$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/21F8D88DCD7D814618247F203F04126E51C2D65E.cer File: 21F8D88DCD7D814618247F203F04126E51C2D65E.cer (raw, json) Hash identifier: /NBfmUrzQOk6lMe/KfNwMvS0Y+EXdln9j2/w3xykytQ= Subject key identifier: 21:F8:D8:8D:CD:7D:81:46:18:24:7F:20:3F:04:12:6E:51:C2:D6:5E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D5A95C369DC0830F2E2995F2EEA010A306A9539 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0/21F8D88DCD7D814618247F203F04126E51C2D65E.mft caRepository: rsync://repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 19 Apr 2024 06:46:25 +0000 Certificate not after: Fri 18 Apr 2025 06:51:25 +0000 Subordinate resources: IP: 103.4.240.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:5a:95:c3:69:dc:08:30:f2:e2:99:5f:2e:ea:01:0a:30:6a:95:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 19 06:46:25 2024 GMT Not After : Apr 18 06:51:25 2025 GMT Subject: CN=21F8D88DCD7D814618247F203F04126E51C2D65E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:a5:59:cc:ae:01:3e:e4:86:79:9c:6c:b6:58: 36:65:40:00:ed:01:21:85:d8:46:10:3e:81:3b:2b: 95:b3:0c:bd:2b:fe:91:a2:69:67:21:30:d3:f7:ca: f9:8f:08:32:45:92:41:0b:74:85:fd:bb:36:58:ea: 6c:5b:35:92:39:42:f0:be:4e:1a:4c:86:8c:f5:08: 12:34:3b:9c:63:2a:ed:73:46:73:69:94:30:f1:b8: 82:e3:cd:7d:4f:a2:72:66:a1:15:32:91:47:6f:d2: 7f:28:28:2c:97:f9:ef:b4:0a:9b:16:a7:92:11:94: 9b:a1:07:ce:24:bd:4a:ad:77:b4:8a:3e:2e:9a:a6: b2:60:b7:8b:c2:df:2f:e5:09:1b:25:a8:94:a1:ad: 4d:cb:1d:74:38:29:bd:57:bd:3e:5c:00:61:40:7f: b2:22:c9:6e:99:01:25:47:dc:24:16:12:d2:f0:9c: c7:b4:56:e4:e0:0e:cd:34:f1:30:2d:bd:80:b9:e7: c4:e2:1a:d4:23:16:e2:46:6c:df:f6:b6:b2:bf:a6: 28:65:6f:f4:db:25:ca:2c:6a:29:23:f9:76:de:74: ea:f7:c1:0d:1b:df:46:f5:81:74:1c:39:0c:fb:0d: 76:f4:3c:73:90:6e:e0:9b:66:5b:e8:3b:cb:4c:24: 14:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 21:F8:D8:8D:CD:7D:81:46:18:24:7F:20:3F:04:12:6E:51:C2:D6:5E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/17e8dd40-bb94-4d43-b889-8a098d7f45ac/0/21F8D88DCD7D814618247F203F04126E51C2D65E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.240.0/22 Signature Algorithm: sha256WithRSAEncryption 93:16:93:df:66:7b:2d:99:52:f1:a9:3b:34:d1:75:c4:c0:be: 14:f9:fb:6f:2f:c0:6f:26:40:e4:20:26:1b:3a:fd:e9:87:75: c7:19:8c:b7:b0:ba:63:dd:26:fe:fe:23:5a:b5:8c:f5:1f:2e: 5c:38:25:fb:5a:02:fd:8f:12:52:80:4a:d6:e4:e0:de:06:fa: 09:38:37:53:b0:2c:c2:00:44:98:09:d9:85:a9:17:be:ea:49: 9d:69:e2:50:b7:07:d7:5c:50:32:e2:0f:84:51:f1:1c:26:24: ef:cd:2a:85:aa:3b:73:7a:16:e3:92:e2:a0:61:f3:f7:b7:0a: 1d:4f:3d:a2:fb:e5:79:91:61:8d:74:25:6d:e1:cb:18:31:2c: 9f:a3:f7:86:d7:18:2b:9e:a9:af:66:78:17:35:4b:18:02:a8: f0:87:ce:e0:00:39:b6:3a:2c:df:af:77:4f:85:4a:8f:30:d8: b9:c3:88:1f:b7:aa:d9:d7:28:a4:ea:76:a0:ce:14:a8:fa:64: b3:ca:d5:bc:01:a9:06:83:55:5d:2e:6e:a6:fe:22:17:d4:d8: 7a:b5:1a:eb:ce:29:80:6d:12:5e:37:d4:46:d3:d9:aa:65:d3: 0f:26:e0:dd:e7:2d:3f:5b:c0:73:6b:e9:ff:fc:5b:82:14:10: 40:48:26:73 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUfVqVw2ncCDDy4plfLuoBCjBqlTkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxOTA2NDYyNVoX DTI1MDQxODA2NTEyNVowMzExMC8GA1UEAxMoMjFGOEQ4OERDRDdEODE0NjE4MjQ3 RjIwM0YwNDEyNkU1MUMyRDY1RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWlWcyuAT7khnmcbLZYNmVAAO0BIYXYRhA+gTsrlbMMvSv+kaJpZyEw0/fK +Y8IMkWSQQt0hf27NljqbFs1kjlC8L5OGkyGjPUIEjQ7nGMq7XNGc2mUMPG4guPN fU+icmahFTKRR2/SfygoLJf577QKmxankhGUm6EHziS9Sq13tIo+LpqmsmC3i8Lf L+UJGyWolKGtTcsddDgpvVe9PlwAYUB/siLJbpkBJUfcJBYS0vCcx7RW5OAOzTTx MC29gLnnxOIa1CMW4kZs3/a2sr+mKGVv9NslyixqKSP5dt506vfBDRvfRvWBdBw5 DPsNdvQ8c5Bu4JtmW+g7y0wkFM8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCH42I3NfYFGGCR/ID8EEm5RwtZeMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xN2U4ZGQ0MC1iYjk0LTRkNDMtYjg4OS04YTA5OGQ3ZjQ1YWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE3ZThkZDQw LWJiOTQtNGQ0My1iODg5LThhMDk4ZDdmNDVhYy8wLzIxRjhEODhEQ0Q3RDgxNDYx ODI0N0YyMDNGMDQxMjZFNTFDMkQ2NUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnBPAwDQYJKoZIhvcNAQELBQADggEBAJMWk99mey2ZUvGpOzTRdcTAvhT5+28v wG8mQOQgJhs6/emHdccZjLewumPdJv7+I1q1jPUfLlw4JftaAv2PElKAStbk4N4G +gk4N1OwLMIARJgJ2YWpF77qSZ1p4lC3B9dcUDLiD4RR8RwmJO/NKoWqO3N6FuOS 4qBh8/e3Ch1PPaL75XmRYY10JW3hyxgxLJ+j94bXGCueqa9meBc1SxgCqPCHzuAA ObY6LN+vd0+FSo8w2LnDiB+3qtnXKKTqdqDOFKj6ZLPK1bwBqQaDVV0ubqb+IhfU 2Hq1GuvOKYBtEl431EbT2apl0w8m4N3nLT9bwHNr6f/8W4IUEEBIJnM= -----END CERTIFICATE-----Generated at Wed May 8 09:50:26 2024 by rpki-client on console-fra.rpki-client.org