$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.cer File: 515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.cer (raw, json) Hash identifier: uUSFF5BId7VuexXwADRpkDr2ij9xQoYFOeCcCzPX9KI= Subject key identifier: 51:5A:CA:29:4C:72:13:5F:CE:F9:3D:C1:48:AB:B7:A0:B6:AF:73:F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 45F2AD8503F80BF7D4E1F15FDC4D1A0DCE3DBCAE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.mft caRepository: rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 18 Jul 2024 16:37:48 +0000 Certificate not after: Thu 17 Jul 2025 16:42:48 +0000 Subordinate resources: IP: 103.133.24.0/22 IP: 2404:4640::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:f2:ad:85:03:f8:0b:f7:d4:e1:f1:5f:dc:4d:1a:0d:ce:3d:bc:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 18 16:37:48 2024 GMT Not After : Jul 17 16:42:48 2025 GMT Subject: CN=515ACA294C72135FCEF93DC148ABB7A0B6AF73F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6c:10:e0:e9:6a:c1:a6:e4:fe:b7:87:17:19: 35:b4:56:a1:94:b9:13:4b:4d:1f:7d:ea:4c:da:dd: 82:88:c8:7b:be:c8:1c:f6:9f:e0:da:88:bf:43:b5: b0:37:8a:1e:a3:34:a9:1e:c9:98:ed:15:94:11:39: 83:b2:09:f2:ac:c8:33:54:7d:d4:8e:5c:d1:ab:0f: 5b:73:66:1b:a7:ee:26:0c:88:d2:69:35:b0:fc:56: 20:ac:d7:99:73:27:9d:07:c1:d8:e1:7e:5c:e1:ad: 9a:78:8d:d5:4e:d1:36:d5:3e:29:4e:b9:ee:7f:b0: 89:a1:8f:92:b0:59:ce:6f:a2:85:76:cc:88:f5:7c: 9e:fd:17:08:7d:0c:d3:2f:c4:6f:63:35:1b:10:6c: 16:d5:1f:54:78:52:95:6d:b6:65:a2:8a:d1:06:2f: b1:a8:21:12:10:a4:8c:e5:35:4a:f1:44:5d:0b:e9: b2:31:36:ab:06:bb:07:ba:8f:85:3c:9e:fa:c9:ae: c4:44:38:06:3b:71:d3:f3:2a:12:62:92:c5:5d:9e: 4e:9c:69:2c:d6:47:4e:ea:86:93:ae:15:02:29:9a: 28:c9:27:c8:92:7b:b2:de:9c:1f:08:f7:5d:f4:ba: a5:be:df:19:a9:93:37:0c:1a:22:ce:31:eb:a1:f5: 7f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 51:5A:CA:29:4C:72:13:5F:CE:F9:3D:C1:48:AB:B7:A0:B6:AF:73:F1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.24.0/22 IPv6: 2404:4640::/32 Signature Algorithm: sha256WithRSAEncryption 09:96:2e:01:c2:ab:92:cb:0f:88:7f:53:28:c0:cf:e4:dd:8c: a2:87:6b:8d:c4:58:7d:b8:81:84:dd:2d:ef:28:20:4d:ef:87: e7:dd:3b:69:3d:92:fc:ef:82:bc:70:85:a6:3c:d1:94:1b:03: e2:90:ce:28:c0:ba:fe:ae:4b:20:e3:2b:5b:e6:80:52:9e:fc: 62:c7:77:7d:d9:55:cf:89:39:fa:02:5e:05:c4:63:5b:2b:67: f9:f7:24:20:17:01:2c:c0:db:63:72:36:a9:7e:10:37:68:e8: c4:8d:a2:a5:30:6f:72:06:e3:e1:f2:d8:f7:e8:95:1e:a8:7f: 68:d0:f7:34:fb:77:c1:dc:58:f8:db:84:f5:07:57:c4:9a:d3: e3:a1:94:12:0c:6a:11:57:ac:73:9d:8d:9a:0b:eb:33:5e:00: 8a:e8:cc:d0:14:55:ca:c3:bd:a7:63:c0:a8:33:1a:ef:d7:3f: 14:b4:7a:58:02:b8:2d:9b:2d:7b:a1:db:84:42:44:93:e7:2e: 93:4f:fe:46:70:51:f9:f7:99:17:01:ae:36:e3:4a:96:ac:06: 32:34:f2:c6:a0:34:77:73:bb:42:93:f7:1f:80:5f:2b:b9:41: 7d:54:b0:e7:f2:9e:62:ab:2e:e6:84:0f:f5:2c:a2:ce:3c:8c: 1e:15:1e:db -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIURfKthQP4C/fU4fFf3E0aDc49vK4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxODE2Mzc0OFoX DTI1MDcxNzE2NDI0OFowMzExMC8GA1UEAxMoNTE1QUNBMjk0QzcyMTM1RkNFRjkz REMxNDhBQkI3QTBCNkFGNzNGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZsEODpasGm5P63hxcZNbRWoZS5E0tNH33qTNrdgojIe77IHPaf4NqIv0O1 sDeKHqM0qR7JmO0VlBE5g7IJ8qzIM1R91I5c0asPW3NmG6fuJgyI0mk1sPxWIKzX mXMnnQfB2OF+XOGtmniN1U7RNtU+KU657n+wiaGPkrBZzm+ihXbMiPV8nv0XCH0M 0y/Eb2M1GxBsFtUfVHhSlW22ZaKK0QYvsaghEhCkjOU1SvFEXQvpsjE2qwa7B7qP hTye+smuxEQ4Bjtx0/MqEmKSxV2eTpxpLNZHTuqGk64VAimaKMknyJJ7st6cHwj3 XfS6pb7fGamTNwwaIs4x66H1fzsCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFFayilMchNfzvk9wUirt6C2r3PxMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZmRmZjM5MC0xNjk1LTQ0ZWUtODhlNS00MmVkMTI4MTZiMDAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmZGZmMzkw LTE2OTUtNDRlZS04OGU1LTQyZWQxMjgxNmIwMC8wLzUxNUFDQTI5NEM3MjEzNUZD RUY5M0RDMTQ4QUJCN0EwQjZBRjczRjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnhRgwDQQCAAIwBwMFACQERkAwDQYJKoZIhvcNAQELBQADggEBAAmWLgHCq5LL D4h/UyjAz+TdjKKHa43EWH24gYTdLe8oIE3vh+fdO2k9kvzvgrxwhaY80ZQbA+KQ zijAuv6uSyDjK1vmgFKe/GLHd33ZVc+JOfoCXgXEY1srZ/n3JCAXASzA22NyNql+ EDdo6MSNoqUwb3IG4+Hy2PfolR6of2jQ9zT7d8HcWPjbhPUHV8Sa0+OhlBIMahFX rHOdjZoL6zNeAIrozNAUVcrDvadjwKgzGu/XPxS0elgCuC2bLXuh24RCRJPnLpNP /kZwUfn3mRcBrjbjSpasBjI08sagNHdzu0KT9x+AXyu5QX1UsOfynmKrLuaED/Us os48jB4VHts= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:21 2024 by rpki-client on console-ams.rpki-client.org