$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/71C1EFD5DFDE20418A49070671B01D675F9A8917.cer File: 71C1EFD5DFDE20418A49070671B01D675F9A8917.cer (raw, json) Hash identifier: /FVIcl3OV3VnQQ5D4faPaqmBT3HtgQ35b/z5uy0LpLM= Subject key identifier: 71:C1:EF:D5:DF:DE:20:41:8A:49:07:06:71:B0:1D:67:5F:9A:89:17 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5173C44F090D35C1B9F8F63D2D2FE0A7DF558F7C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/05eab442-7480-4581-81dd-23a200614382/0/71C1EFD5DFDE20418A49070671B01D675F9A8917.mft caRepository: rsync://repo-rpki.idnic.net/repo/05eab442-7480-4581-81dd-23a200614382/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 31 Oct 2024 04:54:46 +0000 Certificate not after: Thu 30 Oct 2025 04:59:46 +0000 Subordinate resources: IP: 103.179.216.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:73:c4:4f:09:0d:35:c1:b9:f8:f6:3d:2d:2f:e0:a7:df:55:8f:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 31 04:54:46 2024 GMT Not After : Oct 30 04:59:46 2025 GMT Subject: CN=71C1EFD5DFDE20418A49070671B01D675F9A8917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:82:10:81:3e:77:35:5a:be:16:fc:db:34: e7:d8:69:44:15:cb:72:1e:f2:98:d3:87:38:18:05: f0:f7:32:54:67:e1:18:bb:81:20:f6:b3:5e:b9:71: 5e:b8:31:c7:0f:f6:c4:c8:d0:5f:bd:01:f6:85:7e: b1:5c:64:12:55:96:78:d8:8b:90:df:3c:a2:57:dc: 2e:26:43:10:f8:2f:94:79:81:49:58:f3:c8:92:3f: c7:a5:f2:e8:97:1d:0e:eb:f1:f8:75:24:67:d7:c9: d4:f9:35:de:be:c3:df:2d:b2:68:6e:0c:36:ef:40: 74:d3:b1:af:f5:ab:a7:14:10:ef:89:5f:12:3b:ee: 66:82:d8:5e:9b:b5:30:22:96:f2:66:47:98:cc:4a: 4b:2b:4e:49:b8:de:9d:6d:39:54:d1:3a:74:47:14: e9:bf:ba:4f:b9:96:70:2c:1d:bb:00:f8:96:a9:4b: b8:2f:61:59:a1:78:90:ad:0b:eb:dc:65:77:00:69: 19:97:96:20:83:ac:29:3c:27:ce:5e:f6:e5:67:72: 4c:e2:7b:38:f6:74:9e:f4:b7:84:3e:c0:11:4f:87: a5:4a:4d:73:ab:d1:86:51:b5:fb:f0:02:73:39:43: 04:e7:0c:62:5f:36:c3:fc:f5:3d:93:2e:c1:d6:b1: d9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 71:C1:EF:D5:DF:DE:20:41:8A:49:07:06:71:B0:1D:67:5F:9A:89:17 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/05eab442-7480-4581-81dd-23a200614382/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/05eab442-7480-4581-81dd-23a200614382/0/71C1EFD5DFDE20418A49070671B01D675F9A8917.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.216.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:3d:ae:66:21:68:9b:fe:b1:fa:18:22:f6:40:66:aa:42:ac: ac:fa:bc:df:df:89:67:4a:a0:93:7c:2d:bb:85:7f:6d:e2:b4: 04:fd:71:91:2e:d8:4b:1d:4d:4c:eb:34:8e:cd:b0:4c:78:0a: 3f:ce:56:48:90:69:09:46:a1:ca:2c:c2:55:ad:d0:68:0d:b1: 54:63:40:58:c0:67:15:25:ec:29:aa:ef:3c:d3:28:e7:a1:6c: e9:a9:06:f5:3a:f1:0d:40:18:b3:1b:b5:dc:83:57:2e:91:7c: 6f:d1:62:52:4c:0c:5d:09:1d:3a:d1:f4:5f:c9:a1:84:65:d7: ea:a2:5b:3f:ad:ad:89:cc:a0:aa:bc:37:94:80:c8:5e:c5:75: 6c:c5:a3:18:4e:b6:e1:1b:ef:b6:fb:5f:c6:25:94:1d:36:b8: 81:ca:b8:c1:bc:69:44:b9:ee:f0:e1:1e:2b:ee:91:7b:dd:9b: d7:b6:54:fa:b4:1b:15:ca:70:c5:73:64:b0:fc:72:0f:83:9c: c5:b6:8b:b2:ae:74:49:74:97:69:d3:b2:c6:a6:67:8e:24:02: d7:68:98:f2:bc:bf:79:b6:5f:12:a9:20:a8:d3:6c:81:07:cb: 9d:a6:1b:99:69:04:22:dd:34:f7:77:3f:32:8e:9d:cf:1a:e1: 5c:75:bf:ae -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUXPETwkNNcG5+PY9LS/gp99Vj3wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAzMTA0NTQ0NloX DTI1MTAzMDA0NTk0NlowMzExMC8GA1UEAxMoNzFDMUVGRDVERkRFMjA0MThBNDkw NzA2NzFCMDFENjc1RjlBODkxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANAGghCBPnc1Wr4W/Ns059hpRBXLch7ymNOHOBgF8PcyVGfhGLuBIPazXrlx Xrgxxw/2xMjQX70B9oV+sVxkElWWeNiLkN88olfcLiZDEPgvlHmBSVjzyJI/x6Xy 6JcdDuvx+HUkZ9fJ1Pk13r7D3y2yaG4MNu9AdNOxr/WrpxQQ74lfEjvuZoLYXpu1 MCKW8mZHmMxKSytOSbjenW05VNE6dEcU6b+6T7mWcCwduwD4lqlLuC9hWaF4kK0L 69xldwBpGZeWIIOsKTwnzl725WdyTOJ7OPZ0nvS3hD7AEU+HpUpNc6vRhlG1+/AC czlDBOcMYl82w/z1PZMuwdax2cECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHHB79Xf3iBBikkHBnGwHWdfmokXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNWVhYjQ0Mi03NDgwLTQ1ODEtODFkZC0yM2EyMDA2MTQzODIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZWFiNDQy LTc0ODAtNDU4MS04MWRkLTIzYTIwMDYxNDM4Mi8wLzcxQzFFRkQ1REZERTIwNDE4 QTQ5MDcwNjcxQjAxRDY3NUY5QTg5MTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFns9gwDQYJKoZIhvcNAQELBQADggEBAC49rmYhaJv+sfoYIvZAZqpCrKz6vN/f iWdKoJN8LbuFf23itAT9cZEu2EsdTUzrNI7NsEx4Cj/OVkiQaQlGocoswlWt0GgN sVRjQFjAZxUl7Cmq7zzTKOehbOmpBvU68Q1AGLMbtdyDVy6RfG/RYlJMDF0JHTrR 9F/JoYRl1+qiWz+trYnMoKq8N5SAyF7FdWzFoxhOtuEb77b7X8YllB02uIHKuMG8 aUS57vDhHivukXvdm9e2VPq0GxXKcMVzZLD8cg+DnMW2i7KudEl0l2nTssamZ44k AtdomPK8v3m2XxKpIKjTbIEHy52mG5lpBCLdNPd3PzKOnc8a4Vx1v64= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:43 2024 by rpki-client on console-ams.rpki-client.org