$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer File: 3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer (raw, json) Hash identifier: OQtehP44UpRAzTgSpA2RtRPyLKR0+0csljFLDqDI7hE= Subject key identifier: 3A:D7:DA:61:EB:A5:80:03:D3:EF:29:F7:9A:AF:BC:AD:86:CE:D6:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2515A5F94D84764C9289182D581536BFD6B55553 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.mft caRepository: rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 06 Aug 2024 07:31:16 +0000 Certificate not after: Tue 05 Aug 2025 07:36:16 +0000 Subordinate resources: IP: 103.175.82.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:15:a5:f9:4d:84:76:4c:92:89:18:2d:58:15:36:bf:d6:b5:55:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 6 07:31:16 2024 GMT Not After : Aug 5 07:36:16 2025 GMT Subject: CN=3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:17:a6:24:6e:e7:0c:74:b8:ed:4d:b6:b6:6a: 5d:0c:32:3c:45:dd:18:5a:67:a8:6a:59:7a:e6:a2: 94:6e:5e:06:92:5d:fc:ac:ec:c3:cf:bf:d2:43:c1: d2:f9:a8:13:f0:e6:36:6d:2e:cc:aa:58:7a:df:e3: f0:89:88:23:70:9e:07:10:a2:bd:40:90:1e:84:2a: 5e:9e:a0:b1:34:01:df:15:5e:95:de:c2:39:62:2d: f1:d5:dc:81:6f:21:36:57:3f:8e:fe:fa:c5:41:df: 89:2e:e5:49:ff:f8:4e:4e:bf:16:cd:b6:13:42:97: 42:06:e0:ec:3e:d5:35:07:0d:eb:c4:55:4a:9d:a6: 73:76:dd:99:e7:46:35:07:0e:4f:3a:98:1f:0a:73: 1f:da:82:ab:af:fd:31:d6:c9:25:81:38:31:45:14: 84:00:b3:36:33:4a:9e:39:18:f9:dd:de:cd:76:05: bf:eb:f9:26:85:58:bc:ff:67:e9:b9:70:bd:83:6f: f7:63:e2:9e:17:ae:1b:c4:7a:19:98:c9:bb:49:9e: 90:dd:2f:17:74:7d:c4:3e:41:21:b3:a4:14:71:67: 2e:8a:db:5d:aa:0b:99:56:b0:3c:44:75:0e:cd:77: 97:79:e7:34:93:52:f7:16:4c:6d:90:19:74:2b:f1: b2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3A:D7:DA:61:EB:A5:80:03:D3:EF:29:F7:9A:AF:BC:AD:86:CE:D6:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.82.0/23 Signature Algorithm: sha256WithRSAEncryption 58:c3:90:8c:e0:64:5d:3e:3a:0f:1a:2a:0f:ed:7e:a4:00:b9: c1:0b:ce:9c:bc:e6:8d:41:61:99:6b:99:08:a2:e9:85:89:76: f9:92:2d:d7:8a:87:fd:88:78:c5:c7:91:3c:5e:eb:a3:87:23: 6d:06:14:25:9f:f8:fb:6f:e6:e6:88:b5:63:37:84:73:8b:7b: c1:2d:7a:1b:fd:35:a7:0c:2b:59:d7:4f:da:b0:4a:b6:75:7c: e6:a2:d3:98:35:4b:38:3a:03:90:2c:20:47:8a:8d:a4:cc:31: 63:cd:02:b5:1b:73:a2:e1:b5:93:6a:e1:14:31:3c:7b:61:46: 61:bf:21:76:11:ac:b7:01:f2:fe:68:2c:cf:b0:02:03:78:dc: 54:5b:fe:2b:da:82:de:3e:06:f3:86:d7:69:7c:f5:1d:99:fa: 6a:a8:0e:5e:e1:f7:d9:6d:15:67:b9:80:36:14:02:d1:f9:9a: bb:1e:00:54:26:0b:70:a6:4c:88:bd:d2:3d:2f:21:ea:33:f4: c7:38:d1:6b:be:da:97:83:76:03:a3:6c:96:b9:c8:9d:e2:1e: 72:09:9f:29:ae:d3:a8:24:07:b1:59:ca:f5:7b:3a:01:e1:a6: 70:ed:b9:8b:a1:2d:2a:2a:24:17:8b:0b:61:f0:58:18:2c:a4: ba:00:2c:41 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJRWl+U2EdkySiRgtWBU2v9a1VVMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwNjA3MzExNloX DTI1MDgwNTA3MzYxNlowMzExMC8GA1UEAxMoM0FEN0RBNjFFQkE1ODAwM0QzRUYy OUY3OUFBRkJDQUQ4NkNFRDYxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEXpiRu5wx0uO1NtrZqXQwyPEXdGFpnqGpZeuailG5eBpJd/Kzsw8+/0kPB 0vmoE/DmNm0uzKpYet/j8ImII3CeBxCivUCQHoQqXp6gsTQB3xVeld7COWIt8dXc gW8hNlc/jv76xUHfiS7lSf/4Tk6/Fs22E0KXQgbg7D7VNQcN68RVSp2mc3bdmedG NQcOTzqYHwpzH9qCq6/9MdbJJYE4MUUUhACzNjNKnjkY+d3ezXYFv+v5JoVYvP9n 6blwvYNv92PinheuG8R6GZjJu0mekN0vF3R9xD5BIbOkFHFnLorbXaoLmVawPER1 Ds13l3nnNJNS9xZMbZAZdCvxsksCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDrX2mHrpYAD0+8p95qvvK2GztYUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mY2E1NDc4MS05Njc4LTQ3NWMtYWMxYi1jZDRiZmNmNWQwZWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjYTU0Nzgx LTk2NzgtNDc1Yy1hYzFiLWNkNGJmY2Y1ZDBlYS8wLzNBRDdEQTYxRUJBNTgwMDNE M0VGMjlGNzlBQUZCQ0FEODZDRUQ2MTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnr1IwDQYJKoZIhvcNAQELBQADggEBAFjDkIzgZF0+Og8aKg/tfqQAucELzpy8 5o1BYZlrmQii6YWJdvmSLdeKh/2IeMXHkTxe66OHI20GFCWf+Ptv5uaItWM3hHOL e8Etehv9NacMK1nXT9qwSrZ1fOai05g1Szg6A5AsIEeKjaTMMWPNArUbc6LhtZNq 4RQxPHthRmG/IXYRrLcB8v5oLM+wAgN43FRb/ivagt4+BvOG12l89R2Z+mqoDl7h 99ltFWe5gDYUAtH5mrseAFQmC3CmTIi90j0vIeoz9Mc40Wu+2peDdgOjbJa5yJ3i HnIJnymu06gkB7FZyvV7OgHhpnDtuYuhLSoqJBeLC2HwWBgspLoALEE= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:15 2024 by rpki-client on console-fra.rpki-client.org