$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.cer File: 71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.cer (raw, json) Hash identifier: 7H/RlSlKMczWKpeo2Ycm9qC67rWw2mqSHtqkQ4DAUG4= Subject key identifier: 71:FC:3F:7B:27:22:F6:A1:5C:55:7F:63:F8:F4:95:A9:CD:BC:A9:D7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 558922D94AEFBF838197A6AE1FDE930F21BC782B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.mft caRepository: rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 18:30:35 +0000 Certificate not after: Mon 30 Jun 2025 18:35:35 +0000 Subordinate resources: IP: 103.147.82.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:89:22:d9:4a:ef:bf:83:81:97:a6:ae:1f:de:93:0f:21:bc:78:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 18:30:35 2024 GMT Not After : Jun 30 18:35:35 2025 GMT Subject: CN=71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:11:0c:b8:8a:48:2a:3e:7e:33:71:95:52:a7: 40:3b:eb:1d:c0:83:1a:d6:21:2b:f8:81:16:04:ae: 28:02:dc:c0:f4:7a:84:0f:a6:8c:b2:1f:ee:9f:b3: e5:91:90:10:d8:d1:fc:88:06:5d:c1:69:a8:0d:6d: 34:0e:db:28:30:b3:f3:39:a4:2b:73:4b:c2:74:a7: 56:5a:84:7a:34:af:dd:86:ff:64:c2:a2:45:7a:02: 5c:54:23:93:5e:d3:ed:c2:82:9b:be:c1:01:e5:a2: fb:cf:fd:8b:f6:e1:62:da:10:ae:bc:2e:11:aa:08: f3:6b:3c:6c:2e:9c:83:96:58:db:bd:b9:fb:d5:ff: 4f:3b:c5:6a:8c:28:c7:11:ef:a7:1f:bc:bf:d2:8d: b8:21:42:29:e7:f2:ad:3e:e6:ca:a3:62:f4:28:94: 08:67:5b:39:c9:96:f7:44:13:bd:83:3a:e3:91:60: 47:4d:ad:3f:42:ce:07:95:60:e1:48:3d:cd:c3:43: 52:a0:73:6d:83:e7:99:33:75:9d:6b:3b:53:08:7f: 67:1f:6d:18:51:97:85:3f:4a:9a:62:73:f1:84:c2: 7d:05:27:e3:6f:53:78:31:1f:4f:38:53:c8:15:17: c4:6d:f0:67:3d:8d:b0:67:eb:26:c4:44:b4:b0:b7: 68:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 71:FC:3F:7B:27:22:F6:A1:5C:55:7F:63:F8:F4:95:A9:CD:BC:A9:D7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.82.0/23 Signature Algorithm: sha256WithRSAEncryption 45:e8:5f:ec:54:a0:6e:d2:7c:18:79:7a:4f:6e:54:2d:ce:07: 18:11:f6:36:af:a7:c1:d5:2c:2c:55:24:5b:59:50:c2:7d:28: ea:b7:65:2d:6d:6c:2a:6f:34:df:b5:29:cb:d3:7e:dc:78:53: 67:fb:7c:c0:7b:bb:56:3c:41:6f:09:9d:8f:fb:5b:0b:28:b4: a5:17:dc:39:8d:33:62:cb:17:93:1c:c8:79:10:5e:d5:bf:ba: ed:1f:85:4c:57:fd:e5:8c:bf:cb:7d:b8:c8:b5:f0:01:09:47: 4c:66:70:32:f8:55:16:c7:5e:7a:1f:ba:38:d0:ee:ef:d4:66: 66:7a:40:de:eb:bc:81:e9:d8:f5:f5:4d:c0:d5:12:23:be:0d: 0b:cd:33:18:30:48:2c:b2:dc:5f:87:61:84:94:89:da:eb:08: 0c:d7:86:a7:93:84:c9:79:03:45:32:34:38:00:b2:d3:af:86: bf:96:8d:ab:08:32:92:5f:21:71:af:c9:96:86:29:e5:16:f2: 91:13:5d:aa:e5:26:d6:9e:77:26:88:ab:23:f0:7e:0e:77:0a: 76:31:6d:39:0c:58:b5:8d:ee:fa:65:ac:1f:46:b3:91:7f:61: 3e:95:4b:6e:ca:16:6d:39:4b:0d:9c:aa:7d:8f:4b:ce:01:f6: a3:37:50:09 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUVYki2Urvv4OBl6auH96TDyG8eCswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE4MzAzNVoX DTI1MDYzMDE4MzUzNVowMzExMC8GA1UEAxMoNzFGQzNGN0IyNzIyRjZBMTVDNTU3 RjYzRjhGNDk1QTlDREJDQTlENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMgRDLiKSCo+fjNxlVKnQDvrHcCDGtYhK/iBFgSuKALcwPR6hA+mjLIf7p+z 5ZGQENjR/IgGXcFpqA1tNA7bKDCz8zmkK3NLwnSnVlqEejSv3Yb/ZMKiRXoCXFQj k17T7cKCm77BAeWi+8/9i/bhYtoQrrwuEaoI82s8bC6cg5ZY2725+9X/TzvFaowo xxHvpx+8v9KNuCFCKefyrT7myqNi9CiUCGdbOcmW90QTvYM645FgR02tP0LOB5Vg 4Ug9zcNDUqBzbYPnmTN1nWs7Uwh/Zx9tGFGXhT9KmmJz8YTCfQUn429TeDEfTzhT yBUXxG3wZz2NsGfrJsREtLC3aOMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHH8P3snIvahXFV/Y/j0lanNvKnXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lYWE1YWM2NS02MDcxLTQ2ZTItYmI5ZC1kNzcwZDExN2M0YjQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhYTVhYzY1 LTYwNzEtNDZlMi1iYjlkLWQ3NzBkMTE3YzRiNC8wLzcxRkMzRjdCMjcyMkY2QTE1 QzU1N0Y2M0Y4RjQ5NUE5Q0RCQ0E5RDcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnk1IwDQYJKoZIhvcNAQELBQADggEBAEXoX+xUoG7SfBh5ek9uVC3OBxgR9jav p8HVLCxVJFtZUMJ9KOq3ZS1tbCpvNN+1KcvTftx4U2f7fMB7u1Y8QW8JnY/7Wwso tKUX3DmNM2LLF5McyHkQXtW/uu0fhUxX/eWMv8t9uMi18AEJR0xmcDL4VRbHXnof ujjQ7u/UZmZ6QN7rvIHp2PX1TcDVEiO+DQvNMxgwSCyy3F+HYYSUidrrCAzXhqeT hMl5A0UyNDgAstOvhr+WjasIMpJfIXGvyZaGKeUW8pETXarlJtaedyaIqyPwfg53 CnYxbTkMWLWN7vplrB9Gs5F/YT6VS27KFm05Sw2cqn2PS84B9qM3UAk= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:49 2024 by rpki-client on console-fra.rpki-client.org