$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/35C14EEB27CE42DEB1F331CF080FE5F918D2364E.cer File: 35C14EEB27CE42DEB1F331CF080FE5F918D2364E.cer (raw, json) Hash identifier: DQ47MkSYrlPrsk8vL4COnnUlu5P09TmBpwkO8fu752s= Subject key identifier: 35:C1:4E:EB:27:CE:42:DE:B1:F3:31:CF:08:0F:E5:F9:18:D2:36:4E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 33683371FBDDCD310A7298FEFAF494E0EC8F28B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/36cc4734-beb6-4e33-9b1c-46dcd16425a1/0/35C14EEB27CE42DEB1F331CF080FE5F918D2364E.mft caRepository: rsync://repo-rpki.idnic.net/repo/36cc4734-beb6-4e33-9b1c-46dcd16425a1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 14 Nov 2024 18:16:01 +0000 Certificate not after: Thu 13 Nov 2025 18:21:01 +0000 Subordinate resources: IP: 103.181.77.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:68:33:71:fb:dd:cd:31:0a:72:98:fe:fa:f4:94:e0:ec:8f:28:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 18:16:01 2024 GMT Not After : Nov 13 18:21:01 2025 GMT Subject: CN=35C14EEB27CE42DEB1F331CF080FE5F918D2364E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:97:01:6b:a4:c2:d8:de:1d:77:91:b1:42:55: 11:d1:a4:46:32:8a:9c:7b:7f:d2:92:9c:a0:a3:c3: 6b:8b:86:0e:66:79:53:50:ef:26:14:59:f1:5a:78: 69:bf:36:00:6c:91:d9:51:f0:b6:1f:27:18:06:81: d3:6f:ca:62:bc:2c:61:59:df:5e:af:94:a6:f0:29: 76:29:23:0b:2c:43:59:e9:03:60:3e:2e:1c:6d:c5: a8:6f:52:1f:1b:be:7a:1a:6e:49:05:bf:10:fe:1d: 0e:c1:51:b7:af:12:ab:d0:96:4f:73:af:f4:e8:2e: 68:4f:4f:57:e0:c3:f7:be:dc:d0:7b:29:80:7d:95: d4:ab:25:9b:ef:24:27:4b:c7:c5:67:0f:fb:6c:79: e1:4b:c2:5f:43:0f:7d:af:ff:4d:7c:6a:40:8c:dc: d3:4d:74:3c:21:72:2f:3b:b0:42:bc:11:7d:44:05: 37:4c:fe:d3:75:a5:86:ec:e1:9a:96:11:58:59:f7: 94:a3:ad:38:d3:c3:b7:0e:80:9a:31:8b:68:ea:f2: 1b:6f:0c:ef:44:49:92:53:f4:df:0a:50:f3:7e:2c: b8:31:a5:b4:1c:c8:a1:03:38:7c:39:a6:ab:4e:2c: 83:d4:63:4d:aa:9c:98:9b:9b:f8:a7:92:b6:f8:6e: 9c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:C1:4E:EB:27:CE:42:DE:B1:F3:31:CF:08:0F:E5:F9:18:D2:36:4E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/36cc4734-beb6-4e33-9b1c-46dcd16425a1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/36cc4734-beb6-4e33-9b1c-46dcd16425a1/0/35C14EEB27CE42DEB1F331CF080FE5F918D2364E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.77.0/24 Signature Algorithm: sha256WithRSAEncryption 84:9d:dd:34:67:eb:9c:9a:d0:27:ef:cd:9d:28:69:25:f7:c4: fb:1a:28:49:ff:3b:a2:e9:f6:f6:70:8f:27:d6:a2:d4:1d:57: de:d3:b1:5a:8e:0a:fe:ec:87:48:99:b8:6a:49:94:8f:74:47: 37:dd:9b:dc:92:ef:20:7e:7c:f1:1a:0b:d7:58:46:d2:d1:7e: b7:c6:63:3c:86:58:13:fc:f1:a2:a9:4d:96:9d:91:d4:6f:31: 67:81:62:8e:71:4f:27:c6:77:56:ec:1c:65:8f:3c:1f:25:8d: 31:ae:61:c4:24:87:0f:50:ba:df:d7:a9:06:fc:3c:50:45:20: 0e:5d:7d:21:b6:02:16:50:ce:a9:77:1b:fb:6b:ba:2d:c2:7c: 0e:5c:33:89:35:22:5f:d8:97:41:b9:57:83:a3:82:b5:df:ae: 70:ef:a8:f5:e7:f4:8c:12:3c:57:92:ba:2b:7f:a5:48:26:23: 73:f5:fa:97:84:c6:57:04:f9:39:42:0b:a0:eb:7a:b2:3f:c7: b1:76:d4:e7:1e:27:59:89:0f:4d:51:ea:60:86:5e:a9:2f:18: 1c:cf:d8:37:74:3c:41:b6:94:46:3f:f1:ab:47:5a:0e:3c:1c: 5a:e0:0e:38:25:ab:93:2a:c5:83:07:5b:bd:79:d5:de:97:13: a9:47:a6:0c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUM2gzcfvdzTEKcpj++vSU4OyPKLQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExNDE4MTYwMVoX DTI1MTExMzE4MjEwMVowMzExMC8GA1UEAxMoMzVDMTRFRUIyN0NFNDJERUIxRjMz MUNGMDgwRkU1RjkxOEQyMzY0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWXAWukwtjeHXeRsUJVEdGkRjKKnHt/0pKcoKPDa4uGDmZ5U1DvJhRZ8Vp4 ab82AGyR2VHwth8nGAaB02/KYrwsYVnfXq+UpvApdikjCyxDWekDYD4uHG3FqG9S Hxu+ehpuSQW/EP4dDsFRt68Sq9CWT3Ov9OguaE9PV+DD977c0HspgH2V1Kslm+8k J0vHxWcP+2x54UvCX0MPfa//TXxqQIzc0010PCFyLzuwQrwRfUQFN0z+03Wlhuzh mpYRWFn3lKOtONPDtw6AmjGLaOryG28M70RJklP03wpQ834suDGltBzIoQM4fDmm q04sg9RjTaqcmJub+KeStvhunEsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDXBTusnzkLesfMxzwgP5fkY0jZOMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zNmNjNDczNC1iZWI2LTRlMzMtOWIxYy00NmRjZDE2NDI1YTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2Y2M0NzM0 LWJlYjYtNGUzMy05YjFjLTQ2ZGNkMTY0MjVhMS8wLzM1QzE0RUVCMjdDRTQyREVC MUYzMzFDRjA4MEZFNUY5MThEMjM2NEUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABntU0wDQYJKoZIhvcNAQELBQADggEBAISd3TRn65ya0CfvzZ0oaSX3xPsaKEn/ O6Lp9vZwjyfWotQdV97TsVqOCv7sh0iZuGpJlI90Rzfdm9yS7yB+fPEaC9dYRtLR frfGYzyGWBP88aKpTZadkdRvMWeBYo5xTyfGd1bsHGWPPB8ljTGuYcQkhw9Qut/X qQb8PFBFIA5dfSG2AhZQzql3G/trui3CfA5cM4k1Il/Yl0G5V4OjgrXfrnDvqPXn 9IwSPFeSuit/pUgmI3P1+peExlcE+TlCC6DrerI/x7F21OceJ1mJD01R6mCGXqkv GBzP2Dd0PEG2lEY/8atHWg48HFrgDjglq5MqxYMHW7151d6XE6lHpgw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:40 2024 by rpki-client on console-ams.rpki-client.org