$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/4EE959798755CD4BA407AEB6EBDD3100261EAA55.cer File: 4EE959798755CD4BA407AEB6EBDD3100261EAA55.cer (raw, json) Hash identifier: 5Cdb8mNyCAaGCoFH2nkitoUoag+28D67Py8AGo+kZ/s= Subject key identifier: 4E:E9:59:79:87:55:CD:4B:A4:07:AE:B6:EB:DD:31:00:26:1E:AA:55 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 69C2CD65A60F58C2DB84F9A61E223BFC9571BBC9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/4EE959798755CD4BA407AEB6EBDD3100261EAA55.mft caRepository: rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 29 Jun 2024 13:51:13 +0000 Certificate not after: Sat 28 Jun 2025 13:56:13 +0000 Subordinate resources: IP: 103.168.250.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:c2:cd:65:a6:0f:58:c2:db:84:f9:a6:1e:22:3b:fc:95:71:bb:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 29 13:51:13 2024 GMT Not After : Jun 28 13:56:13 2025 GMT Subject: CN=4EE959798755CD4BA407AEB6EBDD3100261EAA55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fb:12:53:b1:c7:10:c7:2f:17:c8:aa:f5:58: b2:c9:a4:63:5f:12:f1:da:ad:55:11:8c:41:fb:9e: 73:e1:68:dc:c8:4c:a2:ec:a1:b4:30:b4:90:34:94: ed:4c:64:3e:e3:e3:d0:c1:bb:1f:59:b7:3c:5c:bd: 59:9d:21:e6:02:2f:81:44:6f:2c:21:5b:b8:23:3d: 27:e7:1b:53:20:8a:d2:5c:cf:79:9d:2c:c5:8f:96: dd:be:e5:c9:32:5a:7c:79:1f:fc:8e:59:c6:b0:d1: 52:3c:31:0b:66:e5:14:8a:63:aa:42:fa:b1:c5:8e: 23:ac:c7:c1:f5:b8:f6:e1:14:dd:4c:ab:10:9b:88: 06:95:4b:75:c2:48:b6:a4:be:c1:48:9a:d1:e9:c5: 16:c3:c3:23:98:86:3b:df:cf:b6:c5:b9:ac:45:1b: 0e:cb:ba:af:a4:9b:2b:ac:25:27:92:40:1e:c3:f2: 52:39:12:21:3b:99:97:d5:f3:5c:89:3a:53:7e:80: 33:1b:b8:12:37:07:ce:ea:01:81:70:36:be:54:bf: bf:9d:2b:80:d9:f5:95:d6:3a:30:3f:bf:ae:a0:be: 9b:a7:c6:51:67:c6:2c:df:b1:dc:c3:25:38:9f:52: 51:3e:47:ab:ec:ac:d6:80:df:62:ce:4c:78:0e:48: 5e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4E:E9:59:79:87:55:CD:4B:A4:07:AE:B6:EB:DD:31:00:26:1E:AA:55 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/4EE959798755CD4BA407AEB6EBDD3100261EAA55.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.250.0/23 Signature Algorithm: sha256WithRSAEncryption 99:e3:06:40:da:13:5b:65:c5:84:76:fd:6b:73:4f:1a:54:73: 5b:29:95:4d:83:46:35:12:aa:ec:37:7e:18:3b:d2:15:24:e8: 3f:b0:3e:89:87:3e:05:a7:e9:e3:9c:e3:95:3d:ab:47:02:cf: d6:36:7c:01:5c:7c:73:48:b7:99:d1:41:9e:15:01:7f:c0:b0: c3:62:9f:a9:0f:1c:d9:92:76:7a:44:db:82:45:a8:71:db:55: 60:93:e6:d1:e7:f4:df:8a:77:17:1b:8e:e1:c8:8f:42:3b:a6: da:9f:1b:96:e5:02:8f:0e:87:0c:a0:42:79:6b:ae:7e:f4:fa: 41:6a:d2:05:c6:89:02:74:7f:a8:bb:0d:46:82:38:5c:36:24: 97:37:de:09:82:63:a9:0a:75:39:9c:8f:5b:38:58:06:47:d8: 81:8f:bf:79:a7:5a:72:ac:75:9d:b9:aa:80:30:bb:d1:74:91: 22:02:4b:65:ef:95:da:2a:8b:01:70:7e:63:11:2e:7f:59:9e: d3:03:88:0b:24:ac:b5:8d:a6:81:4d:0b:2f:32:4c:73:27:ac: ec:f5:85:75:29:8e:03:27:60:09:5c:6f:34:03:3e:de:f7:c8: 3c:cd:95:cd:fd:c9:82:45:86:05:f8:f7:24:b9:6f:21:73:4b: 23:f2:fa:b4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUacLNZaYPWMLbhPmmHiI7/JVxu8kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYyOTEzNTExM1oX DTI1MDYyODEzNTYxM1owMzExMC8GA1UEAxMoNEVFOTU5Nzk4NzU1Q0Q0QkE0MDdB RUI2RUJERDMxMDAyNjFFQUE1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMv7ElOxxxDHLxfIqvVYssmkY18S8dqtVRGMQfuec+Fo3MhMouyhtDC0kDSU 7UxkPuPj0MG7H1m3PFy9WZ0h5gIvgURvLCFbuCM9J+cbUyCK0lzPeZ0sxY+W3b7l yTJafHkf/I5ZxrDRUjwxC2blFIpjqkL6scWOI6zHwfW49uEU3UyrEJuIBpVLdcJI tqS+wUia0enFFsPDI5iGO9/PtsW5rEUbDsu6r6SbK6wlJ5JAHsPyUjkSITuZl9Xz XIk6U36AMxu4EjcHzuoBgXA2vlS/v50rgNn1ldY6MD+/rqC+m6fGUWfGLN+x3MMl OJ9SUT5Hq+ys1oDfYs5MeA5IXtUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE7pWXmHVc1LpAeutuvdMQAmHqpVMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wMzhkNTgwYi00NTJlLTQyZDctYjA0MS05MDFkYzMzZDY4NTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzOGQ1ODBi LTQ1MmUtNDJkNy1iMDQxLTkwMWRjMzNkNjg1Ny8wLzRFRTk1OTc5ODc1NUNENEJB NDA3QUVCNkVCREQzMTAwMjYxRUFBNTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqPowDQYJKoZIhvcNAQELBQADggEBAJnjBkDaE1tlxYR2/WtzTxpUc1splU2D RjUSquw3fhg70hUk6D+wPomHPgWn6eOc45U9q0cCz9Y2fAFcfHNIt5nRQZ4VAX/A sMNin6kPHNmSdnpE24JFqHHbVWCT5tHn9N+KdxcbjuHIj0I7ptqfG5blAo8Ohwyg Qnlrrn70+kFq0gXGiQJ0f6i7DUaCOFw2JJc33gmCY6kKdTmcj1s4WAZH2IGPv3mn WnKsdZ25qoAwu9F0kSICS2XvldoqiwFwfmMRLn9ZntMDiAskrLWNpoFNCy8yTHMn rOz1hXUpjgMnYAlcbzQDPt73yDzNlc39yYJFhgX49yS5byFzSyPy+rQ= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:41 2024 by rpki-client on console-ams.rpki-client.org