$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/4E1C7D0BF891C183458C47AB1134215E797C4165.cer File: 4E1C7D0BF891C183458C47AB1134215E797C4165.cer (raw, json) Hash identifier: FYG1G1fsEVnStfllR9ZFpFAnRikaquUSMzS8kc0UlIE= Subject key identifier: 4E:1C:7D:0B:F8:91:C1:83:45:8C:47:AB:11:34:21:5E:79:7C:41:65 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3F05944C381F8C27F15A75898FFCDC19A9ABBE97 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6bac619b-21e6-41d6-8e94-5804538c543e/0/4E1C7D0BF891C183458C47AB1134215E797C4165.mft caRepository: rsync://repo-rpki.idnic.net/repo/6bac619b-21e6-41d6-8e94-5804538c543e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 25 Jul 2024 16:02:09 +0000 Certificate not after: Thu 24 Jul 2025 16:07:09 +0000 Subordinate resources: IP: 103.191.128.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:05:94:4c:38:1f:8c:27:f1:5a:75:89:8f:fc:dc:19:a9:ab:be:97 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 25 16:02:09 2024 GMT Not After : Jul 24 16:07:09 2025 GMT Subject: CN=4E1C7D0BF891C183458C47AB1134215E797C4165 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d3:1a:04:77:25:f7:03:64:70:fb:35:7d:92: ea:9e:a1:18:44:5c:5b:05:aa:5d:4e:9f:a3:99:78: 60:6d:b1:21:bd:0e:c1:bf:05:90:a8:e2:47:05:5e: 5d:9c:94:00:e6:c1:9a:16:9c:75:e4:d9:6e:d7:aa: 4b:53:5b:b9:c1:da:4a:a3:30:eb:13:0d:5a:03:4e: 3f:a8:27:3a:2c:61:7d:16:c0:de:07:e3:70:55:47: 8e:88:2d:67:7f:bb:e6:98:7e:41:a3:3a:ea:34:96: 26:72:4e:5b:4a:20:88:53:e7:ad:49:b9:fb:e7:1e: 80:8b:f6:5a:af:01:0e:1c:ad:f1:75:c1:b2:eb:0a: 22:49:10:d5:d1:84:ca:cd:cc:35:2d:7b:51:b9:3a: 64:73:4b:79:40:f1:bb:cb:2e:cc:7e:8d:a6:9b:9b: 12:41:71:63:55:d0:7a:cb:99:1e:2a:54:22:94:87: ae:e8:e5:75:8d:94:22:51:6e:86:bc:79:00:00:c2: 4b:e8:60:31:41:60:73:0c:ee:14:b0:19:fc:4b:55: 18:9c:c7:e7:d1:b0:fb:d2:38:63:f0:bb:1f:ce:d7: 92:2f:2e:45:e2:d9:c1:00:88:63:bc:80:24:d2:3f: 99:79:66:1f:b9:fa:c4:1e:0b:57:16:ef:c2:a8:28: f9:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4E:1C:7D:0B:F8:91:C1:83:45:8C:47:AB:11:34:21:5E:79:7C:41:65 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6bac619b-21e6-41d6-8e94-5804538c543e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6bac619b-21e6-41d6-8e94-5804538c543e/0/4E1C7D0BF891C183458C47AB1134215E797C4165.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.128.0/24 Signature Algorithm: sha256WithRSAEncryption 01:b9:a1:26:52:8e:b5:2d:fd:ff:22:2a:96:81:5d:e7:12:18: 67:17:77:8d:48:cc:94:68:1f:c8:4f:c0:3b:80:5d:1e:77:7a: 6f:e0:32:42:fb:d1:cd:09:b7:78:dd:ad:58:ae:ee:0f:b4:73: df:96:12:24:11:d2:55:5f:13:14:09:4d:17:8a:8b:9d:2a:4b: bb:b7:03:11:0f:d5:8b:35:65:a4:1e:b7:d9:f6:b3:12:61:6c: bc:8e:ef:89:11:dd:6c:07:a8:f8:5b:bc:9c:80:6e:4c:3b:39: 96:a3:44:78:34:79:43:2b:86:5f:0f:6f:46:c2:3e:6f:a1:79: f7:87:f8:34:5b:61:a4:2b:3c:03:65:c9:1f:2c:1f:8b:16:75: 35:37:c5:38:09:94:1e:98:20:bc:31:c4:16:65:f8:a7:fb:49: 51:a7:84:a1:2b:24:c3:40:17:3a:22:0c:a6:9d:b8:e6:b1:c1: 46:c4:8e:0d:64:1f:df:71:44:f1:35:f1:df:5f:f8:db:f9:ea: fb:78:9c:4a:c7:63:6e:c7:cc:ff:ca:f0:4e:82:fd:a7:29:6d: 9c:b4:df:ef:61:dd:77:9c:0c:84:2c:80:0f:6a:64:7a:15:cc: 03:52:34:63:23:c3:6a:d6:25:71:92:e3:ed:84:a6:ab:26:43: 75:9a:89:cf -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPwWUTDgfjCfxWnWJj/zcGamrvpcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyNTE2MDIwOVoX DTI1MDcyNDE2MDcwOVowMzExMC8GA1UEAxMoNEUxQzdEMEJGODkxQzE4MzQ1OEM0 N0FCMTEzNDIxNUU3OTdDNDE2NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANnTGgR3JfcDZHD7NX2S6p6hGERcWwWqXU6fo5l4YG2xIb0Owb8FkKjiRwVe XZyUAObBmhacdeTZbteqS1NbucHaSqMw6xMNWgNOP6gnOixhfRbA3gfjcFVHjogt Z3+75ph+QaM66jSWJnJOW0ogiFPnrUm5++cegIv2Wq8BDhyt8XXBsusKIkkQ1dGE ys3MNS17Ubk6ZHNLeUDxu8suzH6NppubEkFxY1XQesuZHipUIpSHrujldY2UIlFu hrx5AADCS+hgMUFgcwzuFLAZ/EtVGJzH59Gw+9I4Y/C7H87Xki8uReLZwQCIY7yA JNI/mXlmH7n6xB4LVxbvwqgo+UECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE4cfQv4kcGDRYxHqxE0IV55fEFlMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82YmFjNjE5Yi0yMWU2LTQxZDYtOGU5NC01ODA0NTM4YzU0M2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZiYWM2MTli LTIxZTYtNDFkNi04ZTk0LTU4MDQ1MzhjNTQzZS8wLzRFMUM3RDBCRjg5MUMxODM0 NThDNDdBQjExMzQyMTVFNzk3QzQxNjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnv4AwDQYJKoZIhvcNAQELBQADggEBAAG5oSZSjrUt/f8iKpaBXecSGGcXd41I zJRoH8hPwDuAXR53em/gMkL70c0Jt3jdrViu7g+0c9+WEiQR0lVfExQJTReKi50q S7u3AxEP1Ys1ZaQet9n2sxJhbLyO74kR3WwHqPhbvJyAbkw7OZajRHg0eUMrhl8P b0bCPm+hefeH+DRbYaQrPANlyR8sH4sWdTU3xTgJlB6YILwxxBZl+Kf7SVGnhKEr JMNAFzoiDKaduOaxwUbEjg1kH99xRPE18d9f+Nv56vt4nErHY27HzP/K8E6C/acp bZy03+9h3XecDIQsgA9qZHoVzANSNGMjw2rWJXGS4+2EpqsmQ3Waic8= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:48 2024 by rpki-client on console-fra.rpki-client.org