$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/45164C20EAF7FAB583FB12C81727150895FCEC70.cer File: 45164C20EAF7FAB583FB12C81727150895FCEC70.cer (raw, json) Hash identifier: rVSpEj7jC3GoH8AHx1dBzReL/75KZk5CgqdI+K3Sv0E= Subject key identifier: 45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 38B2CCDF139826D7B4F1F5B5A0B8B3D2C9A2A63D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.mft caRepository: rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 05 Nov 2024 18:13:37 +0000 Certificate not after: Tue 04 Nov 2025 18:18:37 +0000 Subordinate resources: IP: 103.108.156.0/22 IP: 103.153.40.0/23 IP: 2406:3e40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:b2:cc:df:13:98:26:d7:b4:f1:f5:b5:a0:b8:b3:d2:c9:a2:a6:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 5 18:13:37 2024 GMT Not After : Nov 4 18:18:37 2025 GMT Subject: CN=45164C20EAF7FAB583FB12C81727150895FCEC70 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:02:6a:b9:40:8c:be:e3:cf:c7:bc:00:a1:66: fa:a0:d1:d7:e5:9b:88:3e:06:c9:fe:e8:19:2a:35: fb:01:32:67:c9:b2:ad:f3:6c:89:ab:5e:2b:fa:4e: 1e:ee:0d:b5:e6:25:06:69:06:1c:4b:24:ff:3c:57: 8d:fb:7d:d3:4f:36:75:c9:d0:8f:a8:64:96:74:ef: 74:2c:6e:4f:74:59:51:84:73:ce:d2:01:ca:2a:dd: 38:c4:11:10:98:19:d3:7b:70:fd:a1:02:f4:ce:bd: 2c:da:58:eb:04:76:58:99:5a:34:2a:8f:41:25:84: 5b:66:e1:56:19:6f:5b:58:96:87:14:99:d7:f9:be: 10:fe:01:6c:67:b3:3c:86:ce:a8:d5:d4:96:87:e9: 92:f7:bc:ae:60:85:5f:ab:d6:85:ff:08:ef:71:85: 0b:17:67:70:b9:24:7a:f3:33:a5:df:fa:64:c0:12: d6:3b:46:a1:03:f1:ba:55:ce:a1:c1:75:45:4d:c9: 5a:29:c5:cf:de:48:ef:fe:77:c4:7e:39:b1:7c:44: 8b:d1:78:d0:29:1b:77:83:46:b2:d1:88:9b:fa:c7: 76:65:69:a1:89:1e:44:2a:57:b2:f5:3e:82:db:48: 63:cc:9c:35:fc:a8:fb:c2:18:b2:5d:05:2b:3e:ad: 7d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 45:16:4C:20:EA:F7:FA:B5:83:FB:12:C8:17:27:15:08:95:FC:EC:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f1ae12fa-98fd-4e51-980e-ad5f5b90d7a6/0/45164C20EAF7FAB583FB12C81727150895FCEC70.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.156.0/22 103.153.40.0/23 IPv6: 2406:3e40::/32 Signature Algorithm: sha256WithRSAEncryption 90:40:61:33:e3:f1:93:47:91:f3:ef:82:b3:44:5d:5a:97:fc: 73:93:d2:ee:74:1c:25:81:c3:a3:56:25:cd:04:30:1d:20:e7: 5d:bb:ef:c5:68:d3:cc:0d:9d:2e:04:6c:93:47:69:02:4f:56: 9b:ba:b7:a9:60:20:86:76:a2:60:cb:90:df:c1:9a:a0:53:c4: 6f:db:f1:8a:84:6e:c1:e6:d1:60:6f:8a:c3:eb:49:e5:21:d9: 2d:7d:ad:02:79:08:25:73:64:4f:84:d1:f1:0e:ed:74:54:d2: 4e:3a:77:d8:45:70:28:95:0e:ca:99:71:40:06:72:94:f9:92: 17:c1:58:d2:09:6c:e3:93:00:7a:fb:3f:20:19:49:68:60:09: 6d:2a:b4:95:fc:03:31:97:8e:97:9b:ce:b8:ea:30:fd:af:db: 85:27:15:cb:1a:c2:bb:86:f1:60:19:10:3e:6f:49:dc:3b:d9: f3:e3:63:3f:16:cc:db:f5:43:b2:47:ec:91:a2:f9:a8:c0:e1: 18:56:86:63:4c:6d:d3:35:33:60:c8:f5:d3:71:10:f8:49:92: 37:2b:7c:33:c8:d6:c7:3a:2d:3b:9e:61:27:84:4f:af:bd:a5: f1:41:3a:1c:89:37:c8:ff:6f:ff:52:4b:d4:fd:1c:af:40:63: 39:e3:c8:b8 -----BEGIN CERTIFICATE----- MIIF2jCCBMKgAwIBAgIUOLLM3xOYJte08fW1oLiz0smipj0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwNTE4MTMzN1oX DTI1MTEwNDE4MTgzN1owMzExMC8GA1UEAxMoNDUxNjRDMjBFQUY3RkFCNTgzRkIx MkM4MTcyNzE1MDg5NUZDRUM3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANsCarlAjL7jz8e8AKFm+qDR1+WbiD4Gyf7oGSo1+wEyZ8myrfNsiateK/pO Hu4NteYlBmkGHEsk/zxXjft90082dcnQj6hklnTvdCxuT3RZUYRzztIByirdOMQR EJgZ03tw/aEC9M69LNpY6wR2WJlaNCqPQSWEW2bhVhlvW1iWhxSZ1/m+EP4BbGez PIbOqNXUlofpkve8rmCFX6vWhf8I73GFCxdncLkkevMzpd/6ZMAS1jtGoQPxulXO ocF1RU3JWinFz95I7/53xH45sXxEi9F40Ckbd4NGstGIm/rHdmVpoYkeRCpXsvU+ gttIY8ycNfyo+8IYsl0FKz6tfT8CAwEAAaOCAs0wggLJMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEUWTCDq9/q1g/sSyBcnFQiV/OxwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMWFlMTJmYS05OGZkLTRlNTEtOTgwZS1hZDVmNWI5MGQ3YTYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxYWUxMmZh LTk4ZmQtNGU1MS05ODBlLWFkNWY1YjkwZDdhNi8wLzQ1MTY0QzIwRUFGN0ZBQjU4 M0ZCMTJDODE3MjcxNTA4OTVGQ0VDNzAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwD BAJnbJwDBAFnmSgwDQQCAAIwBwMFACQGPkAwDQYJKoZIhvcNAQELBQADggEBAJBA YTPj8ZNHkfPvgrNEXVqX/HOT0u50HCWBw6NWJc0EMB0g512778Vo08wNnS4EbJNH aQJPVpu6t6lgIIZ2omDLkN/BmqBTxG/b8YqEbsHm0WBvisPrSeUh2S19rQJ5CCVz ZE+E0fEO7XRU0k46d9hFcCiVDsqZcUAGcpT5khfBWNIJbOOTAHr7PyAZSWhgCW0q tJX8AzGXjpebzrjqMP2v24UnFcsawruG8WAZED5vSdw72fPjYz8WzNv1Q7JH7JGi +ajA4RhWhmNMbdM1M2DI9dNxEPhJkjcrfDPI1sc6LTueYSeET6+9pfFBOhyJN8j/ b/9SS9T9HK9AYznjyLg= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:41 2024 by rpki-client on console-ams.rpki-client.org