$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2F24A2044806301EB7FA6CE5C8521FE03941B7BA.cer File: 2F24A2044806301EB7FA6CE5C8521FE03941B7BA.cer (raw, json) Hash identifier: VC5ZPCh0eAafK3zJtluIk0DDsW47dekpSyKpUVZAEAE= Subject key identifier: 2F:24:A2:04:48:06:30:1E:B7:FA:6C:E5:C8:52:1F:E0:39:41:B7:BA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 50A0A8B7A5742409F244398D35AD0ADDACBF7A3C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0/2F24A2044806301EB7FA6CE5C8521FE03941B7BA.mft caRepository: rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 27 Jan 2024 10:21:53 +0000 Certificate not after: Sat 25 Jan 2025 10:26:53 +0000 Subordinate resources: IP: 103.184.57.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:a0:a8:b7:a5:74:24:09:f2:44:39:8d:35:ad:0a:dd:ac:bf:7a:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 27 10:21:53 2024 GMT Not After : Jan 25 10:26:53 2025 GMT Subject: CN=2F24A2044806301EB7FA6CE5C8521FE03941B7BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:0d:e7:8a:c0:3e:8b:3c:2e:61:15:87:22:4b: ba:23:80:e0:bb:cd:17:4f:8c:25:53:fa:62:60:0c: 93:4b:63:2c:e2:71:95:51:dd:5a:3e:98:61:f4:2c: 7d:06:2a:bd:56:16:c4:f8:a5:78:03:b3:49:77:09: e3:7a:93:48:c8:3c:77:fd:8a:6c:70:ad:1d:3d:72: 23:50:d2:db:f0:d2:1e:30:1b:9d:68:a9:7d:ea:56: 5d:29:f0:82:96:01:1e:63:b5:52:9c:9c:8b:c9:df: 2c:37:15:cc:cb:81:5b:52:dd:f8:20:a6:28:89:e5: 1f:e1:0e:0a:6e:51:c5:1f:7e:3b:30:f7:ab:06:a6: 3d:97:9b:f7:be:78:0b:cf:17:23:0e:e6:83:af:ce: a1:aa:f3:e2:5a:0c:ec:21:62:f3:91:74:cc:e7:1c: ff:f9:8f:0c:b6:21:b5:c0:71:3a:d5:6c:83:fe:f8: 8d:bf:22:8a:1f:a6:23:2c:57:4d:be:71:30:ac:88: a0:2b:93:01:18:a6:b8:7f:dd:2a:d0:13:1d:eb:90: df:8f:fe:31:cf:63:a6:81:05:10:59:12:5d:72:97: ba:64:11:ea:46:0b:ce:f6:67:9b:4e:2b:7f:f1:39: 15:54:69:96:4b:97:f3:31:29:24:c5:cb:1b:6c:60: f7:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2F:24:A2:04:48:06:30:1E:B7:FA:6C:E5:C8:52:1F:E0:39:41:B7:BA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/91a2929c-6088-4cb5-83c6-f4a356b20f9d/0/2F24A2044806301EB7FA6CE5C8521FE03941B7BA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.57.0/24 Signature Algorithm: sha256WithRSAEncryption 94:cc:c1:33:6d:c6:14:22:19:d5:03:13:89:f0:af:f2:cb:24: 6b:81:f8:5b:2b:d5:41:2e:74:db:6f:b5:28:df:61:3c:17:59: 02:de:a8:ad:b6:5a:a2:2a:f1:38:5f:37:2f:66:71:5e:5c:8b: a9:02:71:fe:d2:a5:b9:dc:ed:b7:5e:53:46:ac:de:f3:78:a1: 72:ac:03:4d:7f:93:76:fa:6a:2d:d1:c0:58:26:4f:ec:37:2f: 7b:af:d4:ff:b8:b2:b1:2d:01:00:61:f1:5a:1b:6f:e6:da:de: 75:09:c8:65:ed:3e:22:79:11:67:33:ab:05:ab:3e:1e:57:ac: 35:04:72:f5:f2:c3:a9:4d:a1:c1:2c:ed:09:11:98:bb:3f:43: 56:7d:1a:18:c2:44:1c:1a:fa:d8:6c:21:0a:f0:f0:dd:88:b9: ab:27:77:51:71:b5:18:30:c7:d2:4c:cb:f3:14:cf:78:3f:a6: bc:f0:80:67:14:d7:6c:23:32:68:f7:6d:ae:a1:0a:65:d5:0d: 2f:cb:ff:7f:85:16:2b:fe:48:b5:2b:04:0b:e9:af:36:a0:5f: 3f:48:af:6e:d9:c9:26:43:f3:bc:c2:dd:01:8f:4b:db:33:a2: 01:aa:2b:84:16:d2:b6:af:e4:b3:27:13:9c:2d:b7:03:73:0f: 5b:83:e0:e4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUKCot6V0JAnyRDmNNa0K3ay/ejwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEyNzEwMjE1M1oX DTI1MDEyNTEwMjY1M1owMzExMC8GA1UEAxMoMkYyNEEyMDQ0ODA2MzAxRUI3RkE2 Q0U1Qzg1MjFGRTAzOTQxQjdCQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYN54rAPos8LmEVhyJLuiOA4LvNF0+MJVP6YmAMk0tjLOJxlVHdWj6YYfQs fQYqvVYWxPileAOzSXcJ43qTSMg8d/2KbHCtHT1yI1DS2/DSHjAbnWipfepWXSnw gpYBHmO1Upyci8nfLDcVzMuBW1Ld+CCmKInlH+EOCm5RxR9+OzD3qwamPZeb9754 C88XIw7mg6/Ooarz4loM7CFi85F0zOcc//mPDLYhtcBxOtVsg/74jb8iih+mIyxX Tb5xMKyIoCuTARimuH/dKtATHeuQ34/+Mc9jpoEFEFkSXXKXumQR6kYLzvZnm04r f/E5FVRplkuX8zEpJMXLG2xg93MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC8kogRIBjAet/ps5chSH+A5Qbe6MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MWEyOTI5Yy02MDg4LTRjYjUtODNjNi1mNGEzNTZiMjBmOWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkxYTI5Mjlj LTYwODgtNGNiNS04M2M2LWY0YTM1NmIyMGY5ZC8wLzJGMjRBMjA0NDgwNjMwMUVC N0ZBNkNFNUM4NTIxRkUwMzk0MUI3QkEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnuDkwDQYJKoZIhvcNAQELBQADggEBAJTMwTNtxhQiGdUDE4nwr/LLJGuB+Fsr 1UEudNtvtSjfYTwXWQLeqK22WqIq8ThfNy9mcV5ci6kCcf7Spbnc7bdeU0as3vN4 oXKsA01/k3b6ai3RwFgmT+w3L3uv1P+4srEtAQBh8Vobb+ba3nUJyGXtPiJ5EWcz qwWrPh5XrDUEcvXyw6lNocEs7QkRmLs/Q1Z9GhjCRBwa+thsIQrw8N2Iuasnd1Fx tRgwx9JMy/MUz3g/przwgGcU12wjMmj3ba6hCmXVDS/L/3+FFiv+SLUrBAvprzag Xz9Ir27ZySZD87zC3QGPS9szogGqK4QW0rav5LMnE5wttwNzD1uD4OQ= -----END CERTIFICATE-----Generated at Thu May 9 00:36:58 2024 by rpki-client on console-fra.rpki-client.org