$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer File: 233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.cer (raw, json) Hash identifier: RuGlGFM5H/2sXC7g5Jlb1v6N9wKwIFQc3KKySX7FyuI= Subject key identifier: 23:3A:F2:6D:7D:AE:6C:35:9E:B0:3A:D5:C6:FB:4B:4E:05:DD:F2:3D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6DFA9C3FA94868DE457A1F2B04B70D138FAFA927 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.mft caRepository: rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 08:34:10 +0000 Certificate not after: Mon 30 Jun 2025 08:39:10 +0000 Subordinate resources: IP: 202.165.32.0/20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:fa:9c:3f:a9:48:68:de:45:7a:1f:2b:04:b7:0d:13:8f:af:a9:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 08:34:10 2024 GMT Not After : Jun 30 08:39:10 2025 GMT Subject: CN=233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c9:d3:24:15:8a:e6:d2:03:80:02:86:71:3f: 75:ed:a6:1c:06:21:8e:43:41:26:2f:2d:79:14:66: b4:d4:48:d4:42:17:e1:76:d2:b5:02:12:44:3c:6a: 74:54:7f:80:11:6d:48:c7:9a:0a:25:fb:20:0f:df: 6b:6c:88:6a:2b:ce:df:7d:3d:30:50:9d:92:e6:9c: 40:e2:44:46:f0:58:fd:92:14:e8:d6:fb:cc:90:b9: c9:14:6b:93:7c:4d:56:17:ec:c2:fc:d0:95:a7:a4: 42:e3:38:d9:58:a2:94:40:bf:14:be:d8:d9:21:21: f4:50:41:29:0a:b8:f7:c4:4b:67:de:17:23:3c:26: 05:fb:01:6c:a8:3f:8a:a6:59:a1:74:e2:ec:2b:dd: 14:61:69:d1:f8:78:6e:7d:ee:07:6c:16:99:a2:76: fc:09:36:0a:1f:7d:71:24:43:de:11:3b:c5:41:ea: 22:83:a5:12:0f:c1:8a:ef:67:45:bd:a3:48:75:24: 32:f2:88:78:bd:ce:33:50:38:35:96:5e:f6:2a:b0: 2f:d4:b3:19:1e:94:0d:d8:73:a5:3b:cd:f0:38:f0: 77:ef:8e:0f:e1:6b:f9:28:e3:cc:85:9a:8b:de:56: 06:6a:03:f9:32:dd:e6:9e:ba:2a:19:b7:67:34:58: 69:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 23:3A:F2:6D:7D:AE:6C:35:9E:B0:3A:D5:C6:FB:4B:4E:05:DD:F2:3D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c55eac97-31b5-4f33-82f4-5241470cbbbe/0/233AF26D7DAE6C359EB03AD5C6FB4B4E05DDF23D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.165.32.0/20 Signature Algorithm: sha256WithRSAEncryption 79:df:35:40:d9:46:54:71:b3:db:75:e9:12:d9:51:6c:37:07: 4d:dc:05:6a:53:d5:2e:29:35:80:a8:02:03:b8:c8:99:23:66: 70:7b:dc:50:55:da:6d:e6:f7:08:ad:f2:16:56:de:9c:f3:5a: 7c:c0:57:79:f6:c5:05:36:54:93:d0:85:96:b6:4c:9d:14:da: 29:4f:3c:89:74:bb:53:ad:2a:7b:ef:8c:3b:36:ff:ae:43:0d: 1d:3a:fc:f5:fe:b4:9d:74:f5:39:eb:d1:0d:04:b7:3a:dc:ce: 7a:6c:c2:57:c8:ef:93:4d:28:ce:32:29:13:bb:d9:fd:49:d3: f5:9c:c4:c8:a0:2a:ba:dc:b0:b3:c0:17:d8:e9:40:10:68:4c: a1:9d:ff:20:ad:a1:03:e3:3e:9f:f2:7c:92:a7:e7:d5:d5:d7: 50:d6:83:e4:5e:e0:0f:34:6c:ce:20:29:10:9e:d2:f7:5a:65: 7a:ca:27:d8:47:69:ef:d3:44:0e:7d:11:6b:7d:9d:f3:a9:fd: 21:52:4a:19:3f:d7:df:69:5b:9c:18:a2:83:b1:ca:26:74:e1: 23:dc:cd:b4:18:a0:01:08:99:49:07:60:c8:2e:75:52:c2:d6: 3f:9f:70:fb:8c:98:7d:1b:4d:bc:58:4b:11:94:39:25:70:4b: ec:b0:7b:ab -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbfqcP6lIaN5Feh8rBLcNE4+vqScwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTA4MzQxMFoX DTI1MDYzMDA4MzkxMFowMzExMC8GA1UEAxMoMjMzQUYyNkQ3REFFNkMzNTlFQjAz QUQ1QzZGQjRCNEUwNURERjIzRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7J0yQViubSA4AChnE/de2mHAYhjkNBJi8teRRmtNRI1EIX4XbStQISRDxq dFR/gBFtSMeaCiX7IA/fa2yIaivO3309MFCdkuacQOJERvBY/ZIU6Nb7zJC5yRRr k3xNVhfswvzQlaekQuM42ViilEC/FL7Y2SEh9FBBKQq498RLZ94XIzwmBfsBbKg/ iqZZoXTi7CvdFGFp0fh4bn3uB2wWmaJ2/Ak2Ch99cSRD3hE7xUHqIoOlEg/Biu9n Rb2jSHUkMvKIeL3OM1A4NZZe9iqwL9SzGR6UDdhzpTvN8Djwd++OD+Fr+SjjzIWa i95WBmoD+TLd5p66Khm3ZzRYaWsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCM68m19rmw1nrA61cb7S04F3fI9MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jNTVlYWM5Ny0zMWI1LTRmMzMtODJmNC01MjQxNDcwY2JiYmUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M1NWVhYzk3 LTMxYjUtNGYzMy04MmY0LTUyNDE0NzBjYmJiZS8wLzIzM0FGMjZEN0RBRTZDMzU5 RUIwM0FENUM2RkI0QjRFMDVEREYyM0QubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BATKpSAwDQYJKoZIhvcNAQELBQADggEBAHnfNUDZRlRxs9t16RLZUWw3B03cBWpT 1S4pNYCoAgO4yJkjZnB73FBV2m3m9wit8hZW3pzzWnzAV3n2xQU2VJPQhZa2TJ0U 2ilPPIl0u1OtKnvvjDs2/65DDR06/PX+tJ109Tnr0Q0EtzrcznpswlfI75NNKM4y KRO72f1J0/WcxMigKrrcsLPAF9jpQBBoTKGd/yCtoQPjPp/yfJKn59XV11DWg+Re 4A80bM4gKRCe0vdaZXrKJ9hHae/TRA59EWt9nfOp/SFSShk/199pW5wYooOxyiZ0 4SPczbQYoAEImUkHYMgudVLC1j+fcPuMmH0bTbxYSxGUOSVwS+ywe6s= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:19 2024 by rpki-client on console-ams.rpki-client.org