$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/700A46F0C48E784E8CBCBA7B27E4474F86189B0C.cer File: 700A46F0C48E784E8CBCBA7B27E4474F86189B0C.cer (raw, json) Hash identifier: 7y8ojElovq0ee2uqMXkWLxLu2rDTREux7FGD1jUMmn0= Subject key identifier: 70:0A:46:F0:C4:8E:78:4E:8C:BC:BA:7B:27:E4:47:4F:86:18:9B:0C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 555B64656504F6EA514C5F4315B1531DC21F10E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/df8a315e-16f1-4f21-9bc0-269d5be73d60/0/700A46F0C48E784E8CBCBA7B27E4474F86189B0C.mft caRepository: rsync://repo-rpki.idnic.net/repo/df8a315e-16f1-4f21-9bc0-269d5be73d60/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 18 Nov 2024 12:31:13 +0000 Certificate not after: Mon 17 Nov 2025 12:36:13 +0000 Subordinate resources: IP: 103.126.238.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:5b:64:65:65:04:f6:ea:51:4c:5f:43:15:b1:53:1d:c2:1f:10:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 18 12:31:13 2024 GMT Not After : Nov 17 12:36:13 2025 GMT Subject: CN=700A46F0C48E784E8CBCBA7B27E4474F86189B0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f9:f6:8b:07:2f:19:be:a0:f9:59:50:b3:d6: fc:ce:66:89:c2:65:e5:16:e6:3b:65:08:43:2f:ad: 08:a5:b1:fc:4f:63:79:9b:e4:ce:6a:8e:ae:cf:85: 61:70:fd:e8:da:b1:11:d0:1b:b2:32:07:63:d5:28: 82:2b:e8:50:59:f3:a0:e3:95:40:ba:1c:02:69:6c: 05:a6:b2:9d:c1:74:80:db:61:81:96:fe:cf:20:d7: cf:e5:03:fb:ee:98:cb:0f:e2:0d:53:c9:23:ff:3e: fb:8e:76:88:37:c3:be:80:f6:51:ef:fa:73:db:f6: b3:ea:1f:8f:d4:57:b6:b9:3b:5f:49:38:2a:f5:aa: da:4c:50:24:c8:6e:df:c7:e1:48:5b:ca:14:27:a8: 84:8a:a9:2f:88:70:41:47:ac:35:03:79:3a:43:e0: 16:ab:30:ec:d2:e1:b4:28:1e:6c:2e:2f:1d:7c:9b: 84:2d:02:8c:ec:c1:3f:d6:74:a1:9a:a5:ca:1b:c5: ba:b2:3b:ee:68:c4:33:a3:27:54:72:56:42:38:e9: 2f:9c:f9:ab:4f:c4:5b:96:d0:cc:5a:6e:69:b6:e8: 6c:54:16:a3:a1:2e:33:9e:cf:23:c9:a7:04:e9:07: 6c:8e:03:ff:dc:0c:90:35:06:a6:dd:ed:74:1f:e4: bf:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 70:0A:46:F0:C4:8E:78:4E:8C:BC:BA:7B:27:E4:47:4F:86:18:9B:0C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/df8a315e-16f1-4f21-9bc0-269d5be73d60/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/df8a315e-16f1-4f21-9bc0-269d5be73d60/0/700A46F0C48E784E8CBCBA7B27E4474F86189B0C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.238.0/24 Signature Algorithm: sha256WithRSAEncryption 23:b3:2e:4e:05:0c:38:cb:d9:2f:5e:0d:c4:f0:91:43:94:3b: 0a:70:f9:0a:a2:19:19:bc:a0:35:5f:4e:ce:c5:f4:3d:62:0c: 4d:17:6d:b7:05:a0:65:af:a8:67:b6:d3:3a:3a:cd:aa:f8:69: e7:74:6f:27:47:64:91:25:4d:f1:f6:cb:37:79:c0:74:a1:e6: 59:9f:a8:85:47:5e:be:11:15:bc:df:e8:d3:46:17:ed:44:3e: 72:16:e3:f2:1a:08:f1:41:87:72:c8:60:74:15:3b:32:fb:c9: 69:86:8b:8b:57:95:7b:34:18:2c:df:03:34:7e:d0:80:94:a5: 5b:26:14:ed:7c:1f:22:43:f2:fe:8d:d1:c0:90:05:7b:6c:08: a3:38:f3:21:03:ec:db:24:8f:3c:35:72:05:93:50:e2:4f:7a: 72:14:1c:8f:52:79:55:56:af:aa:72:50:2b:4e:1b:b5:31:65: 37:ad:fb:ed:1d:5a:0d:3b:42:8e:ed:17:b8:8b:2a:7d:16:4b: 95:87:21:7e:46:4a:3a:83:e5:25:b0:11:7f:38:f9:dc:b4:6a: aa:ca:79:5e:ec:9e:29:9c:db:8b:7b:91:83:7e:9a:cc:f1:3e: 60:9b:08:9a:3e:5c:f8:36:ac:2e:7d:d4:e7:2c:62:20:08:61: 74:07:81:77 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVVtkZWUE9upRTF9DFbFTHcIfEOYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExODEyMzExM1oX DTI1MTExNzEyMzYxM1owMzExMC8GA1UEAxMoNzAwQTQ2RjBDNDhFNzg0RThDQkNC QTdCMjdFNDQ3NEY4NjE4OUIwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANH59osHLxm+oPlZULPW/M5micJl5RbmO2UIQy+tCKWx/E9jeZvkzmqOrs+F YXD96NqxEdAbsjIHY9UogivoUFnzoOOVQLocAmlsBaayncF0gNthgZb+zyDXz+UD ++6Yyw/iDVPJI/8++452iDfDvoD2Ue/6c9v2s+ofj9RXtrk7X0k4KvWq2kxQJMhu 38fhSFvKFCeohIqpL4hwQUesNQN5OkPgFqsw7NLhtCgebC4vHXybhC0CjOzBP9Z0 oZqlyhvFurI77mjEM6MnVHJWQjjpL5z5q0/EW5bQzFpuabbobFQWo6EuM57PI8mn BOkHbI4D/9wMkDUGpt3tdB/kv48CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHAKRvDEjnhOjLy6eyfkR0+GGJsMMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZjhhMzE1ZS0xNmYxLTRmMjEtOWJjMC0yNjlkNWJlNzNkNjAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RmOGEzMTVl LTE2ZjEtNGYyMS05YmMwLTI2OWQ1YmU3M2Q2MC8wLzcwMEE0NkYwQzQ4RTc4NEU4 Q0JDQkE3QjI3RTQ0NzRGODYxODlCMEMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnfu4wDQYJKoZIhvcNAQELBQADggEBACOzLk4FDDjL2S9eDcTwkUOUOwpw+Qqi GRm8oDVfTs7F9D1iDE0XbbcFoGWvqGe20zo6zar4aed0bydHZJElTfH2yzd5wHSh 5lmfqIVHXr4RFbzf6NNGF+1EPnIW4/IaCPFBh3LIYHQVOzL7yWmGi4tXlXs0GCzf AzR+0ICUpVsmFO18HyJD8v6N0cCQBXtsCKM48yED7Nskjzw1cgWTUOJPenIUHI9S eVVWr6pyUCtOG7UxZTet++0dWg07Qo7tF7iLKn0WS5WHIX5GSjqD5SWwEX84+dy0 aqrKeV7snimc24t7kYN+mszxPmCbCJo+XPg2rC591OcsYiAIYXQHgXc= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:49 2024 by rpki-client on console-fra.rpki-client.org