$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3A594744F1BEA2F04C7437AD77133DD4423F2302.cer File: 3A594744F1BEA2F04C7437AD77133DD4423F2302.cer (raw, json) Hash identifier: IesyWYJ5cQteVKAOK7/7kIwkdeTud+LOZEm4y9WuMSg= Subject key identifier: 3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D177206296A84205255F72F39D94360B1C0DDD2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.mft caRepository: rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 23 Apr 2024 09:30:05 +0000 Certificate not after: Tue 22 Apr 2025 09:35:05 +0000 Subordinate resources: IP: 103.146.144.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:17:72:06:29:6a:84:20:52:55:f7:2f:39:d9:43:60:b1:c0:dd:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 23 09:30:05 2024 GMT Not After : Apr 22 09:35:05 2025 GMT Subject: CN=3A594744F1BEA2F04C7437AD77133DD4423F2302 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c2:0e:a8:3d:51:ad:ef:2d:8b:1e:8c:4b:bb: 78:e3:0d:8d:11:0e:9b:d1:2f:c5:96:27:b5:ac:f5: eb:a7:2f:88:99:f8:5d:52:7b:88:18:b6:37:73:95: 33:cf:59:c2:2e:8c:43:a3:14:fe:f3:40:33:9b:b2: 66:7f:b6:43:05:1d:8b:37:89:d0:2d:7f:1e:ac:83: a4:23:4b:c1:b2:d8:09:9a:31:fa:a3:5f:b5:19:35: d9:22:ab:1a:40:d0:e5:cc:a1:16:65:07:7c:2b:91: b0:53:22:a4:38:45:7b:79:a3:68:fc:0c:5f:ea:8d: bf:41:c7:94:07:19:bb:65:51:3b:25:1a:e5:34:10: c3:31:e9:98:0b:3f:d5:6f:79:ad:f4:e1:74:1d:ec: 4f:6f:5a:49:b0:23:f0:07:1e:05:b8:da:25:b6:05: 17:47:4a:47:4b:91:57:bc:90:0b:1b:2a:75:3b:dc: 20:e0:8c:9d:4b:08:8b:78:5f:57:91:1a:b3:61:c2: 1b:0d:06:86:32:8a:7e:bf:bf:de:af:ba:ab:b7:9c: 3b:72:2c:ee:63:37:7f:10:19:b4:d5:df:9d:8f:06: ff:ad:c2:f6:85:65:65:1b:74:de:3c:3b:97:a4:57: b3:05:93:af:4b:fd:0f:51:2f:04:84:cd:82:d7:85: ec:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3A:59:47:44:F1:BE:A2:F0:4C:74:37:AD:77:13:3D:D4:42:3F:23:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/40614163-4ca4-4936-bf8b-84d8c2d1f02d/0/3A594744F1BEA2F04C7437AD77133DD4423F2302.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.144.0/23 Signature Algorithm: sha256WithRSAEncryption 62:90:dd:05:a3:07:d7:9f:10:09:28:1b:d5:86:22:12:92:2c: f3:eb:e9:45:ac:f8:62:ed:c1:28:f1:0b:58:f1:81:16:26:84: 6f:f6:4e:84:81:07:d1:59:63:9a:41:74:33:e9:d8:da:7e:9f: 06:3c:7a:86:18:ce:57:3c:ac:e2:c4:85:06:a0:93:9f:c0:d3: c0:af:f8:f5:d5:f3:47:72:96:b8:e5:5a:78:32:0b:4a:ec:e3: bb:ac:b7:e7:0a:62:16:91:3c:ca:37:aa:7f:0b:d5:86:44:8a: 66:41:c7:87:88:4a:c5:48:a2:78:a6:8f:91:21:c3:42:fe:9d: 23:bd:c5:5f:c1:52:b3:c7:29:7b:d0:91:dc:09:13:d3:f5:73: 65:9c:2b:51:b8:ed:c9:b3:e3:34:b1:92:90:b3:40:9d:e0:51: 71:41:44:3f:71:fa:7d:05:fa:e9:12:6c:a4:3f:08:7d:df:08: a1:72:f7:cb:b3:09:1a:5b:7e:c3:1a:fa:10:c6:3a:39:8b:d7: 51:1c:d9:d5:bf:b2:d7:48:9d:65:48:ed:45:f6:da:2f:20:20: 46:10:65:f1:c4:a6:f3:ed:39:a4:13:d6:40:49:0e:75:1d:a5: 05:43:20:a5:75:11:97:b7:27:13:81:28:cb:66:40:c2:80:da: 75:f0:7f:0d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPRdyBilqhCBSVfcvOdlDYLHA3dIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyMzA5MzAwNVoX DTI1MDQyMjA5MzUwNVowMzExMC8GA1UEAxMoM0E1OTQ3NDRGMUJFQTJGMDRDNzQz N0FENzcxMzNERDQ0MjNGMjMwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLCDqg9Ua3vLYsejEu7eOMNjREOm9EvxZYntaz166cviJn4XVJ7iBi2N3OV M89Zwi6MQ6MU/vNAM5uyZn+2QwUdizeJ0C1/HqyDpCNLwbLYCZox+qNftRk12SKr GkDQ5cyhFmUHfCuRsFMipDhFe3mjaPwMX+qNv0HHlAcZu2VROyUa5TQQwzHpmAs/ 1W95rfThdB3sT29aSbAj8AceBbjaJbYFF0dKR0uRV7yQCxsqdTvcIOCMnUsIi3hf V5Eas2HCGw0GhjKKfr+/3q+6q7ecO3Is7mM3fxAZtNXfnY8G/63C9oVlZRt03jw7 l6RXswWTr0v9D1EvBITNgteF7EkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDpZR0TxvqLwTHQ3rXcTPdRCPyMCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80MDYxNDE2My00Y2E0LTQ5MzYtYmY4Yi04NGQ4YzJkMWYwMmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQwNjE0MTYz LTRjYTQtNDkzNi1iZjhiLTg0ZDhjMmQxZjAyZC8wLzNBNTk0NzQ0RjFCRUEyRjA0 Qzc0MzdBRDc3MTMzREQ0NDIzRjIzMDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnkpAwDQYJKoZIhvcNAQELBQADggEBAGKQ3QWjB9efEAkoG9WGIhKSLPPr6UWs +GLtwSjxC1jxgRYmhG/2ToSBB9FZY5pBdDPp2Np+nwY8eoYYzlc8rOLEhQagk5/A 08Cv+PXV80dylrjlWngyC0rs47ust+cKYhaRPMo3qn8L1YZEimZBx4eISsVIonim j5Ehw0L+nSO9xV/BUrPHKXvQkdwJE9P1c2WcK1G47cmz4zSxkpCzQJ3gUXFBRD9x +n0F+ukSbKQ/CH3fCKFy98uzCRpbfsMa+hDGOjmL11Ec2dW/stdInWVI7UX22i8g IEYQZfHEpvPtOaQT1kBJDnUdpQVDIKV1EZe3JxOBKMtmQMKA2nXwfw0= -----END CERTIFICATE-----Generated at Tue May 7 16:42:34 2024 by rpki-client on console-ams.rpki-client.org