 7f:33:80:91:97:e7:72:e7:f0:33:ac:87:4f:c6:a8:9c:6f:89: 9c:7f:d6:9d:7b:bf:ad:31:79:6f:cf:e7:03:6b:d3:23:fb:b1: ec:97:cb:57:a4:6f:8d:bf:6d:51:54:98:31:bb:92:77:57:9b: b0:ef:e6:0f:07:2a:2c:dc:31:51:90:49:9b:94:5b:b0:4d:cd: 25:66:c0:a2:ae:ba:c9:d1:76:60:38:fc:44:41:5f:89:7e:33: f8:6d:a1:02:f4:54:31:3e:ff:39:dc:5c:a3:65:05:c4:bf:b9: d3:85:b3:b1:00:cc:94:52:14:da:cf:45:34:16:83:c0:4d:52: a2:bd:9c:28:22:9d:dc:4b:a8:d3:24:c9:f0:29:b6:80:89:9f: c3:41:45:cf:df:ab:3f:bb:91:a9:36:13:98:e5:f9:23:49:04: 81:da:f3:f3:a6:7a:98:69:23:40:c6:29:65:55:ba:6b:ac:3e: 3f:51:e4:c2:74:d5:74:2c:8a:3c:07:42:bc:34:c4:3e:ae:e2: fa:83:4e:c3 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUblrR619BKmHisAkfNuUgDkfvhpIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYwMzEzMTM0NFoX DTI1MDYwMjEzMTg0NFowMzExMC8GA1UEAxMoMUVFQTcxQjRDNzBBNDdENTNCRTMy MDRGRTJDNDhDRUY5MjdFQzczMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBSpxMqXlgPH+Srl+6IKT8l4wWoexKjMqvlLxx3llmzQlEIfzCu8UUrnF9U BCQMR7pTOSc/Z3Ru2nCgz6I7E3xyhb6+zEReY8QnnkmzwQqw3VaV1IRBrJ4+j2hW PQfYhWlP3N1LO7xvy8RJNRJ3qmSugSqjjMrTB0lVSX+axNpXsWMPqxWqo0t6vSo1 l5awpq5QKJH3Hr7pWLkN3PaXxFOE+p7jVu0cBEr92bY32CDIcDABls829a+w77l5 oTWHV3vjmLRaR3CCvaOYpMRFTW8G8+VjIel3yk5iEC/uN6V8aOd68DrlFKB244yj 1Cyq2nkMSZ1y2L/hBKAaR4CP3y8CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFB7qcbTHCkfVO+MgT+LEjO+SfscxMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xMDAwZTIzZS1mNDRhLTRjZmMtYmY1Ni1kOTlhMDkyZDczMTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwMDBlMjNl LWY0NGEtNGNmYy1iZjU2LWQ5OWEwOTJkNzMxNC8wLzFFRUE3MUI0QzcwQTQ3RDUz QkUzMjA0RkUyQzQ4Q0VGOTI3RUM3MzEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnDkowDwQCAAIwCQMHACABDfdUADANBgkqhkiG9w0BAQsFAAOCAQEAE3m64Dh3 CMs1cOVSK7PXGhD+XN8BS/ZSm0w9rVHOVVxudXr7eRrZ0GYcgiYLbfdn+T5CCXVl fzOAkZfncufwM6yHT8aonG+JnH/WnXu/rTF5b8/nA2vTI/ux7JfLV6Rvjb9tUVSY MbuSd1ebsO/mDwcqLNwxUZBJm5RbsE3NJWbAoq66ydF2YDj8REFfiX4z+G2hAvRU MT7/Odxco2UFxL+504WzsQDMlFIU2s9FNBaDwE1Sor2cKCKd3Euo0yTJ8Cm2gImf w0FFz9+rP7uRqTYTmOX5I0kEgdrz86Z6mGkjQMYpZVW6a6w+P1HkwnTVdCyKPAdC vDTEPq7i+oNOww== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:45 2024 by rpki-client on console-fra.rpki-client.org