$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2FB994CD1282292E6D2907FCECD7F9E472F49985.cer File: 2FB994CD1282292E6D2907FCECD7F9E472F49985.cer (raw, json) Hash identifier: AcOdjseV1dPC+KPhMGhB5uVzQqqFFl5GX3b+nC8VXJ4= Subject key identifier: 2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3EBC6E4691881D4284DF91FA695A96CB5F590D89 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.mft caRepository: rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 16:21:20 +0000 Certificate not after: Mon 30 Jun 2025 16:26:20 +0000 Subordinate resources: IP: 103.110.8.0/22 IP: 2001:df4:5700::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:bc:6e:46:91:88:1d:42:84:df:91:fa:69:5a:96:cb:5f:59:0d:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 16:21:20 2024 GMT Not After : Jun 30 16:26:20 2025 GMT Subject: CN=2FB994CD1282292E6D2907FCECD7F9E472F49985 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e9:e0:70:5e:f0:fc:38:d1:a8:a0:32:d0:ac: 41:2a:28:4c:65:65:61:74:2d:e6:ce:ca:7e:31:79: 19:1d:30:ce:20:e6:78:13:3c:ba:b8:ec:c1:a7:9a: 93:a0:61:65:60:1b:4c:ca:dd:cc:52:b0:b5:f0:b9: 8e:ce:6c:a5:ee:b9:b9:66:ba:c6:91:d0:d9:0b:41: c8:f5:5a:29:5d:e5:a2:fb:e6:ec:65:ad:72:a1:24: 72:d6:12:39:4d:48:ba:ad:36:99:7d:81:13:14:c2: 19:54:cf:a6:a2:b1:53:37:1d:ed:51:ac:64:39:90: bd:19:d8:8e:19:e6:78:da:6a:d5:e4:13:33:03:fa: 6c:eb:1d:cc:16:68:4b:47:d5:4f:ac:d4:10:c5:32: 83:49:69:bb:65:6a:9e:c0:a8:c5:7a:09:29:9d:78: 09:2b:33:60:b2:8d:3b:ae:c2:7f:b9:10:c3:6f:59: 93:f9:46:db:2e:08:87:4c:88:72:c6:06:4b:78:f0: d7:02:8b:13:03:f9:b9:fd:60:4f:03:b4:63:f6:f0: c8:73:0d:2b:23:96:c5:f4:db:0a:5f:ce:bc:e6:ed: 34:20:93:0d:16:52:fc:79:11:4d:5c:f4:79:8c:62: 7a:d9:0f:ec:aa:bf:f1:a3:0f:8d:82:df:a5:8d:d8: 43:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2F:B9:94:CD:12:82:29:2E:6D:29:07:FC:EC:D7:F9:E4:72:F4:99:85 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2da773dd-95aa-447e-993d-4cf4a1273b31/0/2FB994CD1282292E6D2907FCECD7F9E472F49985.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.110.8.0/22 IPv6: 2001:df4:5700::/48 Signature Algorithm: sha256WithRSAEncryption 0b:6d:dd:57:3a:55:dc:56:41:f5:2f:e9:54:0a:dc:c5:c1:23: ef:c7:4b:4c:b1:e2:25:14:bf:68:c3:cb:4d:75:23:76:e0:e9: 4d:0f:d1:61:47:12:6b:33:b6:7d:24:5b:32:f1:db:19:93:d9: 67:51:b9:19:56:7f:ee:41:e9:6e:70:21:a3:7f:2b:70:f2:22: f0:e1:3e:7e:65:d2:52:95:d7:a8:b8:6e:09:62:45:12:e1:41: fe:7d:46:7e:f3:ee:fd:13:61:43:8b:bc:12:53:7c:48:5c:b4: 89:30:4b:e8:91:6a:28:3a:08:1d:75:6d:ca:8f:fc:7f:9b:1b: a7:2c:f5:4b:07:ab:c0:37:e0:eb:85:c6:2b:07:31:d1:9c:7d: 1c:48:81:b5:33:9f:74:2c:5f:0f:c3:9d:e4:2b:89:11:06:05: 28:d8:56:2c:0d:a4:84:9c:f6:19:83:85:8f:73:0a:6e:19:6c: aa:7d:d5:57:1d:2c:c2:ae:25:a9:36:0d:86:bc:7b:a8:ba:a5: bb:9b:be:06:37:fb:c3:77:33:dd:be:41:84:0e:96:56:e1:07: fb:cc:80:55:51:cd:b5:81:f5:0d:16:ca:98:0b:c4:1e:98:83: f2:b5:65:ec:92:07:16:c2:13:ff:80:5e:01:b8:34:e5:a0:95: 62:e7:f3:b9 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUPrxuRpGIHUKE35H6aVqWy19ZDYkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE2MjEyMFoX DTI1MDYzMDE2MjYyMFowMzExMC8GA1UEAxMoMkZCOTk0Q0QxMjgyMjkyRTZEMjkw N0ZDRUNEN0Y5RTQ3MkY0OTk4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMzp4HBe8Pw40aigMtCsQSooTGVlYXQt5s7KfjF5GR0wziDmeBM8urjswaea k6BhZWAbTMrdzFKwtfC5js5spe65uWa6xpHQ2QtByPVaKV3lovvm7GWtcqEkctYS OU1Iuq02mX2BExTCGVTPpqKxUzcd7VGsZDmQvRnYjhnmeNpq1eQTMwP6bOsdzBZo S0fVT6zUEMUyg0lpu2VqnsCoxXoJKZ14CSszYLKNO67Cf7kQw29Zk/lG2y4Ih0yI csYGS3jw1wKLEwP5uf1gTwO0Y/bwyHMNKyOWxfTbCl/OvObtNCCTDRZS/HkRTVz0 eYxietkP7Kq/8aMPjYLfpY3YQx0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC+5lM0SgikubSkH/OzX+eRy9JmFMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZGE3NzNkZC05NWFhLTQ0N2UtOTkzZC00Y2Y0YTEyNzNiMzEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkYTc3M2Rk LTk1YWEtNDQ3ZS05OTNkLTRjZjRhMTI3M2IzMS8wLzJGQjk5NENEMTI4MjI5MkU2 RDI5MDdGQ0VDRDdGOUU0NzJGNDk5ODUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnbggwDwQCAAIwCQMHACABDfRXADANBgkqhkiG9w0BAQsFAAOCAQEAC23dVzpV 3FZB9S/pVArcxcEj78dLTLHiJRS/aMPLTXUjduDpTQ/RYUcSazO2fSRbMvHbGZPZ Z1G5GVZ/7kHpbnAho38rcPIi8OE+fmXSUpXXqLhuCWJFEuFB/n1GfvPu/RNhQ4u8 ElN8SFy0iTBL6JFqKDoIHXVtyo/8f5sbpyz1SwerwDfg64XGKwcx0Zx9HEiBtTOf dCxfD8Od5CuJEQYFKNhWLA2khJz2GYOFj3MKbhlsqn3VVx0swq4lqTYNhrx7qLql u5u+Bjf7w3cz3b5BhA6WVuEH+8yAVVHNtYH1DRbKmAvEHpiD8rVl7JIHFsIT/4Be Abg05aCVYufzuQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:15 2024 by rpki-client on console-fra.rpki-client.org