$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/64B2DB7703C5C56A6F69C4789AB9F69214F22695.cer File: 64B2DB7703C5C56A6F69C4789AB9F69214F22695.cer (raw, json) Hash identifier: 1KLyEo33BeaFEW3EzBdmw5vfX6ii6gFbCApszXRC91Q= Subject key identifier: 64:B2:DB:77:03:C5:C5:6A:6F:69:C4:78:9A:B9:F6:92:14:F2:26:95 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3A7EB7B232D5B2114B50430E69C3962D390D51FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/64B2DB7703C5C56A6F69C4789AB9F69214F22695.mft caRepository: rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 11 Apr 2024 17:53:40 +0000 Certificate not after: Thu 10 Apr 2025 17:58:40 +0000 Subordinate resources: IP: 103.117.58.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:7e:b7:b2:32:d5:b2:11:4b:50:43:0e:69:c3:96:2d:39:0d:51:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 11 17:53:40 2024 GMT Not After : Apr 10 17:58:40 2025 GMT Subject: CN=64B2DB7703C5C56A6F69C4789AB9F69214F22695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:62:79:2f:91:cd:c5:a0:90:21:04:4f:76:a8: dd:e0:9f:da:97:42:9f:68:b8:40:90:fe:b9:ae:c9: 10:d7:b2:b4:ee:24:22:f3:3d:4a:f4:b3:0d:53:47: 55:c0:79:f0:b0:82:9a:b6:32:ee:c5:08:bd:c7:10: 34:31:f3:cb:39:28:61:ba:6b:1c:e1:5f:53:2a:bb: 53:9d:0b:73:fa:fb:5c:5f:89:de:66:2a:d3:8d:d1: f8:0f:c7:19:6f:57:12:59:78:8d:3c:68:fc:d0:63: 33:25:8d:21:2e:cc:78:b3:9f:ee:14:dc:17:13:51: 56:18:ac:58:77:66:bd:5b:31:76:d1:01:35:9c:bf: e1:e5:9d:02:18:13:82:f3:e7:05:80:09:9a:d3:ec: b2:e3:a9:1f:d9:e2:23:ce:b4:ae:1e:a9:94:71:a3: d6:f6:79:89:f1:14:9e:2b:06:08:72:66:4f:31:1f: 8e:5d:0f:77:3b:50:78:e0:f0:10:37:7e:70:e8:11: c1:9a:63:cd:c2:dd:c7:e1:89:49:79:41:b3:e8:32: 4c:0a:12:a2:b0:ca:bb:d4:4a:80:75:b4:65:1c:e5: 9c:ca:1f:42:99:4a:b7:a9:6c:63:ae:85:c8:4b:f3: 7a:52:84:09:10:78:2f:ca:37:b6:e5:89:92:5e:d9: 23:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:B2:DB:77:03:C5:C5:6A:6F:69:C4:78:9A:B9:F6:92:14:F2:26:95 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a262d341-94b5-474e-8bcd-d17988f099b3/0/64B2DB7703C5C56A6F69C4789AB9F69214F22695.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.117.58.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:7a:bf:21:38:65:fc:14:83:f2:64:f7:2d:a2:31:61:5c:87: 91:66:f9:a7:f6:4e:82:e9:79:af:62:5c:96:67:45:90:a6:35: 98:57:b4:bf:f5:ab:aa:7d:c8:05:d6:45:6e:9e:0f:d5:d4:d4: c5:78:1f:1e:3f:19:a4:47:b7:60:1d:53:b1:72:bb:aa:64:b4: d0:94:f0:4a:70:62:2c:e3:f8:f8:1e:94:c4:c0:3d:8a:9f:88: 92:81:d2:37:54:41:55:91:3d:38:02:d0:b9:d0:91:bf:5a:3d: 42:59:4e:f1:80:9a:19:16:a5:78:b5:30:a2:93:4b:fe:69:4e: 46:a8:94:1e:74:46:52:01:a9:e4:41:1b:1d:6d:2b:e2:5f:e5: 71:19:b1:61:0a:27:d5:14:64:59:7d:7f:95:b9:c7:d2:27:69: 3a:52:3d:43:27:67:e1:56:23:47:75:50:92:a0:1a:bd:56:7c: 89:7d:3b:24:e5:f7:e4:fc:c2:e1:cd:aa:06:cb:8b:2c:72:36: f9:8a:3e:6f:f5:b8:ec:e1:df:01:b8:1c:b8:5d:a9:8f:a7:01: d8:55:20:b9:b8:f0:34:64:4a:72:a9:bd:17:ae:e3:8f:2c:b9: 5f:03:65:ec:2b:60:62:cf:87:e8:a3:1b:ee:e3:65:3d:b8:97: 6a:43:f0:5c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUOn63sjLVshFLUEMOacOWLTkNUf8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxMTE3NTM0MFoX DTI1MDQxMDE3NTg0MFowMzExMC8GA1UEAxMoNjRCMkRCNzcwM0M1QzU2QTZGNjlD NDc4OUFCOUY2OTIxNEYyMjY5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN1ieS+RzcWgkCEET3ao3eCf2pdCn2i4QJD+ua7JENeytO4kIvM9SvSzDVNH VcB58LCCmrYy7sUIvccQNDHzyzkoYbprHOFfUyq7U50Lc/r7XF+J3mYq043R+A/H GW9XEll4jTxo/NBjMyWNIS7MeLOf7hTcFxNRVhisWHdmvVsxdtEBNZy/4eWdAhgT gvPnBYAJmtPssuOpH9niI860rh6plHGj1vZ5ifEUnisGCHJmTzEfjl0PdztQeODw EDd+cOgRwZpjzcLdx+GJSXlBs+gyTAoSorDKu9RKgHW0ZRzlnMofQplKt6lsY66F yEvzelKECRB4L8o3tuWJkl7ZI1MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGSy23cDxcVqb2nEeJq59pIU8iaVMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMjYyZDM0MS05NGI1LTQ3NGUtOGJjZC1kMTc5ODhmMDk5YjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EyNjJkMzQx LTk0YjUtNDc0ZS04YmNkLWQxNzk4OGYwOTliMy8wLzY0QjJEQjc3MDNDNUM1NkE2 RjY5QzQ3ODlBQjlGNjkyMTRGMjI2OTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFndTowDQYJKoZIhvcNAQELBQADggEBAA96vyE4ZfwUg/Jk9y2iMWFch5Fm+af2 ToLpea9iXJZnRZCmNZhXtL/1q6p9yAXWRW6eD9XU1MV4Hx4/GaRHt2AdU7Fyu6pk tNCU8EpwYizj+PgelMTAPYqfiJKB0jdUQVWRPTgC0LnQkb9aPUJZTvGAmhkWpXi1 MKKTS/5pTkaolB50RlIBqeRBGx1tK+Jf5XEZsWEKJ9UUZFl9f5W5x9InaTpSPUMn Z+FWI0d1UJKgGr1WfIl9OyTl9+T8wuHNqgbLiyxyNvmKPm/1uOzh3wG4HLhdqY+n AdhVILm48DRkSnKpvReu448suV8DZewrYGLPh+ijG+7jZT24l2pD8Fw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:42 2024 by rpki-client on console-ams.rpki-client.org