$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer File: 57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer (raw, json) Hash identifier: H9sTInCe7hyF3sC2LfBJZfFxV0/PqxCVeqE6yd3uHdQ= Subject key identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D4F36DF76364FA25D251F013CB2FA1BC7682BAC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.mft caRepository: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 09 Nov 2024 21:42:30 +0000 Certificate not after: Sat 08 Nov 2025 21:47:30 +0000 Subordinate resources: IP: 103.41.188.0/22 IP: 117.53.44.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:4f:36:df:76:36:4f:a2:5d:25:1f:01:3c:b2:fa:1b:c7:68:2b:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 9 21:42:30 2024 GMT Not After : Nov 8 21:47:30 2025 GMT Subject: CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8f:a9:96:07:62:6a:a6:69:5f:d2:6a:4d:41: 1f:32:af:ad:0b:08:6f:36:d4:6a:8f:3a:f1:a3:99: 6c:84:10:71:07:35:c9:1a:93:f1:14:ba:3d:8d:7f: 97:d0:58:cb:64:1e:81:7e:01:2f:00:86:16:cf:2b: 9f:29:e4:d5:43:a4:bb:dd:a7:71:be:ef:84:b0:18: f7:88:69:de:27:2e:0f:fd:04:90:57:71:dc:31:1d: f0:72:92:e0:5c:06:d4:14:d8:24:b0:48:31:f8:92: bb:ec:1b:1f:90:9a:f8:6c:c9:90:4b:37:4f:42:a2: ea:d8:c8:39:83:4d:c2:45:2e:80:ee:75:b5:02:57: 3d:f5:20:f5:e5:07:a6:86:30:3e:72:ed:97:ca:8c: 92:23:d5:c9:c1:79:bb:0b:63:73:12:ee:92:8c:61: b3:37:23:5b:4c:3d:d5:95:d5:1b:8e:8b:35:29:e4: 16:5d:f5:05:61:1b:38:b4:e6:52:0b:4c:61:72:a8: 3f:cf:a0:7c:eb:01:dd:d3:28:dc:8a:ad:4f:9f:f6: b0:99:f6:a7:18:2a:2d:41:25:c7:80:3a:8c:60:a1: e9:e3:60:e2:40:e7:44:f5:c6:74:9a:b2:9a:17:5c: b8:28:ae:cf:92:33:a6:db:20:9d:ff:e4:ab:43:07: 14:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.188.0/22 117.53.44.0/22 Signature Algorithm: sha256WithRSAEncryption 11:05:36:fa:1d:8c:2c:d2:40:29:82:b3:79:ec:be:5c:a0:0d: 64:44:64:7f:b7:4b:9b:7b:f0:d0:f6:aa:69:70:6c:da:85:cb: 2e:f2:81:19:fe:47:09:fc:a0:36:73:47:0f:bb:42:0a:ba:f5: 19:4f:7a:20:52:68:a4:8a:48:f6:18:0a:56:c8:f2:83:0a:a8: 4a:50:28:cb:4e:ef:55:3a:78:7f:f5:2d:08:cf:96:e5:94:49: 2b:73:c1:34:c3:c0:0a:ea:dd:0c:fd:7a:db:80:48:c4:cf:38: 00:28:5e:c9:3b:3d:7a:c0:77:8e:58:17:c3:12:39:32:a0:8d: 78:d8:6f:33:6b:b5:89:e3:e5:82:a3:af:42:98:a7:3d:9d:10: bb:02:45:29:c1:b4:ec:8e:01:28:26:88:e3:e4:e8:23:7a:6b: 8d:2c:48:14:00:b8:d9:1a:34:27:75:1a:52:36:a8:ac:e9:53: ef:b0:63:2c:fb:cd:a4:58:71:01:ef:65:c4:ad:8f:42:1b:dc: 6f:43:e5:fe:ee:9b:94:0d:e7:22:ba:03:18:3d:dc:0f:0c:aa: 62:2e:b2:8a:f4:18:86:59:55:3b:36:7f:89:b2:3b:8b:bb:7a: 77:bb:37:d4:a6:19:5d:a9:2d:6b:6a:93:ac:7e:c3:38:3b:98: ca:ef:e6:55 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUPU8233Y2T6JdJR8BPLL6G8doK6wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwOTIxNDIzMFoX DTI1MTEwODIxNDczMFowMzExMC8GA1UEAxMoNTdENEI4MjY5QUREQTQ2MEU4Rjc5 MjVEMEFBMTI2RUNENkY2MEUyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKPqZYHYmqmaV/Sak1BHzKvrQsIbzbUao868aOZbIQQcQc1yRqT8RS6PY1/ l9BYy2QegX4BLwCGFs8rnynk1UOku92ncb7vhLAY94hp3icuD/0EkFdx3DEd8HKS 4FwG1BTYJLBIMfiSu+wbH5Ca+GzJkEs3T0Ki6tjIOYNNwkUugO51tQJXPfUg9eUH poYwPnLtl8qMkiPVycF5uwtjcxLukoxhszcjW0w91ZXVG46LNSnkFl31BWEbOLTm UgtMYXKoP8+gfOsB3dMo3IqtT5/2sJn2pxgqLUElx4A6jGCh6eNg4kDnRPXGdJqy mhdcuCiuz5Izptsgnf/kq0MHFCMCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFfUuCaa3aRg6PeSXQqhJuzW9g4kMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZjQ5OWM1Ni1hMjQ2LTRkMTgtYmU4Ni1mNDYxZDhmNTU5YzgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNDk5YzU2 LWEyNDYtNGQxOC1iZTg2LWY0NjFkOGY1NTljOC8wLzU3RDRCODI2OUFEREE0NjBF OEY3OTI1RDBBQTEyNkVDRDZGNjBFMjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAJnKbwDBAJ1NSwwDQYJKoZIhvcNAQELBQADggEBABEFNvodjCzSQCmCs3nsvlyg DWREZH+3S5t78ND2qmlwbNqFyy7ygRn+Rwn8oDZzRw+7Qgq69RlPeiBSaKSKSPYY ClbI8oMKqEpQKMtO71U6eH/1LQjPluWUSStzwTTDwArq3Qz9etuASMTPOAAoXsk7 PXrAd45YF8MSOTKgjXjYbzNrtYnj5YKjr0KYpz2dELsCRSnBtOyOASgmiOPk6CN6 a40sSBQAuNkaNCd1GlI2qKzpU++wYyz7zaRYcQHvZcStj0Ib3G9D5f7um5QN5yK6 Axg93A8MqmIusor0GIZZVTs2f4myO4u7ene7N9SmGV2pLWtqk6x+wzg7mMrv5lU= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:48 2024 by rpki-client on console-fra.rpki-client.org