$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/415543D423E0BD035D612DEA9BF060290E5552D2.cer File: 415543D423E0BD035D612DEA9BF060290E5552D2.cer (raw, json) Hash identifier: LQZpKmpBTm/OwKZVKIH/mCBDvHTUI8jPWiAHt8KndeU= Subject key identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4D74E2FA96983950FB989EE2A5B8FB296B523B36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.mft caRepository: rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 31 Jan 2024 10:51:25 +0000 Certificate not after: Wed 29 Jan 2025 10:56:25 +0000 Subordinate resources: IP: 103.95.8.0/22 IP: 2001:df1:9300::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:74:e2:fa:96:98:39:50:fb:98:9e:e2:a5:b8:fb:29:6b:52:3b:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 31 10:51:25 2024 GMT Not After : Jan 29 10:56:25 2025 GMT Subject: CN=415543D423E0BD035D612DEA9BF060290E5552D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ed:94:3d:40:d6:d6:4a:14:51:e7:46:21:31: c9:d5:0c:72:d3:34:d5:e4:3d:11:a2:8b:06:47:9b: 42:0b:c7:82:27:51:a4:07:27:af:59:0e:f3:75:03: 8c:dd:a2:91:71:53:09:59:d1:ee:d2:0f:29:97:dc: 1b:19:ee:2c:8e:27:35:c6:d8:3e:75:b0:f2:c3:dc: bb:2b:d3:9e:4a:66:3a:0b:34:94:65:59:d9:4b:c2: de:31:2a:4a:24:05:97:4b:b4:84:c3:2c:0e:b7:37: 05:e5:9b:00:10:47:03:7c:d6:ca:9d:80:48:71:de: 4e:cb:2d:b6:b9:17:5e:be:a7:c6:60:36:6d:08:72: 74:09:81:71:7f:fc:95:49:be:15:f1:5a:fc:2e:28: 79:33:32:84:64:a5:9f:d3:f1:50:b9:b7:c2:1c:f5: 13:50:eb:d9:43:4e:9a:7b:cd:51:38:11:8c:08:8d: fd:87:7e:4b:6a:c8:72:7d:c9:68:b7:bd:bf:5c:57: 82:a2:ac:5d:b5:bb:46:d2:be:22:8c:fd:13:07:c2: ab:2c:18:da:57:f5:67:f3:1c:aa:a7:f6:64:18:50: ad:aa:47:ab:5b:46:15:bd:57:e1:95:60:09:d6:33: e8:24:3d:d3:a9:cc:f2:0c:7d:70:3b:1d:49:6e:e0: f5:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 41:55:43:D4:23:E0:BD:03:5D:61:2D:EA:9B:F0:60:29:0E:55:52:D2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a36465ec-9160-459b-8d11-948fc26da1c0/0/415543D423E0BD035D612DEA9BF060290E5552D2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.95.8.0/22 IPv6: 2001:df1:9300::/48 Signature Algorithm: sha256WithRSAEncryption 85:ca:c8:5e:ef:74:ac:04:49:71:05:98:6a:d7:44:a2:9c:86: 1a:f0:cc:87:b5:61:18:ac:ca:b6:0c:cb:61:0a:e8:f1:4a:38: 23:8b:e6:87:d6:55:05:2f:fd:d3:31:5c:29:0b:c3:ed:1b:e4: 58:96:3f:17:b3:da:0e:b3:ab:66:5a:be:ee:ce:31:fc:56:57: 1e:fc:20:b3:c5:5b:c6:fd:8c:cb:2d:bb:6b:02:5d:9f:aa:96: 61:a2:82:76:c4:b4:2d:a5:7f:de:21:51:c6:aa:1f:ca:63:72: b7:39:fe:92:69:db:d8:8c:ea:d7:8c:af:04:4c:cb:d5:b5:a5: 76:b3:83:42:a2:22:0e:2e:8e:37:f5:21:0b:08:2b:ad:37:79: 4e:3e:79:58:c6:d8:7a:66:6b:6b:2a:c5:6c:08:c0:4b:83:c4: cb:1e:5b:06:0f:99:1d:69:f2:be:68:f0:03:de:cf:78:cd:1a: 68:22:50:81:e2:b0:b4:4d:e6:cb:f4:b4:5a:2d:b0:c1:3c:81: 80:da:4f:a4:7b:65:cc:ba:9c:1c:32:1f:00:61:d3:c4:7a:5b: ed:da:4e:ef:78:31:a1:01:c5:d9:82:52:0e:0e:a7:99:2e:da: b4:6d:d2:0a:97:69:94:cd:7a:54:20:89:aa:8b:2d:06:0a:52: a3:e9:62:2b -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUTXTi+paYOVD7mJ7ipbj7KWtSOzYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEzMTEwNTEyNVoX DTI1MDEyOTEwNTYyNVowMzExMC8GA1UEAxMoNDE1NTQzRDQyM0UwQkQwMzVENjEy REVBOUJGMDYwMjkwRTU1NTJEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMftlD1A1tZKFFHnRiExydUMctM01eQ9EaKLBkebQgvHgidRpAcnr1kO83UD jN2ikXFTCVnR7tIPKZfcGxnuLI4nNcbYPnWw8sPcuyvTnkpmOgs0lGVZ2UvC3jEq SiQFl0u0hMMsDrc3BeWbABBHA3zWyp2ASHHeTssttrkXXr6nxmA2bQhydAmBcX/8 lUm+FfFa/C4oeTMyhGSln9PxULm3whz1E1Dr2UNOmnvNUTgRjAiN/Yd+S2rIcn3J aLe9v1xXgqKsXbW7RtK+Ioz9EwfCqywY2lf1Z/Mcqqf2ZBhQrapHq1tGFb1X4ZVg CdYz6CQ906nM8gx9cDsdSW7g9eMCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEFVQ9Qj4L0DXWEt6pvwYCkOVVLSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMzY0NjVlYy05MTYwLTQ1OWItOGQxMS05NDhmYzI2ZGExYzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNjQ2NWVj LTkxNjAtNDU5Yi04ZDExLTk0OGZjMjZkYTFjMC8wLzQxNTU0M0Q0MjNFMEJEMDM1 RDYxMkRFQTlCRjA2MDI5MEU1NTUyRDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnXwgwDwQCAAIwCQMHACABDfGTADANBgkqhkiG9w0BAQsFAAOCAQEAhcrIXu90 rARJcQWYatdEopyGGvDMh7VhGKzKtgzLYQro8Uo4I4vmh9ZVBS/90zFcKQvD7Rvk WJY/F7PaDrOrZlq+7s4x/FZXHvwgs8Vbxv2Myy27awJdn6qWYaKCdsS0LaV/3iFR xqofymNytzn+kmnb2Izq14yvBEzL1bWldrODQqIiDi6ON/UhCwgrrTd5Tj55WMbY emZrayrFbAjAS4PEyx5bBg+ZHWnyvmjwA97PeM0aaCJQgeKwtE3my/S0Wi2wwTyB gNpPpHtlzLqcHDIfAGHTxHpb7dpO73gxoQHF2YJSDg6nmS7atG3SCpdplM16VCCJ qostBgpSo+liKw== -----END CERTIFICATE-----Generated at Wed May 8 22:46:38 2024 by rpki-client on console-ams.rpki-client.org