$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5DFC46925E2D4B3FB044F284111222A8B4C78392.cer File: 5DFC46925E2D4B3FB044F284111222A8B4C78392.cer (raw, json) Hash identifier: MpTPm5ssafDBlQE3ysQWgndbKxxrHSrn3pKVUflSMm4= Subject key identifier: 5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2893EBAE91262B6E6EB51108526BE01F75EEE086 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.mft caRepository: rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 27 Dec 2023 12:18:47 +0000 Certificate not after: Wed 25 Dec 2024 12:23:47 +0000 Subordinate resources: IP: 103.22.98.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:93:eb:ae:91:26:2b:6e:6e:b5:11:08:52:6b:e0:1f:75:ee:e0:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 27 12:18:47 2023 GMT Not After : Dec 25 12:23:47 2024 GMT Subject: CN=5DFC46925E2D4B3FB044F284111222A8B4C78392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:03:3b:e9:ea:ed:6f:1e:9b:a7:b3:f1:a0:72: 23:59:3b:66:bd:48:d3:75:87:26:8b:c9:b1:a0:22: 1e:e3:fe:05:db:9c:13:b4:aa:82:12:f3:b5:1f:76: 71:e5:97:2c:79:e1:de:4d:3b:a0:f9:bc:eb:94:38: a2:5c:57:0a:a1:8c:d5:ab:3f:46:d9:e1:2f:e8:54: ea:f3:f4:de:c1:1b:30:43:0e:f9:af:d2:e3:b4:30: 6d:2c:88:95:14:69:13:d0:1b:ed:49:76:1c:27:de: 56:30:0b:0a:85:ad:e0:a8:92:a0:be:03:ec:7f:55: 05:14:40:fc:46:70:e6:00:f5:f7:e7:49:92:00:44: d2:d1:30:9a:cc:a1:d3:a5:f9:6b:fe:b8:27:1d:be: cd:37:c9:a5:9b:70:04:94:e0:f2:68:14:2f:13:f2: fd:b2:42:bf:44:2d:1e:89:c8:4e:f8:14:05:e2:94: 27:c1:2e:72:a7:94:a4:39:d3:d1:68:4b:3e:bd:97: a7:b7:eb:03:76:cb:d2:1b:9d:5e:55:d8:15:da:da: 87:f2:ae:78:5c:59:92:80:2f:99:b3:ca:37:9a:e9: 08:fe:e3:4e:32:54:e5:33:e0:e8:57:05:56:7f:6c: f3:97:52:54:e5:0c:14:fe:87:56:3d:24:5a:c2:a6: fc:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5D:FC:46:92:5E:2D:4B:3F:B0:44:F2:84:11:12:22:A8:B4:C7:83:92 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d701b277-c80c-45d5-8089-a9efa340542a/0/5DFC46925E2D4B3FB044F284111222A8B4C78392.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.98.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:c2:a4:0d:e3:c5:e9:c2:50:b0:69:15:24:03:65:8d:bc:41: eb:5c:11:35:56:c0:38:b6:66:3a:3e:f9:72:9f:ad:93:be:45: 44:bd:88:da:ed:98:ae:b2:a1:1d:0a:6a:50:4b:0d:00:e3:d7: fa:86:fb:9f:11:05:25:c3:6c:0b:e6:49:81:44:3c:1f:97:15: c2:10:c0:4c:c1:7d:9e:27:4b:cd:ba:e1:2b:4c:46:f4:ff:f3: 1c:a0:24:9f:5e:2e:93:ec:59:87:4e:9c:27:7f:26:07:d3:f9: c9:f1:29:74:9c:01:7c:a8:3a:01:dd:be:00:4d:1f:da:3c:4f: 39:93:39:68:6b:5d:ff:76:e5:fd:01:95:d6:59:4f:2a:23:a6: fe:1a:1b:3d:d7:f8:02:2c:12:d4:ed:86:60:ae:6a:96:0f:e6: b6:50:15:8b:3a:03:cd:f2:be:8c:41:09:28:dc:0b:e3:51:46: 3f:ba:69:53:5a:4b:f7:f2:bd:b2:7b:f7:a3:88:79:51:75:54: 78:95:19:f7:c3:e3:ea:aa:09:ca:f8:ab:12:4c:9f:92:b7:b6: 98:b1:36:68:da:f4:6f:f7:6b:63:b3:ed:55:35:ec:49:d3:46: c2:2a:c4:f4:2c:08:c7:e8:ec:0a:a2:03:7f:59:1b:14:63:5e: 6b:c3:04:b7 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKJPrrpEmK25utREIUmvgH3Xu4IYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyNzEyMTg0N1oX DTI0MTIyNTEyMjM0N1owMzExMC8GA1UEAxMoNURGQzQ2OTI1RTJENEIzRkIwNDRG Mjg0MTExMjIyQThCNEM3ODM5MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALoDO+nq7W8em6ez8aByI1k7Zr1I03WHJovJsaAiHuP+BducE7SqghLztR92 ceWXLHnh3k07oPm865Q4olxXCqGM1as/RtnhL+hU6vP03sEbMEMO+a/S47QwbSyI lRRpE9Ab7Ul2HCfeVjALCoWt4KiSoL4D7H9VBRRA/EZw5gD19+dJkgBE0tEwmsyh 06X5a/64Jx2+zTfJpZtwBJTg8mgULxPy/bJCv0QtHonITvgUBeKUJ8EucqeUpDnT 0WhLPr2Xp7frA3bL0hudXlXYFdrah/KueFxZkoAvmbPKN5rpCP7jTjJU5TPg6FcF Vn9s85dSVOUMFP6HVj0kWsKm/D0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFF38RpJeLUs/sETyhBESIqi0x4OSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kNzAxYjI3Ny1jODBjLTQ1ZDUtODA4OS1hOWVmYTM0MDU0MmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3MDFiMjc3 LWM4MGMtNDVkNS04MDg5LWE5ZWZhMzQwNTQyYS8wLzVERkM0NjkyNUUyRDRCM0ZC MDQ0RjI4NDExMTIyMkE4QjRDNzgzOTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnFmIwDQYJKoZIhvcNAQELBQADggEBAH/CpA3jxenCULBpFSQDZY28QetcETVW wDi2Zjo++XKfrZO+RUS9iNrtmK6yoR0KalBLDQDj1/qG+58RBSXDbAvmSYFEPB+X FcIQwEzBfZ4nS8264StMRvT/8xygJJ9eLpPsWYdOnCd/JgfT+cnxKXScAXyoOgHd vgBNH9o8TzmTOWhrXf925f0BldZZTyojpv4aGz3X+AIsEtTthmCuapYP5rZQFYs6 A83yvoxBCSjcC+NRRj+6aVNaS/fyvbJ796OIeVF1VHiVGffD4+qqCcr4qxJMn5K3 tpixNmja9G/3a2Oz7VU17EnTRsIqxPQsCMfo7AqiA39ZGxRjXmvDBLc= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:48 2024 by rpki-client on console-fra.rpki-client.org