$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer File: 5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer (raw, json) Hash identifier: AItKH73hqWjJ83KKqE8lu4Zc/1cCDxQVqsh087F+LWo= Subject key identifier: 5E:02:7C:2A:BE:4A:1F:46:34:0E:D8:3A:3A:D8:F0:6D:BC:CD:CD:21 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 33EE384920A10D6E227DFBA4CB7C4171DE7E4D36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.mft caRepository: rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 24 Oct 2024 06:36:08 +0000 Certificate not after: Thu 23 Oct 2025 06:41:08 +0000 Subordinate resources: IP: 103.179.136.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:ee:38:49:20:a1:0d:6e:22:7d:fb:a4:cb:7c:41:71:de:7e:4d:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 24 06:36:08 2024 GMT Not After : Oct 23 06:41:08 2025 GMT Subject: CN=5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1b:05:2c:52:c3:8e:a5:49:81:30:d7:23:e8: f8:5d:31:08:41:0e:34:a0:23:38:c6:e9:60:6e:07: 87:43:b9:34:39:20:2f:30:60:e5:cb:6c:0c:f9:9a: 2e:c8:f8:72:81:6f:c6:c3:f1:bb:b7:2c:b7:b5:70: f0:6d:f8:9a:30:56:89:b3:f7:8a:92:14:71:8f:b7: 08:da:f1:76:70:4e:90:ce:e1:cb:66:a2:8d:99:23: 7c:44:4f:8f:3c:21:b1:16:8a:f2:f9:fb:b8:a3:f9: 6f:63:1b:9d:0f:a9:5f:03:cd:98:ae:7a:27:fc:80: 05:fc:93:16:c0:7d:67:a4:7b:57:4e:5f:a4:2b:74: ca:78:4c:3d:5f:f2:b1:24:03:1f:c0:02:5b:de:74: d9:d3:45:d9:cf:f5:cb:bc:ce:d8:b9:50:49:32:54: 8b:79:b8:2e:93:35:49:b0:77:23:37:58:b2:8b:d3: 7a:96:5e:e5:1a:fd:04:75:fd:8d:0a:db:df:45:25: e4:fe:cd:29:52:9e:2c:79:59:9d:80:4c:ad:1b:43: aa:8a:d7:1d:e3:ad:c9:c5:9c:42:d3:15:f4:ab:94: b9:35:c4:c3:92:61:bb:d7:e3:00:85:d5:60:5a:9a: 1d:55:14:a6:00:b3:9f:83:2b:70:b3:34:80:08:39: e8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5E:02:7C:2A:BE:4A:1F:46:34:0E:D8:3A:3A:D8:F0:6D:BC:CD:CD:21 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.136.0/23 Signature Algorithm: sha256WithRSAEncryption 7c:a0:12:ea:a0:44:95:55:75:6c:85:79:62:6e:76:9d:5d:09: 66:9e:63:27:d3:5f:8b:26:27:1c:f7:5b:47:7b:54:a8:63:ed: 10:f5:62:70:b3:ac:fb:2d:dd:4e:c8:d4:e7:60:d9:e5:57:ef: 33:e3:97:e1:77:77:8f:f4:a9:38:f0:ac:36:37:0c:ea:60:62: d1:e5:53:b0:ef:93:98:f6:db:5f:4f:05:de:73:14:58:83:65: 6a:59:17:6b:1e:de:9e:06:5d:75:2c:e5:12:fd:dc:de:98:f3: 8f:d7:72:66:af:bf:f3:bd:1c:9e:5b:9e:29:28:84:23:64:d7: 68:05:0e:80:3c:94:0c:49:bb:21:16:a3:62:75:aa:e4:5a:08: 15:6b:37:70:49:f2:c2:c9:23:0e:84:22:f0:63:c0:58:10:56: 58:f3:cf:e4:0e:11:84:d1:2f:40:c1:e7:03:f0:8b:5e:33:55: a0:70:2d:eb:69:4e:ec:5b:dd:c0:c7:bc:fe:41:54:92:d0:c7: 92:aa:7c:e8:e5:1f:b4:e6:e6:e4:f7:4d:45:3b:c4:f7:2b:6f: 46:11:5d:16:a6:5b:49:11:90:4e:31:01:f1:b0:eb:1c:27:2e: 1f:ad:98:fd:1e:5d:68:c8:50:75:cc:0a:c0:02:87:e6:3b:e2: 40:b5:a7:6f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUM+44SSChDW4iffuky3xBcd5+TTYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyNDA2MzYwOFoX DTI1MTAyMzA2NDEwOFowMzExMC8GA1UEAxMoNUUwMjdDMkFCRTRBMUY0NjM0MEVE ODNBM0FEOEYwNkRCQ0NEQ0QyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANcbBSxSw46lSYEw1yPo+F0xCEEONKAjOMbpYG4Hh0O5NDkgLzBg5ctsDPma Lsj4coFvxsPxu7cst7Vw8G34mjBWibP3ipIUcY+3CNrxdnBOkM7hy2aijZkjfERP jzwhsRaK8vn7uKP5b2MbnQ+pXwPNmK56J/yABfyTFsB9Z6R7V05fpCt0ynhMPV/y sSQDH8ACW9502dNF2c/1y7zO2LlQSTJUi3m4LpM1SbB3IzdYsovTepZe5Rr9BHX9 jQrb30Ul5P7NKVKeLHlZnYBMrRtDqorXHeOtycWcQtMV9KuUuTXEw5Jhu9fjAIXV YFqaHVUUpgCzn4MrcLM0gAg56JMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFF4CfCq+Sh9GNA7YOjrY8G28zc0hMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82ZDgwYjMyMS1hYTMxLTQzMTctOWQzMS1jMmJkMTkwYzEzODQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkODBiMzIx LWFhMzEtNDMxNy05ZDMxLWMyYmQxOTBjMTM4NC8wLzVFMDI3QzJBQkU0QTFGNDYz NDBFRDgzQTNBRDhGMDZEQkNDRENEMjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFns4gwDQYJKoZIhvcNAQELBQADggEBAHygEuqgRJVVdWyFeWJudp1dCWaeYyfT X4smJxz3W0d7VKhj7RD1YnCzrPst3U7I1Odg2eVX7zPjl+F3d4/0qTjwrDY3DOpg YtHlU7Dvk5j2219PBd5zFFiDZWpZF2se3p4GXXUs5RL93N6Y84/Xcmavv/O9HJ5b nikohCNk12gFDoA8lAxJuyEWo2J1quRaCBVrN3BJ8sLJIw6EIvBjwFgQVljzz+QO EYTRL0DB5wPwi14zVaBwLetpTuxb3cDHvP5BVJLQx5KqfOjlH7Tm5uT3TUU7xPcr b0YRXRamW0kRkE4xAfGw6xwnLh+tmP0eXWjIUHXMCsACh+Y74kC1p28= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:18 2024 by rpki-client on console-fra.rpki-client.org