$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.cer File: 3E648E6A8623C5C5DDF001526D0FDC0FF200F613.cer (raw, json) Hash identifier: sydDV6bDhJPrtECvM7qThGseSfnH8acAf1xEsQhYyrI= Subject key identifier: 3E:64:8E:6A:86:23:C5:C5:DD:F0:01:52:6D:0F:DC:0F:F2:00:F6:13 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6744C1B95B7B133003FFECC609ADADB224DAD9AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.mft caRepository: rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 14 Jun 2024 14:48:28 +0000 Certificate not after: Fri 13 Jun 2025 14:53:28 +0000 Subordinate resources: IP: 103.191.141.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:44:c1:b9:5b:7b:13:30:03:ff:ec:c6:09:ad:ad:b2:24:da:d9:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 14 14:48:28 2024 GMT Not After : Jun 13 14:53:28 2025 GMT Subject: CN=3E648E6A8623C5C5DDF001526D0FDC0FF200F613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:80:0c:5b:3d:b3:21:02:3a:6e:c0:9d:d8:75: 58:63:94:24:70:83:91:d1:84:c3:47:7b:cf:7a:f4: c9:3d:a8:dd:67:6f:4f:f1:49:8b:4a:61:92:85:b3: 1e:c3:e3:5c:54:09:49:a5:0c:37:11:76:95:b3:6a: 92:ba:dd:5b:aa:f0:53:f7:cb:a1:3d:03:87:a6:5b: b4:ed:f9:f3:1f:f0:30:6e:8c:d5:9d:88:6e:6b:3c: 67:bb:a5:03:15:4a:23:87:5f:01:6a:2e:8d:ea:e8: e3:de:b3:7a:aa:c5:4d:e2:0a:12:1f:c0:bd:88:df: ca:a6:50:94:ce:67:4a:04:91:bb:d4:bc:f1:37:df: 8d:95:c3:2c:b1:1f:89:0b:e5:58:6b:ae:42:2f:2e: a5:f5:8e:d8:46:55:59:dd:0a:14:4d:79:1c:e8:46: 4d:01:d3:50:c1:65:ba:e0:bf:c2:52:3c:f7:42:0a: 1b:65:25:20:c5:5a:03:7e:af:60:10:e6:a6:39:21: 2c:db:8d:52:58:1a:29:67:b2:e7:2f:a5:32:4c:88: 21:c3:e4:e8:23:56:33:12:d6:a2:b3:42:64:2a:b3: 0e:8d:2c:98:84:c3:cf:54:5a:52:38:ec:e9:f9:68: c4:bf:b0:8e:ae:8d:67:06:b1:92:53:51:7a:d9:cb: 9b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3E:64:8E:6A:86:23:C5:C5:DD:F0:01:52:6D:0F:DC:0F:F2:00:F6:13 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.141.0/24 Signature Algorithm: sha256WithRSAEncryption 1c:7b:59:ef:2d:b9:12:7e:23:fb:de:d3:ab:90:95:3d:d8:20: 59:1c:82:82:40:4c:a5:db:a7:ba:6d:80:4c:bd:44:a1:98:49: 57:29:96:95:50:57:d9:f1:b2:f9:af:f0:b0:10:b4:3d:33:b9: 2b:5b:b7:6c:df:21:88:0c:93:da:5a:ed:6e:38:12:e2:f3:54: 13:70:ce:00:47:ea:ad:3c:49:5a:a2:2b:c2:95:0a:2f:bb:ec: cb:6a:40:f9:7f:c2:2b:36:f4:d8:db:6e:12:e5:cc:6b:04:2d: f0:59:5e:05:87:6b:58:0b:77:6c:04:6d:13:23:1a:62:df:71: f6:24:3d:14:aa:36:22:59:c7:00:55:e5:d8:5b:7d:10:35:56: 9f:55:15:d3:b3:9d:4c:99:2e:2b:ef:cb:fc:07:37:14:ee:88: c5:f9:85:44:22:04:a4:33:6b:e0:c4:3e:6c:fc:22:0a:0c:d6: 59:ca:86:a1:af:eb:e1:a4:aa:e1:6c:ef:0e:ee:f5:f2:4e:1f: 20:56:96:a1:55:3d:f4:41:c6:48:1c:26:62:08:23:1d:88:b1: 71:c3:74:36:a0:5f:f8:79:e7:ca:cc:91:e7:95:31:04:2c:f0: 88:55:d7:5c:66:86:8c:ae:a8:ae:3b:0b:de:90:9b:8c:55:3c: 72:94:41:47 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZ0TBuVt7EzAD/+zGCa2tsiTa2aowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxNDE0NDgyOFoX DTI1MDYxMzE0NTMyOFowMzExMC8GA1UEAxMoM0U2NDhFNkE4NjIzQzVDNURERjAw MTUyNkQwRkRDMEZGMjAwRjYxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSADFs9syECOm7Andh1WGOUJHCDkdGEw0d7z3r0yT2o3WdvT/FJi0phkoWz HsPjXFQJSaUMNxF2lbNqkrrdW6rwU/fLoT0Dh6ZbtO358x/wMG6M1Z2Ibms8Z7ul AxVKI4dfAWoujero496zeqrFTeIKEh/AvYjfyqZQlM5nSgSRu9S88TffjZXDLLEf iQvlWGuuQi8upfWO2EZVWd0KFE15HOhGTQHTUMFluuC/wlI890IKG2UlIMVaA36v YBDmpjkhLNuNUlgaKWey5y+lMkyIIcPk6CNWMxLWorNCZCqzDo0smITDz1RaUjjs 6floxL+wjq6NZwaxklNRetnLm7ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD5kjmqGI8XF3fABUm0P3A/yAPYTMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82MjFmM2ZhZS1kMGNiLTRhMTctYTU0OC0xYmE2NjMxYjFlMDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMWYzZmFl LWQwY2ItNGExNy1hNTQ4LTFiYTY2MzFiMWUwOS8wLzNFNjQ4RTZBODYyM0M1QzVE REYwMDE1MjZEMEZEQzBGRjIwMEY2MTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnv40wDQYJKoZIhvcNAQELBQADggEBABx7We8tuRJ+I/ve06uQlT3YIFkcgoJA TKXbp7ptgEy9RKGYSVcplpVQV9nxsvmv8LAQtD0zuStbt2zfIYgMk9pa7W44EuLz VBNwzgBH6q08SVqiK8KVCi+77MtqQPl/wis29NjbbhLlzGsELfBZXgWHa1gLd2wE bRMjGmLfcfYkPRSqNiJZxwBV5dhbfRA1Vp9VFdOznUyZLivvy/wHNxTuiMX5hUQi BKQza+DEPmz8IgoM1lnKhqGv6+GkquFs7w7u9fJOHyBWlqFVPfRBxkgcJmIIIx2I sXHDdDagX/h558rMkeeVMQQs8IhV11xmhoyuqK47C96Qm4xVPHKUQUc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:40 2024 by rpki-client on console-ams.rpki-client.org