$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/42467B1885830A9908EAE67935311639B090AA77.cer File: 42467B1885830A9908EAE67935311639B090AA77.cer (raw, json) Hash identifier: yo/sMubd8cU77UubkWy2EW0D1pORYv2Pi8+5j1p2ppk= Subject key identifier: 42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1AC70579C97CC13C31ACC77054A3C985EA58731F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.mft caRepository: rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 18 Sep 2024 15:08:10 +0000 Certificate not after: Wed 17 Sep 2025 15:13:10 +0000 Subordinate resources: IP: 103.76.106.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:c7:05:79:c9:7c:c1:3c:31:ac:c7:70:54:a3:c9:85:ea:58:73:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 18 15:08:10 2024 GMT Not After : Sep 17 15:13:10 2025 GMT Subject: CN=42467B1885830A9908EAE67935311639B090AA77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:09:28:8c:9f:71:6f:99:37:9f:41:4f:a3:d5: a9:b8:c6:65:28:76:50:c0:59:27:ab:e3:5f:5a:84: b1:59:5c:db:21:1e:fa:a6:0d:fe:6b:22:22:b0:6e: 44:1d:5f:41:fd:e6:71:94:a4:1c:d0:ad:a7:64:c4: 75:9b:d6:d5:4b:98:fb:c8:71:a5:d7:dd:c0:28:10: d0:b6:f5:0e:31:d1:97:56:91:c1:a9:5c:c5:fa:52: 67:cd:d0:d6:4d:21:9a:8b:16:b6:a6:e8:43:b4:e2: ff:1f:5b:1c:db:17:c5:66:06:62:20:0a:b7:1f:f3: 8f:34:62:ac:53:94:b2:38:41:be:96:95:91:67:10: 17:a7:c5:7a:c0:82:b7:86:f1:62:fa:d3:60:d9:07: 99:7d:8c:81:38:9f:93:7e:60:6a:63:78:d5:d7:8d: 5b:fd:f8:e3:10:c2:0b:d5:86:27:d1:75:c6:14:c1: 76:5d:d9:9d:32:05:ae:d6:e5:93:ff:e0:ba:dc:05: cf:43:1c:91:48:0b:1e:9f:20:35:02:81:f3:a1:db: c7:29:09:27:36:17:0a:89:b9:dc:f9:9e:1e:fb:0a: 30:4d:19:bb:9a:57:54:49:11:a5:46:f5:2c:7b:f7: 71:ee:34:6c:f0:33:16:1e:aa:eb:10:47:ff:a5:07: 4d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 42:46:7B:18:85:83:0A:99:08:EA:E6:79:35:31:16:39:B0:90:AA:77 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aee2088a-c9ff-4d84-be4e-141d5b80b543/0/42467B1885830A9908EAE67935311639B090AA77.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.106.0/23 Signature Algorithm: sha256WithRSAEncryption 78:e9:0a:81:a6:fc:4b:51:4d:8f:cf:fb:ac:72:9f:f5:33:3c: 59:cc:a5:cb:63:60:70:57:76:d8:f9:95:ec:dc:21:a9:00:23: 82:8a:c9:58:17:88:06:97:95:a8:7f:5a:35:0a:d4:72:46:aa: f2:8e:ad:d2:c3:1c:5d:a6:5a:dd:6b:5b:c6:43:db:39:17:6e: 30:6d:3d:f4:73:76:8c:31:3e:0b:37:ff:70:c2:59:76:65:7a: a2:7d:21:c8:84:e2:b1:3e:d9:4a:1d:b3:d0:2f:ea:19:1f:d4: 91:0c:4c:de:43:8c:b2:47:c6:52:d8:ce:96:12:b8:0a:e6:51: 12:23:54:7e:69:60:ba:b4:3e:7c:1e:57:15:8e:05:bb:14:3c: 16:b0:7f:7c:3f:36:ce:49:f3:b1:30:14:e7:98:59:fc:9b:67: cd:95:14:fb:03:8d:c7:30:f3:51:5d:8f:b7:44:4c:f2:69:75: f8:48:9a:7a:7b:3e:7e:b4:4b:7b:86:09:0a:9e:f7:67:ed:5b: b3:8d:95:0a:bb:6d:69:70:36:d1:72:6f:b4:b3:5d:1e:d7:d4: 60:b9:26:75:13:dd:a9:ce:f3:81:a0:c4:70:a8:cf:87:ec:77: af:2a:02:51:32:2d:58:e9:75:86:4e:54:80:c8:01:f6:4c:0d: 69:d7:b0:4c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGscFecl8wTwxrMdwVKPJhepYcx8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxODE1MDgxMFoX DTI1MDkxNzE1MTMxMFowMzExMC8GA1UEAxMoNDI0NjdCMTg4NTgzMEE5OTA4RUFF Njc5MzUzMTE2MzlCMDkwQUE3NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYJKIyfcW+ZN59BT6PVqbjGZSh2UMBZJ6vjX1qEsVlc2yEe+qYN/msiIrBu RB1fQf3mcZSkHNCtp2TEdZvW1UuY+8hxpdfdwCgQ0Lb1DjHRl1aRwalcxfpSZ83Q 1k0hmosWtqboQ7Ti/x9bHNsXxWYGYiAKtx/zjzRirFOUsjhBvpaVkWcQF6fFesCC t4bxYvrTYNkHmX2MgTifk35gamN41deNW/344xDCC9WGJ9F1xhTBdl3ZnTIFrtbl k//gutwFz0MckUgLHp8gNQKB86HbxykJJzYXCom53PmeHvsKME0Zu5pXVEkRpUb1 LHv3ce40bPAzFh6q6xBH/6UHTeMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEJGexiFgwqZCOrmeTUxFjmwkKp3MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZWUyMDg4YS1jOWZmLTRkODQtYmU0ZS0xNDFkNWI4MGI1NDMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZTIwODhh LWM5ZmYtNGQ4NC1iZTRlLTE0MWQ1YjgwYjU0My8wLzQyNDY3QjE4ODU4MzBBOTkw OEVBRTY3OTM1MzExNjM5QjA5MEFBNzcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnTGowDQYJKoZIhvcNAQELBQADggEBAHjpCoGm/EtRTY/P+6xyn/UzPFnMpctj YHBXdtj5lezcIakAI4KKyVgXiAaXlah/WjUK1HJGqvKOrdLDHF2mWt1rW8ZD2zkX bjBtPfRzdowxPgs3/3DCWXZleqJ9IciE4rE+2Uods9Av6hkf1JEMTN5DjLJHxlLY zpYSuArmURIjVH5pYLq0PnweVxWOBbsUPBawf3w/Ns5J87EwFOeYWfybZ82VFPsD jccw81Fdj7dETPJpdfhImnp7Pn60S3uGCQqe92ftW7ONlQq7bWlwNtFyb7SzXR7X 1GC5JnUT3anO84GgxHCoz4fsd68qAlEyLVjpdYZOVIDIAfZMDWnXsEw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:16 2024 by rpki-client on console-fra.rpki-client.org