$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer File: 3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.cer (raw, json) Hash identifier: Cd5tQ9DzRApJ8ArQ08aarCiMSbw+2meJCtOGkrWpQyQ= Subject key identifier: 3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6580EF04A926D3CACBED57D5A68FF4209392AEF7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.mft caRepository: rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 29 Jan 2024 08:36:45 +0000 Certificate not after: Mon 27 Jan 2025 08:41:45 +0000 Subordinate resources: IP: 103.184.122.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:80:ef:04:a9:26:d3:ca:cb:ed:57:d5:a6:8f:f4:20:93:92:ae:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 29 08:36:45 2024 GMT Not After : Jan 27 08:41:45 2025 GMT Subject: CN=3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a1:30:77:3b:af:71:d3:6f:cd:23:ac:25:51: 04:9d:ed:d9:2a:aa:84:57:e0:98:bb:3d:ab:b7:a9: 73:34:30:0b:30:60:e0:e6:5b:30:80:25:35:0a:15: ed:ee:e3:13:6b:41:cf:35:ac:63:34:40:b5:e4:cb: 38:f2:24:a8:71:64:05:69:60:c5:79:47:03:46:b6: d4:fb:03:43:86:de:b4:16:b5:0f:a3:bf:ef:d1:58: f4:a2:0c:69:d3:67:f2:d5:ba:c7:1d:91:97:4c:64: bb:e3:a3:82:d5:47:d9:5c:12:b4:fa:67:16:8b:d1: 06:cb:d2:90:8a:b2:b2:31:00:9a:9c:3b:54:3d:ca: 6b:91:c4:12:ed:53:2a:4e:c8:0a:0a:8c:a3:e8:47: ff:7d:55:9f:a9:b8:da:17:c5:d2:81:f6:47:e9:cd: d1:34:05:3e:6a:b6:ab:22:f1:f5:fc:52:c0:e6:7e: 4e:af:77:bc:42:53:e8:81:d0:51:a2:f5:da:8f:57: a3:b4:6c:3c:42:42:4d:7b:a4:ce:35:e5:07:b3:06: 40:92:4c:d9:80:6d:2b:63:bd:f8:05:09:e3:2e:6c: a2:83:5d:c9:63:12:cc:b4:ee:2b:98:7d:3a:b1:aa: 67:f6:3b:71:e2:58:9b:16:79:cd:1a:19:6e:56:5d: 28:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3F:D6:EB:17:E6:7A:CC:40:60:F7:77:F5:A4:E3:F9:A0:27:AB:3F:9A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/29226948-b1a1-4294-9150-6af0e0bebfb8/0/3FD6EB17E67ACC4060F777F5A4E3F9A027AB3F9A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.122.0/23 Signature Algorithm: sha256WithRSAEncryption 97:16:29:f5:54:3e:47:3f:08:94:bf:f6:91:c3:0b:ab:58:f2: 45:5c:21:0a:89:d2:2f:15:21:3b:02:4b:53:67:de:97:48:ea: e3:c0:79:4f:9f:2e:8e:24:f6:13:5f:5d:ca:f4:25:bc:35:16: d3:53:8d:32:30:34:0b:5a:4b:60:b4:22:f9:1e:56:77:bf:85: 6d:4a:3b:07:2e:44:08:cf:ef:cc:4b:93:b8:a5:61:62:e0:e7: d7:7a:12:42:45:32:f1:50:17:a9:7d:97:f2:c4:d7:b0:b9:41: 87:e9:fc:09:fe:0d:dd:b0:7e:05:5a:76:aa:79:de:89:44:c8: 8c:62:f8:f7:70:39:8d:3b:3f:3f:b0:a2:12:37:25:0f:32:f7: 92:c7:80:b7:cc:87:00:e7:d2:0f:f5:f7:12:07:a6:b4:71:5f: 73:2a:99:1c:c9:11:5b:fe:d6:22:88:64:9c:6b:04:f1:ae:32: 2b:ea:bb:ad:2a:6c:8d:d5:1b:f8:3e:02:b0:82:f3:65:44:22: 45:fc:9b:bb:ff:f9:94:22:66:1f:a7:c2:35:e7:98:e8:d2:8f: a9:2e:16:9a:a9:ba:08:f5:6c:51:10:de:9e:d3:21:6b:94:e9: 2d:c4:b8:f5:1a:3e:ae:43:56:95:c6:bc:3e:b5:e2:5c:7a:b6: c2:26:d9:0c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZYDvBKkm08rL7VfVpo/0IJOSrvcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEyOTA4MzY0NVoX DTI1MDEyNzA4NDE0NVowMzExMC8GA1UEAxMoM0ZENkVCMTdFNjdBQ0M0MDYwRjc3 N0Y1QTRFM0Y5QTAyN0FCM0Y5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN+hMHc7r3HTb80jrCVRBJ3t2SqqhFfgmLs9q7epczQwCzBg4OZbMIAlNQoV 7e7jE2tBzzWsYzRAteTLOPIkqHFkBWlgxXlHA0a21PsDQ4betBa1D6O/79FY9KIM adNn8tW6xx2Rl0xku+OjgtVH2VwStPpnFovRBsvSkIqysjEAmpw7VD3Ka5HEEu1T Kk7ICgqMo+hH/31Vn6m42hfF0oH2R+nN0TQFPmq2qyLx9fxSwOZ+Tq93vEJT6IHQ UaL12o9Xo7RsPEJCTXukzjXlB7MGQJJM2YBtK2O9+AUJ4y5sooNdyWMSzLTuK5h9 OrGqZ/Y7ceJYmxZ5zRoZblZdKOsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD/W6xfmesxAYPd39aTj+aAnqz+aMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yOTIyNjk0OC1iMWExLTQyOTQtOTE1MC02YWYwZTBiZWJmYjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzI5MjI2OTQ4 LWIxYTEtNDI5NC05MTUwLTZhZjBlMGJlYmZiOC8wLzNGRDZFQjE3RTY3QUNDNDA2 MEY3NzdGNUE0RTNGOUEwMjdBQjNGOUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuHowDQYJKoZIhvcNAQELBQADggEBAJcWKfVUPkc/CJS/9pHDC6tY8kVcIQqJ 0i8VITsCS1Nn3pdI6uPAeU+fLo4k9hNfXcr0Jbw1FtNTjTIwNAtaS2C0IvkeVne/ hW1KOwcuRAjP78xLk7ilYWLg59d6EkJFMvFQF6l9l/LE17C5QYfp/An+Dd2wfgVa dqp53olEyIxi+PdwOY07Pz+wohI3JQ8y95LHgLfMhwDn0g/19xIHprRxX3MqmRzJ EVv+1iKIZJxrBPGuMivqu60qbI3VG/g+ArCC82VEIkX8m7v/+ZQiZh+nwjXnmOjS j6kuFpqpugj1bFEQ3p7TIWuU6S3EuPUaPq5DVpXGvD614lx6tsIm2Qw= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:47 2024 by rpki-client on console-fra.rpki-client.org