$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/47FF2FBD96536B4FD610282F11EC87790C683CEF.cer File: 47FF2FBD96536B4FD610282F11EC87790C683CEF.cer (raw, json) Hash identifier: o1f1coRC6w7FG7vkp7H/s5hZyPVN0jnECkuWgnxGmEY= Subject key identifier: 47:FF:2F:BD:96:53:6B:4F:D6:10:28:2F:11:EC:87:79:0C:68:3C:EF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2DF3A07C2350440686F8151AF43A2A925F81F37F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/734f13e8-deef-48a8-a2e0-5a63ad159efa/0/47FF2FBD96536B4FD610282F11EC87790C683CEF.mft caRepository: rsync://repo-rpki.idnic.net/repo/734f13e8-deef-48a8-a2e0-5a63ad159efa/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 15 Jan 2024 07:14:39 +0000 Certificate not after: Mon 13 Jan 2025 07:19:39 +0000 Subordinate resources: IP: 103.254.197.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:f3:a0:7c:23:50:44:06:86:f8:15:1a:f4:3a:2a:92:5f:81:f3:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 15 07:14:39 2024 GMT Not After : Jan 13 07:19:39 2025 GMT Subject: CN=47FF2FBD96536B4FD610282F11EC87790C683CEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:0e:8a:8d:ea:af:db:77:bd:ff:fc:14:ca:3d: 29:87:52:4e:76:55:b4:4b:00:a4:1c:3b:c6:ac:dc: 00:70:d0:52:93:83:71:9e:19:50:f3:44:bf:41:91: cf:a5:83:a1:78:e4:9a:8f:e5:33:74:e0:dd:d8:04: 33:a4:08:0f:16:e5:fb:09:c8:e5:61:f6:8c:61:0d: 65:50:72:14:f6:2a:e4:bf:19:53:4c:58:e7:5c:21: aa:d3:02:4c:fc:f4:fb:45:ee:79:bd:ec:38:52:0c: c5:d3:03:ac:d5:1d:9e:93:85:d1:21:ba:c7:3d:4f: 89:38:a5:33:c1:3f:92:47:d5:be:a1:8e:47:31:42: 9a:f5:51:c6:b6:bd:50:a4:46:3b:69:ec:6c:ed:79: fa:2c:59:b5:cb:dd:2b:4b:2c:09:38:e9:e8:e7:af: 61:db:e4:24:83:22:3b:8c:70:22:cf:61:9f:11:f4: 3b:46:85:dd:2a:95:06:d2:7d:c6:bc:26:37:f1:aa: 4f:2c:ed:73:a2:6a:cb:44:43:11:22:0e:db:2b:ac: e0:7d:53:0e:53:f0:b7:16:4c:cc:bd:64:f8:d5:e5: c7:2b:25:97:27:1d:47:c3:1d:14:58:8a:5b:97:41: 96:55:e3:41:d1:94:84:11:57:7f:72:60:fc:4e:f2: 21:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 47:FF:2F:BD:96:53:6B:4F:D6:10:28:2F:11:EC:87:79:0C:68:3C:EF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/734f13e8-deef-48a8-a2e0-5a63ad159efa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/734f13e8-deef-48a8-a2e0-5a63ad159efa/0/47FF2FBD96536B4FD610282F11EC87790C683CEF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.254.197.0/24 Signature Algorithm: sha256WithRSAEncryption 8b:c2:ad:7e:27:03:0a:66:80:07:2a:6d:f7:2f:1e:f7:8d:35: dc:e6:31:32:14:a7:49:37:c2:49:a3:aa:4b:23:5a:b6:22:93: 94:f7:40:62:44:47:c5:df:4f:1d:47:e3:19:a4:8b:ca:b6:88: fc:80:fb:b9:4a:50:57:b3:0f:e9:6e:25:a1:43:71:73:fb:27: 15:9a:09:31:f9:22:ee:71:73:b8:9b:3c:a2:c7:69:dc:00:a1: a7:46:d6:64:86:9e:0a:6a:d4:70:a7:aa:2c:a9:1b:35:cd:76: 59:01:1f:80:e0:39:f9:df:b7:b0:d6:89:df:09:62:64:73:93: 70:9b:d3:f6:94:be:7a:1b:d8:ee:40:7b:58:c7:9e:14:6d:70: a2:ad:dc:33:f0:1d:51:67:99:35:41:1f:b7:4e:87:16:96:eb: 40:c6:e9:a4:88:8d:47:96:af:88:2f:35:1d:03:34:5a:ff:48: 6c:29:aa:3f:a0:26:35:2f:3f:03:40:1d:f0:be:5d:36:d3:d3: 4e:11:26:7d:fe:85:23:3f:5d:43:ea:d7:78:9f:df:d6:2b:3e: 11:ad:6a:bf:a5:e5:27:1c:74:ce:40:fc:ae:cb:3d:93:2a:12: c3:42:43:89:60:2a:73:c4:0e:1a:c6:33:38:ff:a3:da:ca:28: 2a:05:94:7b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULfOgfCNQRAaG+BUa9Doqkl+B838wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExNTA3MTQzOVoX DTI1MDExMzA3MTkzOVowMzExMC8GA1UEAxMoNDdGRjJGQkQ5NjUzNkI0RkQ2MTAy ODJGMTFFQzg3NzkwQzY4M0NFRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ4Oio3qr9t3vf/8FMo9KYdSTnZVtEsApBw7xqzcAHDQUpODcZ4ZUPNEv0GR z6WDoXjkmo/lM3Tg3dgEM6QIDxbl+wnI5WH2jGENZVByFPYq5L8ZU0xY51whqtMC TPz0+0Xueb3sOFIMxdMDrNUdnpOF0SG6xz1PiTilM8E/kkfVvqGORzFCmvVRxra9 UKRGO2nsbO15+ixZtcvdK0ssCTjp6OevYdvkJIMiO4xwIs9hnxH0O0aF3SqVBtJ9 xrwmN/GqTyztc6Jqy0RDESIO2yus4H1TDlPwtxZMzL1k+NXlxysllycdR8MdFFiK W5dBllXjQdGUhBFXf3Jg/E7yIV8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEf/L72WU2tP1hAoLxHsh3kMaDzvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83MzRmMTNlOC1kZWVmLTQ4YTgtYTJlMC01YTYzYWQxNTllZmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczNGYxM2U4 LWRlZWYtNDhhOC1hMmUwLTVhNjNhZDE1OWVmYS8wLzQ3RkYyRkJEOTY1MzZCNEZE NjEwMjgyRjExRUM4Nzc5MEM2ODNDRUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn/sUwDQYJKoZIhvcNAQELBQADggEBAIvCrX4nAwpmgAcqbfcvHveNNdzmMTIU p0k3wkmjqksjWrYik5T3QGJER8XfTx1H4xmki8q2iPyA+7lKUFezD+luJaFDcXP7 JxWaCTH5Iu5xc7ibPKLHadwAoadG1mSGngpq1HCnqiypGzXNdlkBH4DgOfnft7DW id8JYmRzk3Cb0/aUvnob2O5Ae1jHnhRtcKKt3DPwHVFnmTVBH7dOhxaW60DG6aSI jUeWr4gvNR0DNFr/SGwpqj+gJjUvPwNAHfC+XTbT004RJn3+hSM/XUPq13if39Yr PhGtar+l5SccdM5A/K7LPZMqEsNCQ4lgKnPEDhrGMzj/o9rKKCoFlHs= -----END CERTIFICATE-----Generated at Wed May 8 07:45:23 2024 by rpki-client on console-ams.rpki-client.org