$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer File: 253E2BB4DE467AF08F191AF7632EE3BD058DA101.cer (raw, json) Hash identifier: 78ByCTBoKh7CpKGQx3IHLqgpCexMFK+eXXMLu9hKfLI= Subject key identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 69CD916221DA228A90756D38F2CA842AAF27E5D2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft caRepository: rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 16:50:46 +0000 Certificate not after: Mon 30 Jun 2025 16:55:46 +0000 Subordinate resources: IP: 60.253.96.0/19 IP: 202.51.224.0/20 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:cd:91:62:21:da:22:8a:90:75:6d:38:f2:ca:84:2a:af:27:e5:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 16:50:46 2024 GMT Not After : Jun 30 16:55:46 2025 GMT Subject: CN=253E2BB4DE467AF08F191AF7632EE3BD058DA101 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:65:7d:2a:45:96:37:51:3a:1b:87:67:51:a5: c3:d1:b4:65:46:9d:45:f4:a7:b6:cb:c6:b5:5d:60: 14:c6:bc:6b:dd:94:91:0e:a1:a8:87:05:97:61:e3: ac:5d:c7:10:ce:90:ee:c9:8a:d5:e6:82:45:49:0a: 8b:43:89:7a:1a:6f:32:2a:02:71:f8:ea:2d:80:31: 47:99:fa:b3:d9:69:1b:bf:fd:cc:4c:83:fe:d7:34: 47:bf:02:ed:82:06:a4:73:28:b0:2f:64:38:7c:a7: df:ed:58:02:d8:b3:ce:21:27:d8:ea:f6:06:21:51: be:d4:3b:94:40:cc:ae:37:2d:65:83:1f:a4:6b:fd: 9d:3d:77:f0:f2:79:58:f3:33:85:dd:1e:87:14:44: 9c:77:3b:a5:0a:01:9c:8d:21:57:d4:a3:ac:3b:21: 6d:81:6c:85:bf:e5:eb:ed:31:cd:d2:e4:bd:e6:77: 8c:51:62:dd:14:98:6a:af:f5:5c:d4:e9:3e:51:33: 37:a2:d4:23:00:b2:92:97:51:fa:43:b8:27:f2:81: 65:41:09:00:23:9f:d5:50:14:5b:e5:70:a7:bb:68: 3d:57:ba:d7:e4:99:35:8e:b8:16:2f:62:ea:78:56: 05:54:b3:be:87:bd:f6:42:33:69:4a:71:be:5a:6d: 85:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:3E:2B:B4:DE:46:7A:F0:8F:19:1A:F7:63:2E:E3:BD:05:8D:A1:01 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2cd7536d-9e10-4d49-b6ca-041cc9a5914e/0/253E2BB4DE467AF08F191AF7632EE3BD058DA101.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 60.253.96.0/19 202.51.224.0/20 Signature Algorithm: sha256WithRSAEncryption 6b:50:0f:8b:91:c9:0a:c3:68:06:74:44:cf:6d:f0:57:9b:a7: 52:3a:95:c4:a8:78:48:47:e9:f8:ca:68:5c:63:f6:42:40:4a: d5:2d:73:2b:9d:e4:23:cf:82:e3:08:76:52:04:eb:4a:a8:53: c5:01:38:74:80:c4:6d:21:31:89:d5:61:5b:26:13:34:11:cf: 02:81:a1:5d:30:67:d6:4a:59:45:aa:c8:ac:51:69:f2:d6:ea: 27:23:4a:86:c0:b3:ad:3a:9f:b7:5a:50:bf:d2:87:64:a7:62: 64:b5:8b:19:b0:93:7a:56:11:4b:53:c6:df:45:03:bf:b8:3b: 4f:9c:ac:a0:64:db:43:13:3f:66:21:79:c7:ff:3e:bf:ad:0e: 13:63:3c:ba:db:8f:36:2f:c0:d7:76:2b:c7:9b:6e:8f:1d:77: 87:68:11:b1:f1:52:f0:8e:13:f1:0a:85:ef:b2:c6:0d:ba:b2: 47:17:38:81:1a:ba:b5:d2:50:5d:9f:a7:a5:45:74:f0:c5:78: 6e:2c:56:bf:73:e0:4e:f1:59:20:eb:94:db:53:61:97:f1:f9: 9c:89:87:b9:13:03:5a:8a:7c:c7:62:fe:7b:6c:22:73:f0:f3: 9f:5e:d3:fc:2c:b9:02:a9:b4:57:d7:33:1a:30:81:ea:a0:3b: 3d:da:40:14 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUac2RYiHaIoqQdW048sqEKq8n5dIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE2NTA0NloX DTI1MDYzMDE2NTU0NlowMzExMC8GA1UEAxMoMjUzRTJCQjRERTQ2N0FGMDhGMTkx QUY3NjMyRUUzQkQwNThEQTEwMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNlfSpFljdROhuHZ1Glw9G0ZUadRfSntsvGtV1gFMa8a92UkQ6hqIcFl2Hj rF3HEM6Q7smK1eaCRUkKi0OJehpvMioCcfjqLYAxR5n6s9lpG7/9zEyD/tc0R78C 7YIGpHMosC9kOHyn3+1YAtizziEn2Or2BiFRvtQ7lEDMrjctZYMfpGv9nT138PJ5 WPMzhd0ehxREnHc7pQoBnI0hV9SjrDshbYFshb/l6+0xzdLkveZ3jFFi3RSYaq/1 XNTpPlEzN6LUIwCykpdR+kO4J/KBZUEJACOf1VAUW+Vwp7toPVe61+SZNY64Fi9i 6nhWBVSzvoe99kIzaUpxvlpthd0CAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCU+K7TeRnrwjxka92Mu470FjaEBMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yY2Q3NTM2ZC05ZTEwLTRkNDktYjZjYS0wNDFjYzlhNTkxNGUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJjZDc1MzZk LTllMTAtNGQ0OS1iNmNhLTA0MWNjOWE1OTE0ZS8wLzI1M0UyQkI0REU0NjdBRjA4 RjE5MUFGNzYzMkVFM0JEMDU4REExMDEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAU8/WADBATKM+AwDQYJKoZIhvcNAQELBQADggEBAGtQD4uRyQrDaAZ0RM9t8Feb p1I6lcSoeEhH6fjKaFxj9kJAStUtcyud5CPPguMIdlIE60qoU8UBOHSAxG0hMYnV YVsmEzQRzwKBoV0wZ9ZKWUWqyKxRafLW6icjSobAs606n7daUL/Sh2SnYmS1ixmw k3pWEUtTxt9FA7+4O0+crKBk20MTP2Yhecf/Pr+tDhNjPLrbjzYvwNd2K8ebbo8d d4doEbHxUvCOE/EKhe+yxg26skcXOIEaurXSUF2fp6VFdPDFeG4sVr9z4E7xWSDr lNtTYZfx+ZyJh7kTA1qKfMdi/ntsInPw859e0/wsuQKptFfXMxowgeqgOz3aQBQ= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:46 2024 by rpki-client on console-fra.rpki-client.org