$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/43E94F4D6572FA61C908F2C122712EB0A696EF96.cer File: 43E94F4D6572FA61C908F2C122712EB0A696EF96.cer (raw, json) Hash identifier: 488ndGDRinK4gcv7kjcQE+1ZkQ7L6/Z0+SCKal/EX8o= Subject key identifier: 43:E9:4F:4D:65:72:FA:61:C9:08:F2:C1:22:71:2E:B0:A6:96:EF:96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0756F7E10F9C0430874B864CC0B2A366C8CA7CC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/43E94F4D6572FA61C908F2C122712EB0A696EF96.mft caRepository: rsync://repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 24 Oct 2024 06:58:08 +0000 Certificate not after: Thu 23 Oct 2025 07:03:08 +0000 Subordinate resources: IP: 45.126.40.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:56:f7:e1:0f:9c:04:30:87:4b:86:4c:c0:b2:a3:66:c8:ca:7c:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 24 06:58:08 2024 GMT Not After : Oct 23 07:03:08 2025 GMT Subject: CN=43E94F4D6572FA61C908F2C122712EB0A696EF96 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:66:4a:99:00:f1:26:c9:ee:1f:b5:3f:8a:f5: 66:a7:59:5f:41:eb:c4:a7:e2:eb:24:12:b3:86:40: cb:d7:e1:22:69:f2:6e:90:aa:01:da:5a:8d:92:fd: 1a:b4:ce:ae:24:71:dc:93:61:6b:d6:80:08:c8:1a: 9c:70:87:73:28:1a:28:1e:d0:0a:57:5a:26:5a:f3: 38:73:53:64:d8:7a:bf:fe:ea:d2:d4:05:7d:d0:76: 68:7d:5b:f9:b2:35:6d:c8:94:81:75:20:e6:c1:bf: 51:95:1a:db:00:e2:3e:39:d8:04:71:a8:7b:0a:ac: 6e:ed:42:b4:60:db:8e:96:c5:3b:20:ab:fb:ab:07: c6:13:81:82:ed:48:ce:6e:65:95:44:e0:7d:fe:2e: 25:90:1f:df:0b:2c:ee:e4:de:b4:0e:8b:55:a6:56: 0f:c3:8f:e1:11:8a:50:0e:64:27:08:49:79:b4:49: 30:27:32:16:1e:a4:fc:c1:0c:47:46:05:b5:58:10: 22:7a:0e:3a:b6:d6:7c:86:21:c2:9d:b3:9f:6b:ee: 12:d8:65:2e:31:b1:0a:72:b0:6c:02:83:6d:6d:14: 07:95:00:9a:51:5f:d5:91:b0:b6:97:81:65:6a:0d: 3b:e7:87:fe:9c:2c:58:0c:39:25:d2:24:fc:d0:bf: 61:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 43:E9:4F:4D:65:72:FA:61:C9:08:F2:C1:22:71:2E:B0:A6:96:EF:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/448407e3-2cb1-4c6e-8aeb-5e0d355e8c96/0/43E94F4D6572FA61C908F2C122712EB0A696EF96.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.126.40.0/23 Signature Algorithm: sha256WithRSAEncryption 28:25:62:8c:5c:97:0f:a2:56:45:0f:11:58:89:34:dd:e5:96: 38:4a:57:f2:a4:ce:ac:5a:cb:7f:52:dd:41:93:10:98:b1:3f: 65:5e:34:72:7b:bf:4b:29:40:95:b0:90:97:bd:bc:c0:28:98: 9f:39:54:35:1e:54:cf:f5:ac:f7:36:89:41:aa:d9:47:c5:86: 56:f1:31:5c:fe:49:df:b1:ff:51:e7:58:3c:dc:d6:d6:96:be: 9c:03:10:96:33:df:bb:c3:8a:0f:98:2c:d4:08:8e:ee:dc:f1: 9f:24:16:d3:eb:81:1e:48:8d:f8:8f:18:4b:34:80:fd:d3:3c: 01:c6:d6:16:ac:bb:7f:d5:e2:59:c3:fb:dc:52:0a:20:c6:01: 97:80:b2:26:25:74:49:1d:45:8b:32:da:e4:77:fe:a0:e3:31: e1:9f:e1:63:b1:7b:95:a2:18:af:92:34:dc:0a:d8:d4:a0:10: cc:9d:4b:42:66:39:9c:4a:21:da:fd:b0:29:4a:0e:62:97:d1: ff:4c:6a:5f:b3:3a:57:e0:08:68:2f:80:95:99:3b:30:e2:93: 0f:2c:ea:7c:0f:5f:69:c2:66:0f:5d:57:07:90:c1:41:6e:05: 0d:cf:55:a9:53:e2:b7:b8:bc:06:8e:52:56:37:8a:c0:35:76: 6a:87:56:18 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUB1b34Q+cBDCHS4ZMwLKjZsjKfMIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyNDA2NTgwOFoX DTI1MTAyMzA3MDMwOFowMzExMC8GA1UEAxMoNDNFOTRGNEQ2NTcyRkE2MUM5MDhG MkMxMjI3MTJFQjBBNjk2RUY5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANBmSpkA8SbJ7h+1P4r1ZqdZX0HrxKfi6yQSs4ZAy9fhImnybpCqAdpajZL9 GrTOriRx3JNha9aACMganHCHcygaKB7QCldaJlrzOHNTZNh6v/7q0tQFfdB2aH1b +bI1bciUgXUg5sG/UZUa2wDiPjnYBHGoewqsbu1CtGDbjpbFOyCr+6sHxhOBgu1I zm5llUTgff4uJZAf3wss7uTetA6LVaZWD8OP4RGKUA5kJwhJebRJMCcyFh6k/MEM R0YFtVgQInoOOrbWfIYhwp2zn2vuEthlLjGxCnKwbAKDbW0UB5UAmlFf1ZGwtpeB ZWoNO+eH/pwsWAw5JdIk/NC/YRMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEPpT01lcvphyQjywSJxLrCmlu+WMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NDg0MDdlMy0yY2IxLTRjNmUtOGFlYi01ZTBkMzU1ZThjOTYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ0ODQwN2Uz LTJjYjEtNGM2ZS04YWViLTVlMGQzNTVlOGM5Ni8wLzQzRTk0RjRENjU3MkZBNjFD OTA4RjJDMTIyNzEyRUIwQTY5NkVGOTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAEtfigwDQYJKoZIhvcNAQELBQADggEBACglYoxclw+iVkUPEViJNN3lljhKV/Kk zqxay39S3UGTEJixP2VeNHJ7v0spQJWwkJe9vMAomJ85VDUeVM/1rPc2iUGq2UfF hlbxMVz+Sd+x/1HnWDzc1taWvpwDEJYz37vDig+YLNQIju7c8Z8kFtPrgR5IjfiP GEs0gP3TPAHG1hasu3/V4lnD+9xSCiDGAZeAsiYldEkdRYsy2uR3/qDjMeGf4WOx e5WiGK+SNNwK2NSgEMydS0JmOZxKIdr9sClKDmKX0f9Mal+zOlfgCGgvgJWZOzDi kw8s6nwPX2nCZg9dVweQwUFuBQ3PValT4re4vAaOUlY3isA1dmqHVhg= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:47 2024 by rpki-client on console-fra.rpki-client.org