$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/38992A0A64D724D15761F2F9410D85186E2311FE.cer File: 38992A0A64D724D15761F2F9410D85186E2311FE.cer (raw, json) Hash identifier: jfeGL6snUqf6xNy5BlG4TYo1OH4MQBPo776DRaNK9Mg= Subject key identifier: 38:99:2A:0A:64:D7:24:D1:57:61:F2:F9:41:0D:85:18:6E:23:11:FE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5FB421C0609D371639F9ACECE7D6E1CF4292D36D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e6929901-a137-4a35-8134-1804f94792df/0/38992A0A64D724D15761F2F9410D85186E2311FE.mft caRepository: rsync://repo-rpki.idnic.net/repo/e6929901-a137-4a35-8134-1804f94792df/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 19 Nov 2024 16:41:55 +0000 Certificate not after: Tue 18 Nov 2025 16:46:55 +0000 Subordinate resources: IP: 103.143.95.0/24 IP: 103.153.184.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b4:21:c0:60:9d:37:16:39:f9:ac:ec:e7:d6:e1:cf:42:92:d3:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 19 16:41:55 2024 GMT Not After : Nov 18 16:46:55 2025 GMT Subject: CN=38992A0A64D724D15761F2F9410D85186E2311FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5d:90:0f:aa:5b:3c:3e:8f:30:4c:0b:89:d9: d6:a4:dc:34:d4:66:e1:af:9d:44:9c:da:63:c6:4d: e9:78:f7:b5:73:1b:97:c9:82:68:87:4a:6e:17:b9: 50:f0:04:d8:bd:b8:ef:25:36:02:ee:26:94:03:fe: bf:24:cf:8e:40:59:d8:f3:a7:c4:92:a2:9f:9d:ae: c5:49:06:d5:78:09:1b:63:b0:61:a4:c5:51:8e:be: 8d:e2:9d:8b:21:76:8d:c5:77:40:07:a7:51:af:5b: 28:fa:c4:0e:a6:15:1b:54:da:f5:51:62:02:12:70: 12:9d:03:4d:af:9d:61:e7:fb:a4:c1:1a:6b:87:89: 08:ea:b3:ad:03:8a:f6:b9:41:15:ec:1c:69:16:d1: 3a:4c:14:e8:7a:69:7e:5b:1e:a1:43:8a:f9:4a:8e: ca:79:e3:8f:f9:4c:ce:dc:4f:0d:c9:c2:f0:d2:77: ad:e0:82:c9:04:dd:e1:a9:0b:7b:aa:c1:a0:94:e7: f3:4a:e1:c8:87:18:9f:5c:e4:2d:0f:49:1b:ad:42: 3a:34:ab:20:02:f3:80:85:68:0a:e1:3e:0f:62:44: fd:9e:86:6f:cc:10:7e:0d:b6:fb:a6:c2:3d:1a:f0: 10:bb:b1:0a:33:4a:b6:44:48:e9:d7:41:5d:cd:ad: 48:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 38:99:2A:0A:64:D7:24:D1:57:61:F2:F9:41:0D:85:18:6E:23:11:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e6929901-a137-4a35-8134-1804f94792df/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e6929901-a137-4a35-8134-1804f94792df/0/38992A0A64D724D15761F2F9410D85186E2311FE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.95.0/24 103.153.184.0/24 Signature Algorithm: sha256WithRSAEncryption 25:82:36:73:25:49:bf:f7:a8:57:1c:bf:ba:8d:a3:52:ed:5f: 15:4a:01:e6:f0:26:ba:ca:c0:89:de:ed:00:b4:98:3a:c9:3c: 32:04:ed:91:b1:3e:c1:b3:40:c8:3a:ed:59:e4:75:98:95:94: a9:22:4a:2d:56:a1:6e:4a:48:ba:20:59:84:df:cd:88:49:e6: 32:26:ae:62:f9:10:cb:a6:03:3f:e3:b7:46:7e:e0:e1:32:23: 94:73:5b:6c:bf:e8:55:0d:af:29:6d:32:76:8c:88:70:8f:54: aa:8d:8b:f0:ff:93:fa:b2:4a:52:cd:09:c1:f7:2f:7d:33:d2: f3:ba:0c:02:d2:b7:b2:7c:5e:8b:2a:ec:60:bf:07:0a:2e:54: de:5e:35:e2:6e:fc:7e:bf:45:52:c2:89:90:8a:68:81:9c:9c: 8c:5f:09:6c:31:bf:aa:de:6c:1c:53:58:32:55:98:58:ec:a5: dc:6c:0e:81:d7:08:4e:9a:30:af:a9:86:27:e8:58:bd:f4:e2: d1:c8:34:fc:29:6d:9a:84:b9:45:e6:c5:46:c1:2e:05:97:58: 4b:2d:c2:d5:e6:8e:47:f2:5b:99:31:44:66:de:e5:dc:cd:fe: 00:c8:f9:de:20:6f:9f:dd:90:a6:07:be:87:c5:7e:fb:0c:ce: 9d:32:e1:22 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUX7QhwGCdNxY5+azs59bhz0KS020wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExOTE2NDE1NVoX DTI1MTExODE2NDY1NVowMzExMC8GA1UEAxMoMzg5OTJBMEE2NEQ3MjREMTU3NjFG MkY5NDEwRDg1MTg2RTIzMTFGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN1dkA+qWzw+jzBMC4nZ1qTcNNRm4a+dRJzaY8ZN6Xj3tXMbl8mCaIdKbhe5 UPAE2L247yU2Au4mlAP+vyTPjkBZ2POnxJKin52uxUkG1XgJG2OwYaTFUY6+jeKd iyF2jcV3QAenUa9bKPrEDqYVG1Ta9VFiAhJwEp0DTa+dYef7pMEaa4eJCOqzrQOK 9rlBFewcaRbROkwU6HppflseoUOK+UqOynnjj/lMztxPDcnC8NJ3reCCyQTd4akL e6rBoJTn80rhyIcYn1zkLQ9JG61COjSrIALzgIVoCuE+D2JE/Z6Gb8wQfg22+6bC PRrwELuxCjNKtkRI6ddBXc2tSC0CAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDiZKgpk1yTRV2Hy+UENhRhuIxH+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNjkyOTkwMS1hMTM3LTRhMzUtODEzNC0xODA0Zjk0NzkyZGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2OTI5OTAx LWExMzctNGEzNS04MTM0LTE4MDRmOTQ3OTJkZi8wLzM4OTkyQTBBNjRENzI0RDE1 NzYxRjJGOTQxMEQ4NTE4NkUyMzExRkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BABnj18DBABnmbgwDQYJKoZIhvcNAQELBQADggEBACWCNnMlSb/3qFccv7qNo1Lt XxVKAebwJrrKwIne7QC0mDrJPDIE7ZGxPsGzQMg67VnkdZiVlKkiSi1WoW5KSLog WYTfzYhJ5jImrmL5EMumAz/jt0Z+4OEyI5RzW2y/6FUNryltMnaMiHCPVKqNi/D/ k/qySlLNCcH3L30z0vO6DALSt7J8Xosq7GC/BwouVN5eNeJu/H6/RVLCiZCKaIGc nIxfCWwxv6rebBxTWDJVmFjspdxsDoHXCE6aMK+phifoWL304tHINPwpbZqEuUXm xUbBLgWXWEstwtXmjkfyW5kxRGbe5dzN/gDI+d4gb5/dkKYHvofFfvsMzp0y4SI= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:20 2024 by rpki-client on console-ams.rpki-client.org