$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/542851974B72056B3D43792A5ED83E94DA8583CF.cer File: 542851974B72056B3D43792A5ED83E94DA8583CF.cer (raw, json) Hash identifier: hy2nAZNLqjdfwAdr6V74dZbwP/8SAwS45YrUHdeKPSg= Subject key identifier: 54:28:51:97:4B:72:05:6B:3D:43:79:2A:5E:D8:3E:94:DA:85:83:CF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6327366E709613D8840BF6B2A2B168493A6565E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.mft caRepository: rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 13 Sep 2024 15:44:02 +0000 Certificate not after: Fri 12 Sep 2025 15:49:02 +0000 Subordinate resources: IP: 103.177.60.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:27:36:6e:70:96:13:d8:84:0b:f6:b2:a2:b1:68:49:3a:65:65:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 13 15:44:02 2024 GMT Not After : Sep 12 15:49:02 2025 GMT Subject: CN=542851974B72056B3D43792A5ED83E94DA8583CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1a:84:68:6d:43:10:44:04:80:81:bc:c4:bd: ce:58:73:a7:1d:c0:d5:6b:74:6a:c6:2d:f6:ac:84: 09:91:4e:9c:51:9a:ed:3b:f3:0e:b6:8d:c7:51:20: c6:f8:db:56:6e:06:36:5d:d1:a9:7f:b5:8e:7c:90: 4f:11:19:0c:79:44:6b:10:aa:5c:4e:96:2d:84:2b: 69:3f:8c:f6:ab:95:d8:86:69:55:07:91:14:92:67: 2a:47:8c:88:15:2e:9d:cf:26:7c:dc:88:7d:fa:db: fd:81:17:8b:a3:0f:29:a6:3e:91:55:cd:62:c0:97: 45:e9:fa:a9:aa:57:7d:01:06:e1:83:0a:c1:f3:d6: f1:40:d6:0b:84:1c:63:37:17:75:62:df:0f:0f:96: 83:e8:0e:e9:dd:93:3c:23:31:bb:4e:8f:a4:9d:f3: a9:78:9d:a9:a8:93:c7:bc:0c:c9:d5:6c:f4:9e:b6: 91:df:d0:4d:ce:ae:36:67:15:f5:e5:04:ca:92:13: 1e:98:3e:5e:28:7c:4c:a7:0e:10:11:bc:0b:0b:2d: 63:77:fc:20:4f:9d:f2:3f:30:4e:ba:08:00:94:2e: 12:65:3f:ed:87:96:1d:41:76:69:33:d6:e2:fe:36: a3:de:8e:d6:ea:e0:09:70:2c:9d:dd:66:bf:77:5f: 08:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 54:28:51:97:4B:72:05:6B:3D:43:79:2A:5E:D8:3E:94:DA:85:83:CF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.60.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:22:25:eb:59:3f:41:13:4d:0a:68:98:e3:8c:78:ab:b4:bd: b3:5e:cf:bc:85:32:e0:62:b8:90:2c:b9:c3:e3:c6:be:dd:32: 58:d6:6e:15:d5:c1:76:03:ed:62:da:8a:55:a1:ab:85:01:e1: f8:7e:c2:3f:e3:ce:99:d7:17:39:e5:dd:4d:2a:d1:c5:3f:a4: cc:77:4f:9e:b1:19:13:7d:26:37:b1:19:ab:5a:72:82:7c:7b: c2:93:b9:04:79:72:54:d5:5f:8f:4f:e2:dc:ac:aa:7c:35:d2: 74:e0:79:5d:c7:30:25:4f:83:bd:8c:27:56:c9:ad:94:62:a0: c5:51:d4:09:9f:a2:3b:de:4c:d8:4d:dc:88:e8:2a:e7:d2:2c: 8d:41:68:3b:7e:2e:8c:68:09:07:95:9f:ec:a9:8d:0f:75:0e: a0:6b:e9:52:12:6e:ce:58:cc:37:cb:44:c7:e4:03:45:97:e2: 09:00:c1:99:a4:1a:c2:93:1a:57:34:57:3f:c6:cc:4b:ee:36: 5a:35:4c:3c:64:67:bb:a5:75:7a:c5:1e:fa:ec:56:d7:c8:21: c2:77:e4:d8:4d:b8:9d:ed:93:f9:de:ad:09:2a:6d:60:76:3c: 4c:c9:a5:24:ac:36:b1:8a:8c:d1:c6:24:58:05:87:64:36:9c: e9:f0:59:46 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYyc2bnCWE9iEC/ayorFoSTplZecwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxMzE1NDQwMloX DTI1MDkxMjE1NDkwMlowMzExMC8GA1UEAxMoNTQyODUxOTc0QjcyMDU2QjNENDM3 OTJBNUVEODNFOTREQTg1ODNDRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8ahGhtQxBEBICBvMS9zlhzpx3A1Wt0asYt9qyECZFOnFGa7TvzDraNx1Eg xvjbVm4GNl3RqX+1jnyQTxEZDHlEaxCqXE6WLYQraT+M9quV2IZpVQeRFJJnKkeM iBUunc8mfNyIffrb/YEXi6MPKaY+kVXNYsCXRen6qapXfQEG4YMKwfPW8UDWC4Qc YzcXdWLfDw+Wg+gO6d2TPCMxu06PpJ3zqXidqaiTx7wMydVs9J62kd/QTc6uNmcV 9eUEypITHpg+Xih8TKcOEBG8CwstY3f8IE+d8j8wTroIAJQuEmU/7YeWHUF2aTPW 4v42o96O1urgCXAsnd1mv3dfCHMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFQoUZdLcgVrPUN5Kl7YPpTahYPPMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mNzM1ZTE1Zi1kNDQ5LTQ2ZDgtYmUwZS04NWUzODliZWRjNWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3MzVlMTVm LWQ0NDktNDZkOC1iZTBlLTg1ZTM4OWJlZGM1ZS8wLzU0Mjg1MTk3NEI3MjA1NkIz RDQzNzkyQTVFRDgzRTk0REE4NTgzQ0YubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnsTwwDQYJKoZIhvcNAQELBQADggEBAA8iJetZP0ETTQpomOOMeKu0vbNez7yF MuBiuJAsucPjxr7dMljWbhXVwXYD7WLailWhq4UB4fh+wj/jzpnXFznl3U0q0cU/ pMx3T56xGRN9JjexGatacoJ8e8KTuQR5clTVX49P4tysqnw10nTgeV3HMCVPg72M J1bJrZRioMVR1AmfojveTNhN3IjoKufSLI1BaDt+LoxoCQeVn+ypjQ91DqBr6VIS bs5YzDfLRMfkA0WX4gkAwZmkGsKTGlc0Vz/GzEvuNlo1TDxkZ7uldXrFHvrsVtfI IcJ35NhNuJ3tk/nerQkqbWB2PEzJpSSsNrGKjNHGJFgFh2Q2nOnwWUY= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:17 2024 by rpki-client on console-fra.rpki-client.org