$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer File: 292C6CF5F336CE0D758E47F5DF9778633CDCA769.cer (raw, json) Hash identifier: 0ErwaLTqCN5GIEqakjjfTUBiOszg/UcQBQXdQnsTjcY= Subject key identifier: 29:2C:6C:F5:F3:36:CE:0D:75:8E:47:F5:DF:97:78:63:3C:DC:A7:69 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 773F09C20DEC1F6B4C06551CF09E6827066EDC7B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.mft caRepository: rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 26 Apr 2024 13:42:57 +0000 Certificate not after: Fri 25 Apr 2025 13:47:57 +0000 Subordinate resources: IP: 103.166.136.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:3f:09:c2:0d:ec:1f:6b:4c:06:55:1c:f0:9e:68:27:06:6e:dc:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 26 13:42:57 2024 GMT Not After : Apr 25 13:47:57 2025 GMT Subject: CN=292C6CF5F336CE0D758E47F5DF9778633CDCA769 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1b:7d:1b:de:d4:55:bc:6e:cc:09:ba:60:0c: 03:42:f9:41:9f:e1:04:06:a3:7c:2d:44:42:f9:55: 32:85:0b:2c:3d:df:9c:d5:1e:c0:0f:4f:70:39:b5: d1:82:66:67:fe:38:57:a2:a8:15:05:70:9c:93:c7: c9:8d:b3:c3:7e:9b:e8:5c:ee:31:d9:dd:bc:f5:d4: a4:5c:d9:48:7f:d9:31:7e:52:1b:15:7c:ef:80:70: 44:df:33:76:20:e1:1d:38:2e:43:26:e2:20:aa:df: 5c:67:81:cf:13:c5:4f:8d:b1:2e:7e:56:35:a4:a1: d6:33:50:8e:14:99:ef:2e:8c:f7:d0:71:4e:57:5f: 66:ec:39:04:60:44:0b:9d:75:c5:93:9a:86:cf:c2: a5:92:46:2f:b6:a1:f2:72:14:0a:7d:2e:50:82:dd: 93:01:28:f2:5b:25:1e:7f:78:e2:ea:eb:83:04:5c: 51:33:f6:75:d4:40:33:da:6e:79:f2:3a:98:30:18: 88:1e:e7:15:0e:06:a9:6c:98:58:fd:f1:3e:e8:6d: 91:4d:68:44:42:4f:1e:d9:7c:51:9f:61:90:34:f4: 49:ae:3d:ca:cb:f7:be:db:9f:67:8e:2c:5f:c1:02: b2:7a:2d:17:00:a2:73:f7:d9:a3:0c:89:5c:c4:ef: af:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 29:2C:6C:F5:F3:36:CE:0D:75:8E:47:F5:DF:97:78:63:3C:DC:A7:69 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a634c8dc-8853-4f65-8209-4fbee7ab4252/0/292C6CF5F336CE0D758E47F5DF9778633CDCA769.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.136.0/23 Signature Algorithm: sha256WithRSAEncryption 0a:46:a4:31:8e:14:50:c8:ab:73:7f:23:89:d3:5d:51:bf:05: eb:55:ee:95:96:ce:6b:b0:c2:ec:9a:8d:a5:ed:12:31:5b:3a: 68:c4:12:4f:36:36:bc:0d:99:66:da:0e:2f:e5:17:d6:56:24: 7b:03:72:50:65:4b:3b:de:30:75:9c:ed:51:43:6d:c8:36:45: 7d:56:4b:fa:cf:78:56:d3:d1:0d:90:63:d2:d1:fc:78:cb:3b: 5c:c5:9d:20:1a:9b:b5:38:5d:4d:f3:a1:7e:17:ae:ce:15:02: 00:02:e7:72:0b:dc:08:c7:04:b9:a9:dd:90:83:84:88:9a:b3: 4e:39:3e:61:20:29:48:ac:75:39:af:06:3f:51:14:67:eb:11: c2:79:c8:db:bb:d9:ca:a0:0a:c8:82:80:27:eb:a7:33:2a:06: 15:0a:af:39:ac:54:72:04:41:a3:45:40:b8:b7:37:35:30:cb: f6:2b:08:98:0f:04:1f:80:a5:fd:f8:b7:61:a7:a0:a7:c4:9c: 12:eb:ff:3c:ed:5c:9b:0b:fb:d9:89:0c:65:97:4a:1d:87:db: b2:05:5e:95:db:89:bc:30:79:24:3f:69:9d:32:ca:49:44:09: d5:36:e1:71:4f:1d:64:84:9d:55:39:56:d0:fb:9b:1f:d0:50: b9:ca:96:3e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdz8Jwg3sH2tMBlUc8J5oJwZu3HswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNjEzNDI1N1oX DTI1MDQyNTEzNDc1N1owMzExMC8GA1UEAxMoMjkyQzZDRjVGMzM2Q0UwRDc1OEU0 N0Y1REY5Nzc4NjMzQ0RDQTc2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALkbfRve1FW8bswJumAMA0L5QZ/hBAajfC1EQvlVMoULLD3fnNUewA9PcDm1 0YJmZ/44V6KoFQVwnJPHyY2zw36b6FzuMdndvPXUpFzZSH/ZMX5SGxV874BwRN8z diDhHTguQybiIKrfXGeBzxPFT42xLn5WNaSh1jNQjhSZ7y6M99BxTldfZuw5BGBE C511xZOahs/CpZJGL7ah8nIUCn0uUILdkwEo8lslHn944urrgwRcUTP2ddRAM9pu efI6mDAYiB7nFQ4GqWyYWP3xPuhtkU1oREJPHtl8UZ9hkDT0Sa49ysv3vtufZ44s X8ECsnotFwCic/fZowyJXMTvrxkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCksbPXzNs4NdY5H9d+XeGM83KdpMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNjM0YzhkYy04ODUzLTRmNjUtODIwOS00ZmJlZTdhYjQyNTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E2MzRjOGRj LTg4NTMtNGY2NS04MjA5LTRmYmVlN2FiNDI1Mi8wLzI5MkM2Q0Y1RjMzNkNFMEQ3 NThFNDdGNURGOTc3ODYzM0NEQ0E3NjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnpogwDQYJKoZIhvcNAQELBQADggEBAApGpDGOFFDIq3N/I4nTXVG/BetV7pWW zmuwwuyajaXtEjFbOmjEEk82NrwNmWbaDi/lF9ZWJHsDclBlSzveMHWc7VFDbcg2 RX1WS/rPeFbT0Q2QY9LR/HjLO1zFnSAam7U4XU3zoX4Xrs4VAgAC53IL3AjHBLmp 3ZCDhIias045PmEgKUisdTmvBj9RFGfrEcJ5yNu72cqgCsiCgCfrpzMqBhUKrzms VHIEQaNFQLi3NzUwy/YrCJgPBB+Apf34t2GnoKfEnBLr/zztXJsL+9mJDGWXSh2H 27IFXpXbibwweSQ/aZ0yyklECdU24XFPHWSEnVU5VtD7mx/QULnKlj4= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:14 2024 by rpki-client on console-fra.rpki-client.org