$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer File: 2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer (raw, json) Hash identifier: rhdOTksPlq+hWfEFac6oJ6nlXDKd9eS+GZSp0GRKn64= Subject key identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1F96163490077E838DB64EAED4FBBB67F125C14E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft caRepository: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 16 May 2024 21:00:35 +0000 Certificate not after: Thu 15 May 2025 21:05:35 +0000 Subordinate resources: IP: 103.191.60.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:96:16:34:90:07:7e:83:8d:b6:4e:ae:d4:fb:bb:67:f1:25:c1:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 16 21:00:35 2024 GMT Not After : May 15 21:05:35 2025 GMT Subject: CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6c:f4:04:ce:05:e5:73:48:73:33:cb:08:59: b7:05:9b:6f:11:0e:0f:98:88:fc:31:91:81:8d:f8: 68:4d:9a:77:e4:05:30:0f:94:69:17:11:fb:02:63: 28:a3:78:36:23:e5:ea:d3:7e:23:ce:4b:bd:c9:61: 22:b9:83:6c:87:fb:07:b3:ab:42:34:16:c7:86:8d: 2b:58:cf:77:6d:3f:1f:6b:fa:62:f5:ec:d1:78:2c: a9:fc:f8:bf:25:13:50:e1:f8:c7:72:1b:a6:a7:5f: 1e:91:78:26:e8:5c:da:28:c2:1a:63:ba:d3:d7:fb: e4:d6:aa:d3:1e:b1:1b:d6:3e:c7:39:a9:7c:53:c9: 50:b4:72:93:f2:8e:4c:67:12:b9:6f:74:4f:3c:54: 7a:d0:ac:34:07:b3:55:2c:04:ad:85:0e:4c:83:aa: 31:6a:5e:e0:03:18:3f:c2:66:de:16:72:02:f9:c6: 34:e5:35:f3:a1:ec:2b:ac:cc:da:4c:ce:ee:9d:01: af:b2:ab:b5:b7:ac:74:8e:f8:a7:38:55:db:1b:7d: 78:51:17:2e:0f:0b:b6:2e:66:94:8f:e4:35:72:ae: fb:7e:20:01:02:ab:4c:91:a2:97:46:19:83:be:9c: 39:70:b1:37:cd:58:2c:fd:e8:b9:02:a4:8b:cd:38: d0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.60.0/23 Signature Algorithm: sha256WithRSAEncryption 14:52:92:99:54:8b:cc:82:79:b0:49:07:41:09:a5:33:a8:10: 19:51:34:c8:ed:e5:92:65:ed:24:5a:28:23:76:68:b5:fe:80: b4:b0:27:55:96:3e:39:a5:d7:15:f1:ed:d5:a5:16:d4:89:44: fa:76:38:b0:08:f0:65:18:09:00:4b:47:15:f5:db:3f:5b:5c: 9c:9c:6b:36:99:6f:ac:9d:39:a4:b0:28:9e:98:7f:74:80:d7: dc:05:e7:72:c2:02:e3:78:d6:1a:eb:35:8a:e3:3b:58:36:e6: af:c8:8c:93:e8:76:d5:9e:05:9a:a0:de:65:be:3d:9f:98:d0: 33:c1:ca:f8:34:0d:35:e6:f0:26:f6:6c:fe:a3:23:f5:01:32: 76:0b:d3:ec:8b:6e:c3:06:30:b4:59:36:da:7c:a0:29:76:e1: d8:7c:c0:18:ef:64:ff:4d:8f:85:1a:9c:36:d8:c2:e7:ed:26: 95:48:ae:1a:0a:99:4d:e1:f5:7b:88:65:e4:51:2c:4f:5e:96: a3:8e:dc:ed:40:40:8b:a2:02:5e:59:88:9d:f6:0e:56:ad:94: f0:20:f4:59:fe:4d:38:cd:d1:24:b3:dc:71:ec:1d:64:9e:e8: 92:e0:52:1d:a1:e4:9d:b0:a4:71:39:f1:2a:6f:e0:86:34:cb: 2c:d8:54:e6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUH5YWNJAHfoONtk6u1Pu7Z/ElwU4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUxNjIxMDAzNVoX DTI1MDUxNTIxMDUzNVowMzExMC8GA1UEAxMoMkQ2Rjk2RkE2MzBFQTdBRTBBMkIx MjJCNkYwNENDNEY1RjMyQ0VCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9s9ATOBeVzSHMzywhZtwWbbxEOD5iI/DGRgY34aE2ad+QFMA+UaRcR+wJj KKN4NiPl6tN+I85LvclhIrmDbIf7B7OrQjQWx4aNK1jPd20/H2v6YvXs0Xgsqfz4 vyUTUOH4x3IbpqdfHpF4Juhc2ijCGmO609f75Naq0x6xG9Y+xzmpfFPJULRyk/KO TGcSuW90TzxUetCsNAezVSwErYUOTIOqMWpe4AMYP8Jm3hZyAvnGNOU186HsK6zM 2kzO7p0Br7KrtbesdI74pzhV2xt9eFEXLg8Lti5mlI/kNXKu+34gAQKrTJGil0YZ g76cOXCxN81YLP3ouQKki8040N8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC1vlvpjDqeuCisSK28EzE9fMs61MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZTM0ZDJkOC0zNGFmLTQ3NTctOGFkOS05MmRhMzVkOTIxNjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMzRkMmQ4 LTM0YWYtNDc1Ny04YWQ5LTkyZGEzNWQ5MjE2OC8wLzJENkY5NkZBNjMwRUE3QUUw QTJCMTIyQjZGMDRDQzRGNUYzMkNFQjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvzwwDQYJKoZIhvcNAQELBQADggEBABRSkplUi8yCebBJB0EJpTOoEBlRNMjt 5ZJl7SRaKCN2aLX+gLSwJ1WWPjml1xXx7dWlFtSJRPp2OLAI8GUYCQBLRxX12z9b XJycazaZb6ydOaSwKJ6Yf3SA19wF53LCAuN41hrrNYrjO1g25q/IjJPodtWeBZqg 3mW+PZ+Y0DPByvg0DTXm8Cb2bP6jI/UBMnYL0+yLbsMGMLRZNtp8oCl24dh8wBjv ZP9Nj4UanDbYwuftJpVIrhoKmU3h9XuIZeRRLE9elqOO3O1AQIuiAl5ZiJ32Dlat lPAg9Fn+TTjN0SSz3HHsHWSe6JLgUh2h5J2wpHE58Spv4IY0yyzYVOY= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:40 2024 by rpki-client on console-ams.rpki-client.org