$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer File: 2E2D926932C5C7E296931D881908A4BB1E98EB6D.cer (raw, json) Hash identifier: Z0GKuxKS1AXqarkGhc+XY3cs5nxDvMzsbJikEpsrd2c= Subject key identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7E8867ECAB2AD6AE4AF626DFFB33C640204885C6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft caRepository: rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 26 Dec 2023 19:58:19 +0000 Certificate not after: Tue 24 Dec 2024 20:03:19 +0000 Subordinate resources: IP: 103.181.250.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:88:67:ec:ab:2a:d6:ae:4a:f6:26:df:fb:33:c6:40:20:48:85:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 26 19:58:19 2023 GMT Not After : Dec 24 20:03:19 2024 GMT Subject: CN=2E2D926932C5C7E296931D881908A4BB1E98EB6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:48:8b:14:a8:fb:1e:8e:02:eb:2e:7e:2d:e8: a3:8b:07:49:39:1f:9c:25:f8:6a:42:b6:da:67:bb: 81:a6:f5:92:6b:71:4e:b9:d3:d0:bc:94:81:b4:61: 82:93:5b:ca:8c:b9:2a:4e:f4:4a:10:50:2c:bb:b4: e4:59:b0:a9:c0:00:0a:04:8a:fb:7a:86:e9:d6:c3: be:e7:63:3d:33:0a:ba:db:69:a2:5a:cd:ec:af:2c: 20:6f:48:a2:fb:97:a5:3e:4c:dd:ed:91:58:3c:3e: b8:a2:c8:40:b2:1b:c6:8f:15:ed:30:9a:27:cc:60: 21:78:92:02:cd:36:4b:37:d0:f1:dd:a4:af:25:bb: 09:29:50:26:da:76:0c:14:d1:d4:56:18:fc:70:b3: fc:3a:68:c3:5b:56:da:da:fe:ff:e5:03:33:70:89: ea:89:6d:86:c9:d2:e8:66:51:d1:1f:62:16:58:3e: 07:9e:72:c7:40:07:25:80:a2:62:02:18:17:e8:7a: 5c:e7:fc:92:22:95:41:09:f9:22:d5:7a:06:90:9e: 56:dd:09:79:d3:62:dd:33:90:5a:b1:11:94:6c:34: b7:50:27:45:09:f3:16:b5:c8:c8:1b:26:51:ef:31: 32:ce:e4:33:01:82:17:91:bd:e3:f0:2e:92:f4:be: 1c:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2E:2D:92:69:32:C5:C7:E2:96:93:1D:88:19:08:A4:BB:1E:98:EB:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dfa589ef-9f3d-43bc-ba30-fa326b71f787/0/2E2D926932C5C7E296931D881908A4BB1E98EB6D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.250.0/23 Signature Algorithm: sha256WithRSAEncryption 81:a7:10:8f:bd:5f:24:13:d5:e7:1b:48:b5:8b:b8:1f:43:da: 71:85:a4:ed:68:3c:63:85:a5:ed:59:d5:0d:3d:19:7e:5f:86: 3b:46:70:56:54:6c:64:8b:1f:2c:58:fc:e1:29:6c:8a:73:e9: 4b:fe:72:93:6f:3d:bf:6b:6b:60:7c:17:92:4f:7c:ef:96:ad: 3f:6f:a5:26:7a:c0:e3:fb:0a:ab:3a:ea:39:69:60:5b:2b:09: 4b:37:1c:dd:6d:16:f7:09:d0:f3:3a:4b:38:fd:85:95:df:84: 7d:94:91:a8:ce:1c:0e:9e:e0:47:8b:63:aa:73:42:75:b4:15: c5:09:f9:4d:d0:43:3e:4f:0a:77:f5:78:18:c8:9f:a1:00:07: 5c:44:29:8c:d1:68:1a:3d:33:d8:0d:2b:37:ef:50:66:ea:97: 8b:50:34:be:32:e4:a5:b4:83:fc:e8:14:c2:25:f0:56:04:45: 4f:1e:63:83:35:ac:a2:07:e1:9d:d2:7e:65:35:1e:55:13:33: fc:1d:65:40:83:43:e3:cf:8e:53:e6:46:50:2a:75:ad:f3:51: f3:38:84:e2:6b:5c:d5:82:8a:90:59:85:4d:ac:a0:9a:8d:18: a2:c0:02:64:ad:54:56:94:26:c1:b5:a0:5a:04:2a:0a:6d:a5: 2b:4e:cc:10 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUfohn7Ksq1q5K9ibf+zPGQCBIhcYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyNjE5NTgxOVoX DTI0MTIyNDIwMDMxOVowMzExMC8GA1UEAxMoMkUyRDkyNjkzMkM1QzdFMjk2OTMx RDg4MTkwOEE0QkIxRTk4RUI2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKhIixSo+x6OAusufi3oo4sHSTkfnCX4akK22me7gab1kmtxTrnT0LyUgbRh gpNbyoy5Kk70ShBQLLu05FmwqcAACgSK+3qG6dbDvudjPTMKuttpolrN7K8sIG9I ovuXpT5M3e2RWDw+uKLIQLIbxo8V7TCaJ8xgIXiSAs02SzfQ8d2kryW7CSlQJtp2 DBTR1FYY/HCz/Dpow1tW2tr+/+UDM3CJ6olthsnS6GZR0R9iFlg+B55yx0AHJYCi YgIYF+h6XOf8kiKVQQn5ItV6BpCeVt0JedNi3TOQWrERlGw0t1AnRQnzFrXIyBsm Ue8xMs7kMwGCF5G94/AukvS+HNcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC4tkmkyxcfilpMdiBkIpLsemOttMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZmE1ODllZi05ZjNkLTQzYmMtYmEzMC1mYTMyNmI3MWY3ODcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmYTU4OWVm LTlmM2QtNDNiYy1iYTMwLWZhMzI2YjcxZjc4Ny8wLzJFMkQ5MjY5MzJDNUM3RTI5 NjkzMUQ4ODE5MDhBNEJCMUU5OEVCNkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFntfowDQYJKoZIhvcNAQELBQADggEBAIGnEI+9XyQT1ecbSLWLuB9D2nGFpO1o PGOFpe1Z1Q09GX5fhjtGcFZUbGSLHyxY/OEpbIpz6Uv+cpNvPb9ra2B8F5JPfO+W rT9vpSZ6wOP7Cqs66jlpYFsrCUs3HN1tFvcJ0PM6Szj9hZXfhH2UkajOHA6e4EeL Y6pzQnW0FcUJ+U3QQz5PCnf1eBjIn6EAB1xEKYzRaBo9M9gNKzfvUGbql4tQNL4y 5KW0g/zoFMIl8FYERU8eY4M1rKIH4Z3SfmU1HlUTM/wdZUCDQ+PPjlPmRlAqda3z UfM4hOJrXNWCipBZhU2soJqNGKLAAmStVFaUJsG1oFoEKgptpStOzBA= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:40 2024 by rpki-client on console-ams.rpki-client.org