$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer File: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer (raw, json) Hash identifier: kI3r20yLtU2MM6x/g8HaRepSP8BPNfGyjeHCdR7KxRg= Subject key identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 18E6C4BD8DE15444993D71FB56D796797906910A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft caRepository: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 03 Oct 2024 10:28:12 +0000 Certificate not after: Thu 02 Oct 2025 10:33:12 +0000 Subordinate resources: IP: 103.250.129.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:e6:c4:bd:8d:e1:54:44:99:3d:71:fb:56:d7:96:79:79:06:91:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 3 10:28:12 2024 GMT Not After : Oct 2 10:33:12 2025 GMT Subject: CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:97:76:c5:82:14:dc:5a:1b:af:d1:2c:2d:eb: 4f:06:c2:a0:d9:9c:ee:75:3c:c4:2f:9f:84:d0:3a: ee:03:36:a7:17:b0:69:43:52:57:60:04:04:e4:1c: 54:e5:c3:2f:b7:ef:ca:91:d5:4a:c7:bc:3e:3f:12: d4:89:0a:24:51:52:6e:34:ee:ca:2f:65:3c:7d:b2: 1c:aa:07:f1:44:9c:c7:68:2d:5b:c8:cb:8f:14:55: 88:9c:a0:92:88:23:f1:db:2d:2d:4f:62:20:ed:c1: 1e:d8:b9:5b:a8:0a:aa:85:ea:49:8d:84:e1:ab:95: 6e:c0:5a:fb:65:a0:57:da:63:64:8a:3f:b1:44:35: 70:b7:f0:87:74:ff:19:e0:94:b6:ca:e0:01:15:90: fd:81:5b:39:69:29:13:8e:a1:bb:dc:bd:20:6c:af: 74:1f:11:c1:34:de:7d:d6:c2:58:52:f6:60:19:47: 1f:bb:f7:5a:5c:b1:93:89:12:46:ad:53:f5:7e:92: 92:e2:d9:10:77:60:fb:eb:7e:1a:c9:8a:06:59:3d: 70:36:3e:f5:73:cb:a4:83:0e:27:2c:23:b8:b7:b8: 73:87:91:73:ca:75:30:d7:78:df:1c:eb:7a:2f:33: f9:55:56:77:6b:38:93:fb:72:0a:f0:3c:b2:68:75: 51:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:44:46:93:5c:7d:90:d1:6f:19:f9:e6:1d:f1:82:93:01:48: 27:fa:96:3f:25:3a:ef:6e:8d:a7:77:df:41:dc:31:c6:10:8c: da:34:97:72:67:26:88:eb:55:f9:0f:17:62:61:c6:2b:c6:f6: a5:d6:7c:ae:28:6b:99:2d:06:0f:66:61:17:6b:4f:7c:09:ca: 6c:0b:0b:37:83:bb:7a:46:2b:39:f3:8a:8d:c7:a0:15:78:25: 9b:2f:83:11:62:99:03:08:39:56:86:76:63:2b:f5:d0:16:09: 7d:14:77:bf:63:8f:85:1d:f7:50:08:c4:c0:96:44:ba:c7:7b: 97:61:aa:34:58:91:94:c3:85:fe:44:98:d0:d0:df:fc:0f:c4: c7:4d:93:82:56:5d:85:31:e6:ef:2b:7e:31:88:9b:64:74:0e: c0:f0:f2:6e:d4:a3:f8:e9:f8:25:99:22:ab:06:ba:ff:9a:51: 20:55:0c:71:5e:66:89:f5:c8:c2:09:e8:4e:bd:01:d4:7e:7f: fb:45:2d:53:6b:b8:05:15:0a:e3:10:14:8a:b8:0c:09:37:fc: 14:19:b5:b3:fc:43:4e:68:1e:3b:b5:f4:b4:ee:a1:5f:8c:06: 0c:de:5e:cf:07:99:ec:f1:75:c0:4e:ad:3a:b3:a2:7e:71:eb: ed:29:6b:f0 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGObEvY3hVESZPXH7VteWeXkGkQowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwMzEwMjgxMloX DTI1MTAwMjEwMzMxMlowMzExMC8GA1UEAxMoNTc1QzM5ODY1RDNBRTIzRENDQzMy MkFEMDhEMTQyNEZENDBGQjhDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKXdsWCFNxaG6/RLC3rTwbCoNmc7nU8xC+fhNA67gM2pxewaUNSV2AEBOQc VOXDL7fvypHVSse8Pj8S1IkKJFFSbjTuyi9lPH2yHKoH8UScx2gtW8jLjxRViJyg kogj8dstLU9iIO3BHti5W6gKqoXqSY2E4auVbsBa+2WgV9pjZIo/sUQ1cLfwh3T/ GeCUtsrgARWQ/YFbOWkpE46hu9y9IGyvdB8RwTTefdbCWFL2YBlHH7v3Wlyxk4kS Rq1T9X6SkuLZEHdg++t+GsmKBlk9cDY+9XPLpIMOJywjuLe4c4eRc8p1MNd43xzr ei8z+VVWd2s4k/tyCvA8smh1UQsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFdcOYZdOuI9zMMirQjRQk/UD7jCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84MTFkOWFiYy00OTg3LTRkYmMtOTc2ZC0zZjMyYjI5MTcxNWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxMWQ5YWJj LTQ5ODctNGRiYy05NzZkLTNmMzJiMjkxNzE1ZC8wLzU3NUMzOTg2NUQzQUUyM0RD Q0MzMjJBRDA4RDE0MjRGRDQwRkI4QzIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn+oEwDQYJKoZIhvcNAQELBQADggEBAFtERpNcfZDRbxn55h3xgpMBSCf6lj8l Ou9ujad330HcMcYQjNo0l3JnJojrVfkPF2JhxivG9qXWfK4oa5ktBg9mYRdrT3wJ ymwLCzeDu3pGKznzio3HoBV4JZsvgxFimQMIOVaGdmMr9dAWCX0Ud79jj4Ud91AI xMCWRLrHe5dhqjRYkZTDhf5EmNDQ3/wPxMdNk4JWXYUx5u8rfjGIm2R0DsDw8m7U o/jp+CWZIqsGuv+aUSBVDHFeZon1yMIJ6E69AdR+f/tFLVNruAUVCuMQFIq4DAk3 /BQZtbP8Q05oHju19LTuoV+MBgzeXs8HmezxdcBOrTqzon5x6+0pa/A= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:42 2024 by rpki-client on console-ams.rpki-client.org