$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer (raw, json) Hash identifier: DYxYNmpgL6peQUD6IVm6PcA0johr77pAFBExqmtVgAg= Subject key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: EE289D229F8F277FD8E5971AB442C40B70D4F4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft caRepository: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 26 May 2024 16:36:06 +0000 Certificate not after: Sun 25 May 2025 16:41:06 +0000 Subordinate resources: IP: 103.169.132.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: ee:28:9d:22:9f:8f:27:7f:d8:e5:97:1a:b4:42:c4:0b:70:d4:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 26 16:36:06 2024 GMT Not After : May 25 16:41:06 2025 GMT Subject: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0a:f2:e2:91:90:3f:cb:7c:10:02:ce:74:f8: e4:f0:06:b6:51:43:f1:0c:82:cb:2d:56:d0:6a:5c: 10:ca:36:5c:51:0e:72:10:49:95:79:e6:74:7b:66: ff:f6:6e:11:52:36:bb:4c:99:d8:74:d2:5e:0b:c8: f5:a2:9e:5b:bf:fb:f3:cc:63:e4:3e:aa:76:eb:ce: ba:6f:83:58:2e:89:35:39:67:9e:5d:8a:16:be:63: 55:c6:b1:85:c3:ed:6f:d2:52:b8:50:a5:29:be:b1: c5:e1:47:3f:e2:00:f6:52:4d:0d:82:3c:c5:a9:16: 8a:ae:6f:b6:4f:df:d4:29:69:22:d5:53:4e:53:dc: 49:cb:cd:9b:a0:83:30:6a:7d:16:4e:fb:6b:fe:d2: 0e:3c:80:eb:1f:3f:91:9a:d1:11:c9:2d:bd:96:53: a1:cd:e6:e1:dc:0f:77:7f:eb:f1:0a:ab:c2:11:35: 4d:0e:18:a8:16:5d:40:9f:f4:9b:c2:10:96:f6:13: cb:96:37:62:fc:7e:d7:a5:e4:c1:ff:ba:49:1b:70: f6:a5:17:3d:b5:6a:18:bd:4c:99:e8:e9:ce:a7:a8: 3e:23:5d:b7:c9:e3:c4:bd:13:62:65:03:17:eb:ae: ec:65:6e:77:c1:83:8d:54:5e:51:fd:46:1b:a4:24: be:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.132.0/23 Signature Algorithm: sha256WithRSAEncryption 47:c1:8d:0b:0b:85:ab:8f:f9:43:b4:ab:9f:58:47:02:8c:d3: 4f:9a:3f:50:11:9a:97:6d:64:ed:1b:db:32:a9:4d:09:a8:7e: 23:df:3a:05:8c:2e:92:f3:3e:f4:10:d3:fd:36:6d:e9:9a:85: 8b:62:e0:f6:88:6b:3a:ca:3e:19:66:53:74:19:b7:ae:4d:18: 47:e6:18:d3:43:1a:be:26:17:b7:b6:7c:ea:ea:bf:3c:6a:18: 9d:bd:5e:80:d7:16:93:9a:38:4e:ea:bc:74:33:18:77:86:77: 18:8d:fb:04:7c:76:3b:d3:17:c3:80:f0:3b:4a:77:42:f6:71: 23:29:3b:dc:bc:63:b3:16:2b:0e:e3:8e:b9:8b:5a:02:80:85: 5f:56:52:0f:2e:e9:7c:ac:91:cb:0d:02:03:5b:76:79:aa:d8: f2:63:26:72:f8:cb:94:de:b1:0a:35:53:96:52:17:90:f5:34: 50:f1:df:3e:59:3c:af:a0:86:54:32:ab:4c:63:63:fe:77:0c: 5b:fa:84:e9:00:bf:59:58:5a:f5:8c:82:ff:e7:70:3e:4e:d2: a0:5a:77:dd:20:5e:f5:d2:37:a7:41:cc:0f:7b:68:54:0d:be: 19:b3:4e:60:83:6e:ee:e8:34:4c:80:24:e4:b7:a6:76:28:8f: ea:15:16:9c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAO4onSKfjyd/2OWXGrRCxAtw1PQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyNjE2MzYwNloX DTI1MDUyNTE2NDEwNlowMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5 RTQ3MkQwRDI2N0VFNDlFOEExNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO0K8uKRkD/LfBACznT45PAGtlFD8QyCyy1W0GpcEMo2XFEOchBJlXnmdHtm //ZuEVI2u0yZ2HTSXgvI9aKeW7/788xj5D6qduvOum+DWC6JNTlnnl2KFr5jVcax hcPtb9JSuFClKb6xxeFHP+IA9lJNDYI8xakWiq5vtk/f1ClpItVTTlPcScvNm6CD MGp9Fk77a/7SDjyA6x8/kZrREcktvZZToc3m4dwPd3/r8QqrwhE1TQ4YqBZdQJ/0 m8IQlvYTy5Y3Yvx+16Xkwf+6SRtw9qUXPbVqGL1MmejpzqeoPiNdt8njxL0TYmUD F+uu7GVud8GDjVReUf1GG6QkvnECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDbmjiomThi/2fSeRy0NJn7knooXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZDIwMzFi LTI3NjEtNGMzNi1iNjkwLTViNjlkMTU2OWJhZS8wLzM2RTY4RTJBMjY0RTE4QkZE OUY0OUU0NzJEMEQyNjdFRTQ5RThBMTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqYQwDQYJKoZIhvcNAQELBQADggEBAEfBjQsLhauP+UO0q59YRwKM00+aP1AR mpdtZO0b2zKpTQmofiPfOgWMLpLzPvQQ0/02bemahYti4PaIazrKPhlmU3QZt65N GEfmGNNDGr4mF7e2fOrqvzxqGJ29XoDXFpOaOE7qvHQzGHeGdxiN+wR8djvTF8OA 8DtKd0L2cSMpO9y8Y7MWKw7jjrmLWgKAhV9WUg8u6XyskcsNAgNbdnmq2PJjJnL4 y5TesQo1U5ZSF5D1NFDx3z5ZPK+ghlQyq0xjY/53DFv6hOkAv1lYWvWMgv/ncD5O 0qBad90gXvXSN6dBzA97aFQNvhmzTmCDbu7oNEyAJOS3pnYoj+oVFpw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:15 2024 by rpki-client on console-fra.rpki-client.org