$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/37A94886A0E275DC8F922930328C955CC4307FF1.cer File: 37A94886A0E275DC8F922930328C955CC4307FF1.cer (raw, json) Hash identifier: 3Zkc8A3SG8tyXGE+yhvh0AYqW7Xg7zi55FvSdzGhhik= Subject key identifier: 37:A9:48:86:A0:E2:75:DC:8F:92:29:30:32:8C:95:5C:C4:30:7F:F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 777643AFF14853855645A24F21CDB93716670381 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1/37A94886A0E275DC8F922930328C955CC4307FF1.mft caRepository: rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 30 Mar 2024 11:14:07 +0000 Certificate not after: Sat 29 Mar 2025 11:19:07 +0000 Subordinate resources: IP: 36.50.253.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:76:43:af:f1:48:53:85:56:45:a2:4f:21:cd:b9:37:16:67:03:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 30 11:14:07 2024 GMT Not After : Mar 29 11:19:07 2025 GMT Subject: CN=37A94886A0E275DC8F922930328C955CC4307FF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d6:be:9b:33:12:6e:da:5c:5b:de:fc:de:29: 19:86:21:4b:2f:2c:d8:6b:c8:a0:e8:c4:96:49:f7: 61:24:ee:5c:91:e9:20:fe:18:92:06:a2:4a:f4:f6: 0a:a8:b4:e3:86:1d:37:46:ef:7e:7d:3b:8f:e5:6f: 61:be:03:e0:9d:c4:f6:7c:7f:48:31:37:0b:bc:5e: ac:1f:24:fa:cc:14:98:34:c9:0e:b1:4f:10:19:7f: 99:1b:18:13:70:33:0c:27:a1:de:76:0e:ef:3d:e1: fa:06:b3:12:1f:37:9a:42:a9:30:27:5a:0e:d9:b0: f3:d4:c5:3f:1a:59:b4:8b:08:0e:0e:23:bd:ec:90: f2:8d:36:2c:b0:53:9a:18:04:84:c8:87:f7:15:b4: 07:2a:58:da:11:a9:3f:8d:f1:ba:1a:30:b3:87:bc: 5d:a4:2d:1e:c0:99:4c:09:c9:bb:ef:b7:be:9e:16: 3d:5b:34:01:bb:86:09:11:3c:0c:85:b5:75:94:d4: 0b:57:c5:06:7b:a4:dc:a7:20:10:45:5a:30:47:51: 1e:53:c4:de:d8:59:31:a5:e6:ab:31:af:fa:0e:d5: 15:41:8d:da:a6:ee:e0:a2:7a:1f:41:43:94:bc:80: 62:cd:63:c3:b0:07:fd:be:21:6a:72:71:2a:02:7e: b2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 37:A9:48:86:A0:E2:75:DC:8F:92:29:30:32:8C:95:5C:C4:30:7F:F1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/00a6feaa-6b4f-47cf-9e3c-00aeac67a32a/1/37A94886A0E275DC8F922930328C955CC4307FF1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 36.50.253.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:62:2a:04:a3:59:ae:bb:cc:32:be:df:ca:29:5a:53:13:21: e2:f5:f4:da:07:07:69:25:51:b6:a7:7d:41:0f:58:61:da:cd: 10:f8:50:72:ea:11:1a:23:19:e0:5c:83:4a:4d:01:71:98:4f: 05:86:ae:81:45:86:98:50:0a:98:9a:e1:4b:7b:84:14:b0:81: 75:8d:a1:28:dc:f7:91:b4:70:01:f9:e7:e8:4a:5e:8b:ce:df: eb:c1:91:65:99:1c:0e:ed:ec:21:49:48:f0:ba:f5:8a:bc:6c: 0a:1b:13:b0:71:3c:f5:fb:df:0f:0b:2a:22:10:21:74:d6:22: d4:9b:af:f8:85:71:cc:b6:8f:30:c6:95:1f:0e:ed:44:e5:f0: 69:aa:15:b9:1c:ec:85:63:73:57:c3:5e:10:ae:fa:4d:47:1f: 1d:41:fe:fa:c0:ef:96:3d:1d:1c:54:91:ed:e9:8a:3b:ae:d8: ef:c8:ce:a1:9d:9c:f8:a1:9c:97:d3:f5:f8:11:69:25:a3:45: aa:0c:68:c1:ff:b2:35:a8:f6:5d:e5:d5:80:75:7f:f6:f6:21: 51:75:9d:52:17:39:c7:9b:03:1e:48:e8:5f:34:5c:43:82:36: d2:cb:21:3f:8b:7f:06:40:f3:d3:a9:8a:e7:5a:df:e9:94:79: db:a2:1e:34 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUd3ZDr/FIU4VWRaJPIc25NxZnA4EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMzMDExMTQwN1oX DTI1MDMyOTExMTkwN1owMzExMC8GA1UEAxMoMzdBOTQ4ODZBMEUyNzVEQzhGOTIy OTMwMzI4Qzk1NUNDNDMwN0ZGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM3WvpszEm7aXFve/N4pGYYhSy8s2GvIoOjElkn3YSTuXJHpIP4YkgaiSvT2 Cqi044YdN0bvfn07j+VvYb4D4J3E9nx/SDE3C7xerB8k+swUmDTJDrFPEBl/mRsY E3AzDCeh3nYO7z3h+gazEh83mkKpMCdaDtmw89TFPxpZtIsIDg4jveyQ8o02LLBT mhgEhMiH9xW0BypY2hGpP43xuhows4e8XaQtHsCZTAnJu++3vp4WPVs0AbuGCRE8 DIW1dZTUC1fFBnuk3KcgEEVaMEdRHlPE3thZMaXmqzGv+g7VFUGN2qbu4KJ6H0FD lLyAYs1jw7AH/b4hanJxKgJ+spsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDepSIag4nXcj5IpMDKMlVzEMH/xMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wMGE2ZmVhYS02YjRmLTQ3Y2YtOWUzYy0wMGFlYWM2N2EzMmEvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwYTZmZWFh LTZiNGYtNDdjZi05ZTNjLTAwYWVhYzY3YTMyYS8xLzM3QTk0ODg2QTBFMjc1REM4 RjkyMjkzMDMyOEM5NTVDQzQzMDdGRjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAAkMv0wDQYJKoZIhvcNAQELBQADggEBAJpiKgSjWa67zDK+38opWlMTIeL19NoH B2klUbanfUEPWGHazRD4UHLqERojGeBcg0pNAXGYTwWGroFFhphQCpia4Ut7hBSw gXWNoSjc95G0cAH55+hKXovO3+vBkWWZHA7t7CFJSPC69Yq8bAobE7BxPPX73w8L KiIQIXTWItSbr/iFccy2jzDGlR8O7UTl8GmqFbkc7IVjc1fDXhCu+k1HHx1B/vrA 75Y9HRxUke3pijuu2O/IzqGdnPihnJfT9fgRaSWjRaoMaMH/sjWo9l3l1YB1f/b2 IVF1nVIXOcebAx5I6F80XEOCNtLLIT+LfwZA89Opiuda3+mUeduiHjQ= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:40 2024 by rpki-client on console-ams.rpki-client.org