$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/782659A7F6433029248A38A1C68F2E9971161391.cer File: 782659A7F6433029248A38A1C68F2E9971161391.cer (raw, json) Hash identifier: f6vc1PAi8dCKh6gNhRWneffZQuxllUUw+pjgSEQCYXk= Subject key identifier: 78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4877CCD53AE27D451926516A06E5C3A3A503F783 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/782659A7F6433029248A38A1C68F2E9971161391.mft caRepository: rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 20 Nov 2024 17:28:02 +0000 Certificate not after: Wed 19 Nov 2025 17:33:02 +0000 Subordinate resources: IP: 103.55.252.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:77:cc:d5:3a:e2:7d:45:19:26:51:6a:06:e5:c3:a3:a5:03:f7:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 20 17:28:02 2024 GMT Not After : Nov 19 17:33:02 2025 GMT Subject: CN=782659A7F6433029248A38A1C68F2E9971161391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:95:2c:dc:f2:36:06:49:65:fa:71:e0:62:99: cb:11:5b:92:c2:4e:1a:29:70:ea:93:85:00:ab:b9: af:b6:18:9b:20:2f:34:07:1e:77:90:3c:58:af:76: 1f:fd:04:a9:12:0e:20:47:51:d6:90:62:4b:48:4a: a7:05:48:cb:da:12:37:23:e8:97:7b:01:41:08:aa: 0e:50:90:a2:24:5d:d7:4a:6f:1c:31:b8:b3:ba:3c: 7c:1c:ff:7c:a0:e6:81:c2:f9:46:81:95:b7:d3:97: 46:51:39:a8:5a:ae:0e:b4:bb:0f:e0:f8:18:0f:0f: 87:04:37:11:f0:d4:72:0a:b2:11:e4:cf:15:6a:0a: f2:ed:92:81:07:d5:1b:02:0d:b0:34:76:a6:d3:29: 4a:21:af:70:a2:48:e5:38:79:42:59:43:cc:49:6d: 98:3b:04:b5:9a:a9:98:80:0e:31:96:d2:be:b8:91: 9f:8e:06:1f:cc:f3:29:20:39:c9:fe:ce:2c:47:27: ba:5d:c1:af:f2:f5:42:e6:0a:15:ac:61:91:db:b5: 10:fa:72:f6:4a:1d:7a:57:da:35:22:e0:a0:8e:11: f9:75:f6:ed:fa:bc:e8:ba:53:5d:5e:d0:42:4b:90: 87:eb:3c:88:fd:43:30:7f:16:88:79:ef:de:27:8b: e6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/782659A7F6433029248A38A1C68F2E9971161391.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.252.0/23 Signature Algorithm: sha256WithRSAEncryption 06:63:6f:1f:e8:b9:1c:12:94:3c:51:ab:c3:d8:d3:76:f1:e8: 14:6f:0e:af:24:38:6b:dc:d5:06:1b:40:4f:a2:a5:83:3f:02: 5c:1f:91:18:44:28:16:6e:56:2f:d4:dc:da:54:85:26:ac:ed: e5:bd:6f:a6:a7:ae:94:3f:5b:89:cf:af:77:a3:81:e1:d4:77: 3d:d1:f1:8b:d3:ee:15:b4:f0:d8:83:3b:b9:62:d7:d4:9b:ee: e4:f0:33:a2:23:29:a7:86:3d:62:d8:dd:a6:bb:5f:45:20:88: 9b:a7:d7:75:56:d5:8b:56:74:ab:ea:90:d9:3d:0a:0f:60:76: db:8c:d3:aa:2b:60:31:db:e6:d8:38:a9:11:f3:7e:04:2e:0d: 0c:36:81:cd:b5:95:89:ee:c0:90:f0:96:cb:a6:33:46:53:9a: eb:ad:b5:b6:ac:b5:3d:8b:4a:8f:f9:27:7b:15:c0:b5:0d:c7: 29:4d:27:05:d8:25:00:3d:ba:a5:6a:74:6c:16:e8:a2:32:7f: 7a:9b:d2:32:91:f8:df:9e:ea:29:7b:4f:31:c3:1a:90:45:b5: c0:ee:ba:ee:6c:35:23:9a:b9:b3:62:66:ff:a7:d2:90:c5:84: df:e7:22:26:f4:17:ab:0c:a5:71:a0:cd:4f:a3:a9:9b:86:20: b4:e5:04:21 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUSHfM1TrifUUZJlFqBuXDo6UD94MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEyMDE3MjgwMloX DTI1MTExOTE3MzMwMlowMzExMC8GA1UEAxMoNzgyNjU5QTdGNjQzMzAyOTI0OEEz OEExQzY4RjJFOTk3MTE2MTM5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOeVLNzyNgZJZfpx4GKZyxFbksJOGilw6pOFAKu5r7YYmyAvNAced5A8WK92 H/0EqRIOIEdR1pBiS0hKpwVIy9oSNyPol3sBQQiqDlCQoiRd10pvHDG4s7o8fBz/ fKDmgcL5RoGVt9OXRlE5qFquDrS7D+D4GA8PhwQ3EfDUcgqyEeTPFWoK8u2SgQfV GwINsDR2ptMpSiGvcKJI5Th5QllDzEltmDsEtZqpmIAOMZbSvriRn44GH8zzKSA5 yf7OLEcnul3Br/L1QuYKFaxhkdu1EPpy9kodelfaNSLgoI4R+XX27fq86LpTXV7Q QkuQh+s8iP1DMH8WiHnv3ieL5lMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHgmWaf2QzApJIo4ocaPLplxFhORMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80MTRlMDRmYS03MTg4LTRmNGYtODFiYi0zMzAzODlmODcwMTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxNGUwNGZh LTcxODgtNGY0Zi04MWJiLTMzMDM4OWY4NzAxNS8wLzc4MjY1OUE3RjY0MzMwMjky NDhBMzhBMUM2OEYyRTk5NzExNjEzOTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnN/wwDQYJKoZIhvcNAQELBQADggEBAAZjbx/ouRwSlDxRq8PY03bx6BRvDq8k OGvc1QYbQE+ipYM/AlwfkRhEKBZuVi/U3NpUhSas7eW9b6anrpQ/W4nPr3ejgeHU dz3R8YvT7hW08NiDO7li19Sb7uTwM6IjKaeGPWLY3aa7X0UgiJun13VW1YtWdKvq kNk9Cg9gdtuM06orYDHb5tg4qRHzfgQuDQw2gc21lYnuwJDwlsumM0ZTmuuttbas tT2LSo/5J3sVwLUNxylNJwXYJQA9uqVqdGwW6KIyf3qb0jKR+N+e6il7TzHDGpBF tcDuuu5sNSOaubNiZv+n0pDFhN/nIib0F6sMpXGgzU+jqZuGILTlBCE= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:20 2024 by rpki-client on console-fra.rpki-client.org