$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3D93688202931D72322A7EE0053964A2DD8EB457.cer File: 3D93688202931D72322A7EE0053964A2DD8EB457.cer (raw, json) Hash identifier: M8dywGHPFNDEx6BH+DC/WVd0kOgZhutIN9LThVRJDbM= Subject key identifier: 3D:93:68:82:02:93:1D:72:32:2A:7E:E0:05:39:64:A2:DD:8E:B4:57 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 59E54C4617D5FE07058CD3D23EB73DF566484125 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3D93688202931D72322A7EE0053964A2DD8EB457.mft caRepository: rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 29 Jan 2024 12:29:10 +0000 Certificate not after: Mon 27 Jan 2025 12:34:10 +0000 Subordinate resources: IP: 103.184.64.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:e5:4c:46:17:d5:fe:07:05:8c:d3:d2:3e:b7:3d:f5:66:48:41:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 29 12:29:10 2024 GMT Not After : Jan 27 12:34:10 2025 GMT Subject: CN=3D93688202931D72322A7EE0053964A2DD8EB457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c5:2d:11:78:3a:84:0b:dd:a6:3e:67:94:b0: bf:7c:79:7a:7f:25:bd:b1:f2:b7:f5:7b:f2:c1:3a: aa:97:b7:64:b7:3c:fc:c1:97:92:34:81:41:26:3d: e4:76:66:35:cc:8d:e1:e8:e4:97:55:0d:db:fa:95: b9:00:77:00:61:98:be:2f:9b:44:5e:5f:90:f0:5f: c3:9e:19:e8:a8:b4:93:f6:21:80:5f:c7:5d:b3:04: f8:fa:95:6c:67:0b:4f:e1:17:58:19:e6:d9:0e:be: 68:b4:d9:af:30:c8:75:7a:91:f6:97:49:e5:c9:04: 07:4b:99:2b:66:e6:51:2d:80:b3:90:fb:2e:eb:91: ed:33:bc:47:a1:68:94:70:24:f7:e4:43:04:bc:f7: b5:fa:ba:b3:97:d3:0d:6d:da:07:57:e1:ea:74:38: 62:75:bc:43:06:2d:cd:46:c0:8f:b1:8d:e7:62:36: 11:4c:51:f9:cc:ba:88:ff:a5:f8:07:da:27:fb:55: 9e:50:55:52:4d:16:d7:c9:f5:5a:86:13:d7:c7:75: 3d:97:4c:f6:f9:d5:32:3b:4c:01:a7:60:2a:a0:64: b3:6c:af:15:93:fa:3c:0a:27:40:74:70:d0:77:df: 96:94:37:ff:a2:44:c5:30:ab:a2:46:db:ff:47:c5: 65:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3D:93:68:82:02:93:1D:72:32:2A:7E:E0:05:39:64:A2:DD:8E:B4:57 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b6d88496-b2ba-4d13-9825-ae38aff1da15/0/3D93688202931D72322A7EE0053964A2DD8EB457.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.64.0/23 Signature Algorithm: sha256WithRSAEncryption 63:cc:76:36:de:81:59:17:3a:70:f4:c7:92:f7:f3:ee:ab:52: 9a:95:b2:8d:85:13:f1:a4:6b:46:1b:3a:a1:a7:49:29:ce:41: b2:45:35:8c:0d:56:8b:64:fb:ec:31:a1:36:c5:7c:95:2e:5f: a3:d4:fe:30:81:42:d8:2e:40:b8:05:8a:13:49:dd:ec:0d:60: 18:88:d0:56:63:de:ea:83:09:94:34:21:30:7c:e1:db:1a:35: 0a:5a:5f:80:02:74:56:64:2e:33:c5:2d:60:58:92:7d:b9:38: 19:e0:01:7a:12:52:f9:ae:12:25:cf:7e:4e:7f:49:83:e4:ad: 06:49:25:b1:70:0e:99:e3:7d:04:f9:7a:ea:a3:13:1f:27:55: ff:c3:60:de:23:a8:3d:86:75:87:25:8d:f8:30:d9:d3:ad:ca: 97:00:06:bd:15:9b:72:3d:93:de:b1:a2:cc:d0:0b:a2:78:e2: 8e:a6:6f:7c:be:34:7a:fc:6a:94:f3:22:3d:90:86:49:b7:09: 91:7e:1c:6d:ad:c6:99:19:5e:d9:2f:60:4b:9b:e6:a4:7b:38: 54:83:e0:5c:c3:c4:43:b4:7f:55:be:f3:91:a1:08:b6:d6:55: 5f:30:4c:e6:bd:74:3b:e8:a8:8d:7f:a4:8a:5b:54:39:24:ee: 20:4b:1a:28 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWeVMRhfV/gcFjNPSPrc99WZIQSUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEyOTEyMjkxMFoX DTI1MDEyNzEyMzQxMFowMzExMC8GA1UEAxMoM0Q5MzY4ODIwMjkzMUQ3MjMyMkE3 RUUwMDUzOTY0QTJERDhFQjQ1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7FLRF4OoQL3aY+Z5Swv3x5en8lvbHyt/V78sE6qpe3ZLc8/MGXkjSBQSY9 5HZmNcyN4ejkl1UN2/qVuQB3AGGYvi+bRF5fkPBfw54Z6Ki0k/YhgF/HXbME+PqV bGcLT+EXWBnm2Q6+aLTZrzDIdXqR9pdJ5ckEB0uZK2bmUS2As5D7LuuR7TO8R6Fo lHAk9+RDBLz3tfq6s5fTDW3aB1fh6nQ4YnW8QwYtzUbAj7GN52I2EUxR+cy6iP+l +AfaJ/tVnlBVUk0W18n1WoYT18d1PZdM9vnVMjtMAadgKqBks2yvFZP6PAonQHRw 0HfflpQ3/6JExTCrokbb/0fFZRcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD2TaIICkx1yMip+4AU5ZKLdjrRXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iNmQ4ODQ5Ni1iMmJhLTRkMTMtOTgyNS1hZTM4YWZmMWRhMTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I2ZDg4NDk2 LWIyYmEtNGQxMy05ODI1LWFlMzhhZmYxZGExNS8wLzNEOTM2ODgyMDI5MzFENzIz MjJBN0VFMDA1Mzk2NEEyREQ4RUI0NTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuEAwDQYJKoZIhvcNAQELBQADggEBAGPMdjbegVkXOnD0x5L38+6rUpqVso2F E/Gka0YbOqGnSSnOQbJFNYwNVotk++wxoTbFfJUuX6PU/jCBQtguQLgFihNJ3ewN YBiI0FZj3uqDCZQ0ITB84dsaNQpaX4ACdFZkLjPFLWBYkn25OBngAXoSUvmuEiXP fk5/SYPkrQZJJbFwDpnjfQT5euqjEx8nVf/DYN4jqD2GdYcljfgw2dOtypcABr0V m3I9k96xoszQC6J44o6mb3y+NHr8apTzIj2Qhkm3CZF+HG2txpkZXtkvYEub5qR7 OFSD4FzDxEO0f1W+85GhCLbWVV8wTOa9dDvoqI1/pIpbVDkk7iBLGig= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:40 2024 by rpki-client on console-ams.rpki-client.org