$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2A2780233BF2E06D533EC6B05F500206FBB06D6D.cer File: 2A2780233BF2E06D533EC6B05F500206FBB06D6D.cer (raw, json) Hash identifier: sUydAlrClP4oQKDk/GTM2Gs2TklOYTraNZOr6hCYD8g= Subject key identifier: 2A:27:80:23:3B:F2:E0:6D:53:3E:C6:B0:5F:50:02:06:FB:B0:6D:6D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2AD42B34320378F18D3DDE25DACFF80E351DAE96 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/2A2780233BF2E06D533EC6B05F500206FBB06D6D.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jan 2024 08:37:31 +0000 Certificate not after: Mon 30 Dec 2024 08:42:31 +0000 Subordinate resources: IP: 103.141.170.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d4:2b:34:32:03:78:f1:8d:3d:de:25:da:cf:f8:0e:35:1d:ae:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 1 08:37:31 2024 GMT Not After : Dec 30 08:42:31 2024 GMT Subject: CN=2A2780233BF2E06D533EC6B05F500206FBB06D6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:25:54:51:be:18:59:0a:e7:e9:99:91:94:e5: ae:cd:ee:79:f6:0a:55:bb:e5:38:b8:f6:f0:34:42: 6b:a3:dd:54:94:22:3f:ec:a6:a4:06:7c:19:f1:c7: c1:21:c1:5b:cc:73:50:d9:d8:30:3e:b6:0a:0f:de: bf:97:ad:cc:7a:5c:01:ff:5d:72:21:37:87:c9:19: 41:50:49:93:60:20:22:10:22:bf:b2:7f:fd:22:9e: 2d:89:04:7a:16:15:79:09:a0:24:b8:18:b6:33:c5: c2:6f:72:8d:2f:8a:1a:d7:c7:a0:50:48:42:ac:f0: fa:c2:ee:0a:e4:0e:80:2d:e9:94:fc:db:47:41:6d: de:56:1a:18:05:c7:3e:f9:17:f0:62:a9:8f:3b:79: e5:1b:2b:87:42:e9:12:ed:cb:82:5f:b8:d1:cc:29: 2a:9b:87:2f:68:13:a4:bc:ff:7e:08:ed:03:ba:78: a5:96:f7:15:1d:ca:ce:46:97:e4:f0:45:17:a9:7c: 0e:27:92:8a:12:c9:4c:75:94:70:58:fe:e1:e0:c5: c9:fe:99:e2:6c:44:16:18:63:ad:ca:56:83:c7:2d: dd:cf:74:a4:7b:19:8e:64:b1:7b:ca:07:fc:22:6a: 07:8e:e7:56:99:13:8a:30:ab:0a:2d:9b:b4:51:a8: a7:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2A:27:80:23:3B:F2:E0:6D:53:3E:C6:B0:5F:50:02:06:FB:B0:6D:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c6f8c0a-e03f-4140-ba16-833ac2241afb/0/2A2780233BF2E06D533EC6B05F500206FBB06D6D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.141.170.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:6b:1e:e7:26:ae:09:40:86:45:2f:fc:44:2c:d4:77:52:98: f9:00:68:dc:3d:1a:8a:10:83:0d:9a:ec:2e:26:fc:24:fb:ca: 4d:78:36:7d:2d:26:8c:85:6f:66:91:7e:02:93:4a:50:a9:85: 4c:40:11:23:10:da:11:36:16:dd:ae:04:cf:20:33:8f:e9:c0: fa:12:4c:78:6b:fd:84:9b:87:b2:0e:46:55:3f:34:41:67:62: f4:1d:c8:a3:5a:7c:7e:c4:49:14:c5:c4:ad:d2:22:1d:65:a2: de:c4:92:f3:b4:08:eb:38:d9:77:4a:55:b2:52:09:df:01:d7: 5c:47:c8:b1:70:59:9c:f6:31:6c:19:c1:8c:8a:e6:51:bd:10: 1a:8a:e3:34:d5:de:f2:ca:09:4a:de:db:02:cc:0c:bf:cd:b6: 50:5e:79:ce:9e:09:e9:00:09:43:5f:a6:fe:86:00:60:31:3a: a0:e9:06:44:22:4b:29:66:3a:e4:c4:ed:9e:38:6b:eb:b7:83: 11:28:39:89:50:e1:4e:4d:db:74:fc:79:b8:da:89:f7:53:cb: e3:53:69:32:6f:6f:bf:4c:dd:b0:d5:c3:3e:ba:15:07:72:c9: 34:c2:d5:37:ba:92:9f:ce:66:10:c0:65:14:4e:5c:3d:93:c6: 59:11:42:44 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKtQrNDIDePGNPd4l2s/4DjUdrpYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwMTA4MzczMVoX DTI0MTIzMDA4NDIzMVowMzExMC8GA1UEAxMoMkEyNzgwMjMzQkYyRTA2RDUzM0VD NkIwNUY1MDAyMDZGQkIwNkQ2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPQlVFG+GFkK5+mZkZTlrs3uefYKVbvlOLj28DRCa6PdVJQiP+ympAZ8GfHH wSHBW8xzUNnYMD62Cg/ev5etzHpcAf9dciE3h8kZQVBJk2AgIhAiv7J//SKeLYkE ehYVeQmgJLgYtjPFwm9yjS+KGtfHoFBIQqzw+sLuCuQOgC3plPzbR0Ft3lYaGAXH PvkX8GKpjzt55Rsrh0LpEu3Lgl+40cwpKpuHL2gTpLz/fgjtA7p4pZb3FR3KzkaX 5PBFF6l8DieSihLJTHWUcFj+4eDFyf6Z4mxEFhhjrcpWg8ct3c90pHsZjmSxe8oH /CJqB47nVpkTijCrCi2btFGop+0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCongCM78uBtUz7GsF9QAgb7sG1tMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzZmOGMwYS1lMDNmLTQxNDAtYmExNi04MzNhYzIyNDFhZmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNmY4YzBh LWUwM2YtNDE0MC1iYTE2LTgzM2FjMjI0MWFmYi8wLzJBMjc4MDIzM0JGMkUwNkQ1 MzNFQzZCMDVGNTAwMjA2RkJCMDZENkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnjaowDQYJKoZIhvcNAQELBQADggEBAB9rHucmrglAhkUv/EQs1HdSmPkAaNw9 GooQgw2a7C4m/CT7yk14Nn0tJoyFb2aRfgKTSlCphUxAESMQ2hE2Ft2uBM8gM4/p wPoSTHhr/YSbh7IORlU/NEFnYvQdyKNafH7ESRTFxK3SIh1lot7EkvO0COs42XdK VbJSCd8B11xHyLFwWZz2MWwZwYyK5lG9EBqK4zTV3vLKCUre2wLMDL/NtlBeec6e CekACUNfpv6GAGAxOqDpBkQiSylmOuTE7Z44a+u3gxEoOYlQ4U5N23T8ebjaifdT y+NTaTJvb79M3bDVwz66FQdyyTTC1Te6kp/OZhDAZRROXD2TxlkRQkQ= -----END CERTIFICATE-----Generated at Wed May 8 15:17:34 2024 by rpki-client on console-fra.rpki-client.org