$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.cer File: 3E648E6A8623C5C5DDF001526D0FDC0FF200F613.cer (raw, json) Hash identifier: ba0fp9bdQJHZXeHJP+Jy/ItKs8PXw43BVApfrnNk5kw= Subject key identifier: 3E:64:8E:6A:86:23:C5:C5:DD:F0:01:52:6D:0F:DC:0F:F2:00:F6:13 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1F39B6616BA676035D8F39D52A5CA5EADBCB5668 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.mft caRepository: rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 14 Jul 2023 14:17:48 +0000 Certificate not after: Fri 12 Jul 2024 14:22:48 +0000 Subordinate resources: IP: 103.191.141.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:39:b6:61:6b:a6:76:03:5d:8f:39:d5:2a:5c:a5:ea:db:cb:56:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 14 14:17:48 2023 GMT Not After : Jul 12 14:22:48 2024 GMT Subject: CN=3E648E6A8623C5C5DDF001526D0FDC0FF200F613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:80:0c:5b:3d:b3:21:02:3a:6e:c0:9d:d8:75: 58:63:94:24:70:83:91:d1:84:c3:47:7b:cf:7a:f4: c9:3d:a8:dd:67:6f:4f:f1:49:8b:4a:61:92:85:b3: 1e:c3:e3:5c:54:09:49:a5:0c:37:11:76:95:b3:6a: 92:ba:dd:5b:aa:f0:53:f7:cb:a1:3d:03:87:a6:5b: b4:ed:f9:f3:1f:f0:30:6e:8c:d5:9d:88:6e:6b:3c: 67:bb:a5:03:15:4a:23:87:5f:01:6a:2e:8d:ea:e8: e3:de:b3:7a:aa:c5:4d:e2:0a:12:1f:c0:bd:88:df: ca:a6:50:94:ce:67:4a:04:91:bb:d4:bc:f1:37:df: 8d:95:c3:2c:b1:1f:89:0b:e5:58:6b:ae:42:2f:2e: a5:f5:8e:d8:46:55:59:dd:0a:14:4d:79:1c:e8:46: 4d:01:d3:50:c1:65:ba:e0:bf:c2:52:3c:f7:42:0a: 1b:65:25:20:c5:5a:03:7e:af:60:10:e6:a6:39:21: 2c:db:8d:52:58:1a:29:67:b2:e7:2f:a5:32:4c:88: 21:c3:e4:e8:23:56:33:12:d6:a2:b3:42:64:2a:b3: 0e:8d:2c:98:84:c3:cf:54:5a:52:38:ec:e9:f9:68: c4:bf:b0:8e:ae:8d:67:06:b1:92:53:51:7a:d9:cb: 9b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3E:64:8E:6A:86:23:C5:C5:DD:F0:01:52:6D:0F:DC:0F:F2:00:F6:13 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/621f3fae-d0cb-4a17-a548-1ba6631b1e09/0/3E648E6A8623C5C5DDF001526D0FDC0FF200F613.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.141.0/24 Signature Algorithm: sha256WithRSAEncryption 67:a4:01:5d:37:45:82:2f:90:35:b3:26:ff:db:28:57:ca:67: 84:be:30:e2:c7:cb:bf:8c:61:71:22:58:cb:27:f5:9e:b2:4b: e8:0e:e8:fb:22:5e:f8:e1:b8:3a:8d:e1:25:1e:a4:20:08:3c: 95:98:bf:d9:ef:62:b6:da:18:92:5d:f7:4b:95:48:8b:0f:b4: 26:17:21:9c:38:93:2e:ae:8c:9c:b8:2b:73:5b:c6:94:4e:26: 92:93:17:fd:26:d5:fa:af:79:75:ec:b7:c6:c5:61:9a:0f:b1: e8:34:04:77:d2:75:37:fc:27:f3:c1:ec:73:8f:16:57:de:30: f6:82:dd:5f:e2:d5:dc:ca:57:59:be:e7:ce:30:df:11:a5:41: 97:e6:78:03:89:5b:ef:4d:0b:a8:d4:a7:f3:cb:7d:dc:a2:de: 2b:f5:70:9c:c4:27:04:49:8e:c9:b0:22:81:07:33:b5:c6:0c: 41:ee:6b:f8:99:dc:b5:52:be:ea:a3:87:6c:b9:14:7a:23:b8: 4f:ff:99:88:1b:ab:5f:6b:e0:a8:1f:c2:ff:8c:6c:19:05:c8: 85:0a:d7:2e:3d:3f:ea:1b:d4:af:3a:40:03:f3:c5:30:48:57: 24:1a:45:b0:bf:68:9b:23:75:be:92:af:74:21:27:d9:51:d9: 09:19:6c:ae -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHzm2YWumdgNdjznVKlyl6tvLVmgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxNDE0MTc0OFoX DTI0MDcxMjE0MjI0OFowMzExMC8GA1UEAxMoM0U2NDhFNkE4NjIzQzVDNURERjAw MTUyNkQwRkRDMEZGMjAwRjYxMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSADFs9syECOm7Andh1WGOUJHCDkdGEw0d7z3r0yT2o3WdvT/FJi0phkoWz HsPjXFQJSaUMNxF2lbNqkrrdW6rwU/fLoT0Dh6ZbtO358x/wMG6M1Z2Ibms8Z7ul AxVKI4dfAWoujero496zeqrFTeIKEh/AvYjfyqZQlM5nSgSRu9S88TffjZXDLLEf iQvlWGuuQi8upfWO2EZVWd0KFE15HOhGTQHTUMFluuC/wlI890IKG2UlIMVaA36v YBDmpjkhLNuNUlgaKWey5y+lMkyIIcPk6CNWMxLWorNCZCqzDo0smITDz1RaUjjs 6floxL+wjq6NZwaxklNRetnLm7ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD5kjmqGI8XF3fABUm0P3A/yAPYTMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82MjFmM2ZhZS1kMGNiLTRhMTctYTU0OC0xYmE2NjMxYjFlMDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyMWYzZmFl LWQwY2ItNGExNy1hNTQ4LTFiYTY2MzFiMWUwOS8wLzNFNjQ4RTZBODYyM0M1QzVE REYwMDE1MjZEMEZEQzBGRjIwMEY2MTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnv40wDQYJKoZIhvcNAQELBQADggEBAGekAV03RYIvkDWzJv/bKFfKZ4S+MOLH y7+MYXEiWMsn9Z6yS+gO6PsiXvjhuDqN4SUepCAIPJWYv9nvYrbaGJJd90uVSIsP tCYXIZw4ky6ujJy4K3NbxpROJpKTF/0m1fqveXXst8bFYZoPseg0BHfSdTf8J/PB 7HOPFlfeMPaC3V/i1dzKV1m+584w3xGlQZfmeAOJW+9NC6jUp/PLfdyi3iv1cJzE JwRJjsmwIoEHM7XGDEHua/iZ3LVSvuqjh2y5FHojuE//mYgbq19r4Kgfwv+MbBkF yIUK1y49P+ob1K86QAPzxTBIVyQaRbC/aJsjdb6Sr3QhJ9lR2QkZbK4= -----END CERTIFICATE-----Generated at Tue May 7 16:42:35 2024 by rpki-client on console-ams.rpki-client.org