$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/4A243A1EC4991C40D3A6148515E3C51981B425F7.cer File: 4A243A1EC4991C40D3A6148515E3C51981B425F7.cer (raw, json) Hash identifier: qAWUUW5tbyzmbqfOpbhylidgMbiPKYoMSNOYkoyuZLA= Subject key identifier: 4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3BE2706536E2F20CD5C9393E506EA0EF5A10CE67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.mft caRepository: rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 01 Mar 2024 07:06:00 +0000 Certificate not after: Fri 28 Feb 2025 07:11:00 +0000 Subordinate resources: IP: 103.109.206.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:e2:70:65:36:e2:f2:0c:d5:c9:39:3e:50:6e:a0:ef:5a:10:ce:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 1 07:06:00 2024 GMT Not After : Feb 28 07:11:00 2025 GMT Subject: CN=4A243A1EC4991C40D3A6148515E3C51981B425F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:10:36:75:14:c5:a3:c8:8c:1e:8c:42:b1:48: 9a:c7:cc:c4:34:59:76:56:f8:55:ef:87:80:30:03: 51:37:ab:3d:ea:02:55:f9:49:5a:39:36:51:88:db: f3:58:a2:dd:43:47:a7:0c:80:96:6d:8a:36:5c:bd: 8f:d5:da:b5:ae:7b:d6:dc:f7:0f:73:6a:91:09:bc: 06:45:9e:f3:60:c9:64:9d:3d:1a:66:c4:05:06:d8: 0b:69:6c:e0:3c:2f:41:a2:7c:9f:4e:35:77:ff:8d: 98:7f:9c:3e:5d:ae:7f:43:73:df:11:33:62:17:1e: 67:bd:6d:89:8d:55:9e:da:3e:2c:b2:ef:4d:53:3b: 9a:d1:88:c9:29:8e:1a:cd:79:8f:e3:a9:29:69:c3: 3b:c8:10:7b:78:e0:6e:32:a7:b7:59:c1:00:03:a2: 8e:1e:3d:b3:97:e6:e3:d0:d4:ee:de:3c:b0:5a:78: 71:20:16:d5:cc:78:19:25:86:55:d4:d4:45:20:89: 0e:2d:91:8d:ef:01:30:3e:6c:7f:53:fa:76:f5:47: 7f:c0:df:b8:27:d2:49:cf:2b:2d:23:3d:06:1f:7f: aa:e0:17:67:88:dd:f2:11:a7:36:e8:3e:b3:c5:55: 7b:a6:db:e0:6e:ac:5a:01:80:31:88:51:cf:64:8a: ea:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4A:24:3A:1E:C4:99:1C:40:D3:A6:14:85:15:E3:C5:19:81:B4:25:F7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ec8892eb-ddc0-4cb6-957c-b653f28bbf39/0/4A243A1EC4991C40D3A6148515E3C51981B425F7.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.206.0/23 Signature Algorithm: sha256WithRSAEncryption 38:47:67:aa:65:0e:af:5e:0c:1d:fe:6f:e0:80:8f:4a:88:fe: 5b:b6:1c:80:40:6c:6f:6d:59:d8:68:f8:ca:44:ec:83:54:00: 71:9e:98:a2:7e:25:e7:55:8b:91:36:34:e4:34:0a:13:20:1c: eb:06:7b:6e:dc:eb:b4:41:cd:ee:bc:aa:22:81:2b:f1:1e:9a: ac:83:7f:09:3b:31:70:1f:0c:f3:e7:3e:af:78:c9:5f:e0:9a: 66:87:82:33:79:75:02:01:f8:ab:81:12:8d:ea:fc:5c:a8:50: c5:68:b1:73:a6:9a:97:7d:49:4d:51:ad:8c:26:12:58:2f:d7: 27:37:19:97:4f:97:70:b2:62:ac:c1:d6:ee:5e:a9:cb:17:28: 54:29:70:85:88:da:53:ad:84:e1:bb:5a:c5:64:e4:9b:65:78: b5:a1:97:bb:5f:77:ac:39:3d:d5:5e:2f:0e:7d:0c:5c:73:cb: bd:71:44:69:4f:56:ee:84:54:5b:49:a4:56:e6:7c:26:f4:4e: 50:03:0c:87:c9:07:de:15:8b:72:7c:d8:ed:ba:ca:da:4c:dd: fe:65:87:59:39:b6:91:22:dc:8d:53:8b:e0:33:0c:78:76:56: eb:a4:a2:a9:93:2a:01:4d:be:3d:93:b0:25:0a:e4:71:88:9b: e5:f1:f0:71 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUO+JwZTbi8gzVyTk+UG6g71oQzmcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwMTA3MDYwMFoX DTI1MDIyODA3MTEwMFowMzExMC8GA1UEAxMoNEEyNDNBMUVDNDk5MUM0MEQzQTYx NDg1MTVFM0M1MTk4MUI0MjVGNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIQNnUUxaPIjB6MQrFImsfMxDRZdlb4Ve+HgDADUTerPeoCVflJWjk2UYjb 81ii3UNHpwyAlm2KNly9j9Xata571tz3D3NqkQm8BkWe82DJZJ09GmbEBQbYC2ls 4DwvQaJ8n041d/+NmH+cPl2uf0Nz3xEzYhceZ71tiY1Vnto+LLLvTVM7mtGIySmO Gs15j+OpKWnDO8gQe3jgbjKnt1nBAAOijh49s5fm49DU7t48sFp4cSAW1cx4GSWG VdTURSCJDi2Rje8BMD5sf1P6dvVHf8DfuCfSSc8rLSM9Bh9/quAXZ4jd8hGnNug+ s8VVe6bb4G6sWgGAMYhRz2SK6mMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEokOh7EmRxA06YUhRXjxRmBtCX3MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lYzg4OTJlYi1kZGMwLTRjYjYtOTU3Yy1iNjUzZjI4YmJmMzkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VjODg5MmVi LWRkYzAtNGNiNi05NTdjLWI2NTNmMjhiYmYzOS8wLzRBMjQzQTFFQzQ5OTFDNDBE M0E2MTQ4NTE1RTNDNTE5ODFCNDI1RjcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnbc4wDQYJKoZIhvcNAQELBQADggEBADhHZ6plDq9eDB3+b+CAj0qI/lu2HIBA bG9tWdho+MpE7INUAHGemKJ+JedVi5E2NOQ0ChMgHOsGe27c67RBze68qiKBK/Ee mqyDfwk7MXAfDPPnPq94yV/gmmaHgjN5dQIB+KuBEo3q/FyoUMVosXOmmpd9SU1R rYwmElgv1yc3GZdPl3CyYqzB1u5eqcsXKFQpcIWI2lOthOG7WsVk5JtleLWhl7tf d6w5PdVeLw59DFxzy71xRGlPVu6EVFtJpFbmfCb0TlADDIfJB94Vi3J82O26ytpM 3f5lh1k5tpEi3I1Ti+AzDHh2VuukoqmTKgFNvj2TsCUK5HGIm+Xx8HE= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:17 2024 by rpki-client on console-fra.rpki-client.org