$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/4E4C9A47789406B9086713C5B821524B664E7C90.cer File: 4E4C9A47789406B9086713C5B821524B664E7C90.cer (raw, json) Hash identifier: cQQQs5xHWLLBuKK09h8YdCcMS6N+gr7IaxUQw+uE3NY= Subject key identifier: 4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 22BA71E6D340A70CDA6124DF6197F446EF3D7174 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.mft caRepository: rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 14 Oct 2024 14:19:48 +0000 Certificate not after: Mon 13 Oct 2025 14:24:48 +0000 Subordinate resources: IP: 203.175.124.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ba:71:e6:d3:40:a7:0c:da:61:24:df:61:97:f4:46:ef:3d:71:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 14 14:19:48 2024 GMT Not After : Oct 13 14:24:48 2025 GMT Subject: CN=4E4C9A47789406B9086713C5B821524B664E7C90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:09:b6:74:b6:99:d3:71:04:0a:36:95:77:4f: ba:36:19:af:06:5f:e1:43:95:0b:13:6b:b4:5d:c0: fa:4e:75:b4:0b:3e:d1:80:93:80:46:e0:b7:2e:a8: b1:7d:67:37:99:ce:3f:34:fc:48:e2:67:c5:53:e1: 4a:c7:31:7c:b5:da:8a:ab:45:76:d9:26:dc:b2:40: 71:29:5d:ff:58:bb:fd:35:8e:ca:b7:05:24:cb:d7: 9b:ab:4e:66:21:eb:d5:35:3a:ec:bc:d2:4d:69:2c: b8:b2:9c:e9:1e:ea:06:a4:5d:3e:61:50:a4:3d:17: d4:70:b1:38:b5:b4:42:13:6e:2f:79:fc:fe:57:b3: e1:82:e7:de:7b:41:e0:bb:1b:47:40:b3:da:80:f3: ca:7d:ec:34:9e:d1:1e:66:76:99:9c:19:7b:3c:b6: e0:0b:b4:47:ae:00:44:c8:77:62:8f:09:e9:08:f3: 45:af:6a:bb:ef:7a:65:58:a2:66:15:70:12:bc:37: 52:23:b4:ae:b6:2c:67:22:39:8c:7e:0a:a1:81:a7: a6:cb:0f:97:58:cb:63:0c:23:ca:41:6d:e6:92:e8: a7:50:75:b4:81:9e:ff:e3:91:24:3e:e9:c5:ef:34: 4d:bb:8e:2c:37:b5:ab:05:38:0a:66:e5:a4:7a:0c: 59:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4E:4C:9A:47:78:94:06:B9:08:67:13:C5:B8:21:52:4B:66:4E:7C:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/52b38f79-26d3-4489-a47d-0a8805b448ae/0/4E4C9A47789406B9086713C5B821524B664E7C90.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.175.124.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:4a:83:c9:84:cf:6a:25:60:72:fb:27:b8:5d:e0:17:ac:39: 5b:e5:86:a7:70:18:57:09:31:0e:64:8f:b6:e4:ef:b5:80:c4: 03:6d:f7:db:25:70:4b:25:8c:e8:c5:b3:8b:60:c3:e5:4c:bb: 62:f0:07:e9:d1:5a:64:80:8b:17:64:2a:03:f0:8a:6c:29:4c: 38:87:8f:7c:ac:69:09:99:d1:53:04:f0:e5:ee:dc:a3:a5:e3: b4:b9:a5:6f:71:70:ce:91:10:f8:a5:2c:dc:b6:c0:39:ef:fb: 9e:10:7e:00:49:a6:c3:86:48:22:1c:e3:8b:79:a5:f5:e8:01: ea:44:47:b6:bb:26:aa:e4:79:62:77:1f:d0:37:f2:75:ee:75: bd:fc:74:43:1b:ec:ee:a6:cc:2a:0e:1d:30:4c:14:d7:9b:97: 66:ab:b9:3c:db:dc:19:d0:26:7b:af:4b:47:a1:49:2c:d6:20: 01:8b:06:24:7f:99:40:40:5d:3a:47:d6:5a:96:ef:82:6d:dc: 58:47:34:b0:fb:dd:db:a3:01:01:c0:e6:cb:a3:c0:6c:4e:f5: 97:50:3f:ca:14:8a:02:61:97:c2:fe:e8:ca:7d:4f:03:cd:58: 87:c0:0f:bd:da:a1:6e:7f:98:b8:8c:a5:5f:21:1a:ec:69:95: db:14:65:d8 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUIrpx5tNApwzaYSTfYZf0Ru89cXQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNDE0MTk0OFoX DTI1MTAxMzE0MjQ0OFowMzExMC8GA1UEAxMoNEU0QzlBNDc3ODk0MDZCOTA4Njcx M0M1QjgyMTUyNEI2NjRFN0M5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0JtnS2mdNxBAo2lXdPujYZrwZf4UOVCxNrtF3A+k51tAs+0YCTgEbgty6o sX1nN5nOPzT8SOJnxVPhSscxfLXaiqtFdtkm3LJAcSld/1i7/TWOyrcFJMvXm6tO ZiHr1TU67LzSTWksuLKc6R7qBqRdPmFQpD0X1HCxOLW0QhNuL3n8/lez4YLn3ntB 4LsbR0Cz2oDzyn3sNJ7RHmZ2mZwZezy24Au0R64ARMh3Yo8J6QjzRa9qu+96ZVii ZhVwErw3UiO0rrYsZyI5jH4KoYGnpssPl1jLYwwjykFt5pLop1B1tIGe/+ORJD7p xe80TbuOLDe1qwU4CmblpHoMWZsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE5Mmkd4lAa5CGcTxbghUktmTnyQMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81MmIzOGY3OS0yNmQzLTQ0ODktYTQ3ZC0wYTg4MDViNDQ4YWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUyYjM4Zjc5 LTI2ZDMtNDQ4OS1hNDdkLTBhODgwNWI0NDhhZS8wLzRFNEM5QTQ3Nzg5NDA2Qjkw ODY3MTNDNUI4MjE1MjRCNjY0RTdDOTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHLr3wwDQYJKoZIhvcNAQELBQADggEBAGpKg8mEz2olYHL7J7hd4BesOVvlhqdw GFcJMQ5kj7bk77WAxANt99slcEsljOjFs4tgw+VMu2LwB+nRWmSAixdkKgPwimwp TDiHj3ysaQmZ0VME8OXu3KOl47S5pW9xcM6REPilLNy2wDnv+54QfgBJpsOGSCIc 44t5pfXoAepER7a7JqrkeWJ3H9A38nXudb38dEMb7O6mzCoOHTBMFNebl2aruTzb 3BnQJnuvS0ehSSzWIAGLBiR/mUBAXTpH1lqW74Jt3FhHNLD73dujAQHA5sujwGxO 9ZdQP8oUigJhl8L+6Mp9TwPNWIfAD73aoW5/mLiMpV8hGuxpldsUZdg= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:21 2024 by rpki-client on console-ams.rpki-client.org