$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer File: 215FC7E5E22B8C46910D4D7CA214C923A096B2FE.cer (raw, json) Hash identifier: AqxpzXfBdpmHzS0NYswqlkYZqn40KAt0SSr2YxvRyTE= Subject key identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 533182F91C72D680AFF239413B0A672DE630E4A7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft caRepository: rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 26 Sep 2024 19:14:40 +0000 Certificate not after: Thu 25 Sep 2025 19:19:40 +0000 Subordinate resources: IP: 103.161.184.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:31:82:f9:1c:72:d6:80:af:f2:39:41:3b:0a:67:2d:e6:30:e4:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 26 19:14:40 2024 GMT Not After : Sep 25 19:19:40 2025 GMT Subject: CN=215FC7E5E22B8C46910D4D7CA214C923A096B2FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:a3:ac:a4:79:97:38:58:44:55:9b:30:6d:e8: 2b:03:b5:22:57:59:62:63:34:be:f4:85:60:51:9f: 58:7e:88:91:da:4d:bb:32:27:42:3b:0d:0b:81:a3: 9a:eb:e4:77:37:9a:48:94:01:72:f9:0c:23:e5:40: 53:df:c3:20:8c:8b:7c:44:c6:fa:75:7e:40:ac:0b: fe:5b:5a:de:22:c7:a2:5a:17:7e:34:2a:16:12:44: 6d:82:ee:e6:e6:68:db:97:7d:5e:5f:0a:53:c5:37: 9f:17:ab:1b:0e:c5:d7:a9:8d:e1:59:ba:52:4b:e7: 54:7d:91:aa:a4:6e:04:29:64:ed:97:c1:80:cb:b9: 21:b0:af:00:bd:3a:f1:cb:e4:6a:5d:49:0e:3b:ae: 16:64:1e:09:f1:aa:5f:46:cd:04:1e:e3:51:7b:41: cf:f8:d5:5f:1b:ba:fa:bb:25:77:61:8d:3d:73:03: ff:b1:d9:a1:1a:9a:e9:be:fd:87:48:a9:66:f0:6f: a4:80:12:54:a1:5b:2d:33:a0:d6:a9:5c:28:fe:85: 4c:ce:98:fc:a0:40:ca:a0:c3:38:af:19:b8:fe:30: c7:d4:b0:72:dc:e1:3b:2d:13:ab:7c:a6:b7:49:14: d3:e6:4d:7e:cd:8e:31:f6:a9:41:1b:59:e0:58:d4: 76:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 21:5F:C7:E5:E2:2B:8C:46:91:0D:4D:7C:A2:14:C9:23:A0:96:B2:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f3eac9c0-de1b-46dd-bf37-18fe3a8d5fbf/0/215FC7E5E22B8C46910D4D7CA214C923A096B2FE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.184.0/23 Signature Algorithm: sha256WithRSAEncryption 2f:86:3e:d8:e8:7e:e8:92:14:c5:a2:f6:26:d3:47:b0:f4:28: 8d:ed:30:c4:27:10:05:2b:42:98:a9:6b:83:7d:0b:93:44:1e: 1d:13:9b:54:4a:3f:c4:09:ec:17:3e:81:96:00:54:50:c7:79: ea:25:cf:51:e1:f9:f0:cd:65:5d:bc:4e:08:0b:ae:bc:a0:96: 35:c6:3f:c3:ae:d1:32:7e:7c:f3:30:70:33:25:7c:d8:98:91: 11:0e:06:4b:45:79:e5:c8:8a:ed:10:85:1b:41:74:27:a5:cc: 96:cb:de:a1:52:1d:c8:b7:3d:ff:02:26:da:0f:60:5b:79:54: 8e:51:5a:c7:8a:53:fd:b1:f6:81:39:6f:2c:fc:13:67:17:19: c2:a6:e1:4a:91:27:0c:1d:fc:89:d9:36:3c:31:c1:7a:84:78: 68:f3:60:de:1f:7b:69:18:af:b7:a1:64:bc:e2:b3:28:11:6b: c1:e5:0b:3e:21:00:d8:2c:b1:b7:55:c8:d7:96:77:c5:4c:fe: c5:9d:a3:f4:f6:21:3e:dc:44:a0:12:00:e8:fe:40:70:9e:0c: 80:70:e8:2d:36:49:69:f2:c8:1f:e7:3b:26:5c:ae:30:29:70: 8a:ec:47:93:5d:92:44:2e:8f:a0:91:0b:e2:3c:87:e0:ad:d2: 49:aa:e9:72 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUzGC+Rxy1oCv8jlBOwpnLeYw5KcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyNjE5MTQ0MFoX DTI1MDkyNTE5MTk0MFowMzExMC8GA1UEAxMoMjE1RkM3RTVFMjJCOEM0NjkxMEQ0 RDdDQTIxNEM5MjNBMDk2QjJGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWjrKR5lzhYRFWbMG3oKwO1IldZYmM0vvSFYFGfWH6IkdpNuzInQjsNC4Gj muvkdzeaSJQBcvkMI+VAU9/DIIyLfETG+nV+QKwL/lta3iLHoloXfjQqFhJEbYLu 5uZo25d9Xl8KU8U3nxerGw7F16mN4Vm6UkvnVH2RqqRuBClk7ZfBgMu5IbCvAL06 8cvkal1JDjuuFmQeCfGqX0bNBB7jUXtBz/jVXxu6+rsld2GNPXMD/7HZoRqa6b79 h0ipZvBvpIASVKFbLTOg1qlcKP6FTM6Y/KBAyqDDOK8ZuP4wx9SwctzhOy0Tq3ym t0kU0+ZNfs2OMfapQRtZ4FjUdjUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCFfx+XiK4xGkQ1NfKIUySOglrL+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mM2VhYzljMC1kZTFiLTQ2ZGQtYmYzNy0xOGZlM2E4ZDVmYmYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YzZWFjOWMw LWRlMWItNDZkZC1iZjM3LTE4ZmUzYThkNWZiZi8wLzIxNUZDN0U1RTIyQjhDNDY5 MTBENEQ3Q0EyMTRDOTIzQTA5NkIyRkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnobgwDQYJKoZIhvcNAQELBQADggEBAC+GPtjofuiSFMWi9ibTR7D0KI3tMMQn EAUrQpipa4N9C5NEHh0Tm1RKP8QJ7Bc+gZYAVFDHeeolz1Hh+fDNZV28TggLrryg ljXGP8Ou0TJ+fPMwcDMlfNiYkREOBktFeeXIiu0QhRtBdCelzJbL3qFSHci3Pf8C JtoPYFt5VI5RWseKU/2x9oE5byz8E2cXGcKm4UqRJwwd/InZNjwxwXqEeGjzYN4f e2kYr7ehZLzisygRa8HlCz4hANgssbdVyNeWd8VM/sWdo/T2IT7cRKASAOj+QHCe DIBw6C02SWnyyB/nOyZcrjApcIrsR5NdkkQuj6CRC+I8h+Ct0kmq6XI= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:46 2024 by rpki-client on console-fra.rpki-client.org