$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7B9F50722EE5D5DB8DF552ED32CB8764B64FA902.cer File: 7B9F50722EE5D5DB8DF552ED32CB8764B64FA902.cer (raw, json) Hash identifier: RAqX3PZiQ6Vo6yuSumcWZ8w+E4WtXKSLEOuRFGjky+0= Subject key identifier: 7B:9F:50:72:2E:E5:D5:DB:8D:F5:52:ED:32:CB:87:64:B6:4F:A9:02 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 20AE872C330C205737509C9A1A8AABD15A96D395 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ce3d8c03-17bb-4cab-8526-118f587dcc09/0/7B9F50722EE5D5DB8DF552ED32CB8764B64FA902.mft caRepository: rsync://repo-rpki.idnic.net/repo/ce3d8c03-17bb-4cab-8526-118f587dcc09/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 30 Oct 2024 10:02:45 +0000 Certificate not after: Wed 29 Oct 2025 10:07:45 +0000 Subordinate resources: IP: 103.183.100.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:ae:87:2c:33:0c:20:57:37:50:9c:9a:1a:8a:ab:d1:5a:96:d3:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 10:02:45 2024 GMT Not After : Oct 29 10:07:45 2025 GMT Subject: CN=7B9F50722EE5D5DB8DF552ED32CB8764B64FA902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:22:a6:8d:21:27:0a:ab:6b:0a:11:71:0a: 86:ad:79:5a:c0:69:8b:cc:d7:37:75:34:8f:cb:d2: a3:74:ae:62:e1:00:13:4b:cb:d5:98:00:9e:57:73: a0:cb:eb:94:f4:04:ea:2a:6d:b6:c9:77:f8:14:31: 93:12:da:6a:72:46:a5:95:92:ec:0b:22:38:8a:74: cc:87:26:04:71:ce:38:0b:cb:5d:62:bb:0a:c9:85: de:02:7d:f9:03:cc:0b:f9:d6:5b:c4:7e:0d:42:94: 0c:c4:5c:24:28:cf:6c:6e:af:5a:7e:54:de:a5:4f: a1:62:2b:60:86:2d:5a:55:3a:a8:54:9d:b0:b6:68: 5d:51:86:fb:93:fa:0c:66:be:b1:26:83:db:6f:da: 53:3a:ab:2c:61:d7:a6:f3:c7:fe:78:90:c2:77:cf: 21:ce:71:b3:a9:32:00:70:74:83:a6:34:2d:e2:6d: e4:50:34:32:e0:13:4a:5c:ac:c8:e5:f5:20:2a:9c: 85:52:43:c9:fe:fe:9e:2a:3c:b1:cb:5a:8d:c3:12: 3a:9c:db:2d:68:01:a8:b7:1d:6a:74:e7:a3:0b:19: 57:8c:13:03:10:93:d2:c7:17:05:7a:52:24:71:99: 99:3d:9a:d2:01:3e:b5:9d:c9:82:7e:3a:da:5b:c4: 82:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 7B:9F:50:72:2E:E5:D5:DB:8D:F5:52:ED:32:CB:87:64:B6:4F:A9:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ce3d8c03-17bb-4cab-8526-118f587dcc09/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ce3d8c03-17bb-4cab-8526-118f587dcc09/0/7B9F50722EE5D5DB8DF552ED32CB8764B64FA902.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.100.0/23 Signature Algorithm: sha256WithRSAEncryption 36:8d:50:a5:f9:87:fc:43:7a:ce:fb:ae:93:0a:89:b8:44:fd: 5f:d9:ee:ed:f1:85:5a:bc:71:7f:97:40:f2:01:2d:59:ba:57: f0:7c:ad:51:af:d6:38:13:6a:59:b1:fd:a7:e7:a5:a1:13:07: f9:8a:71:a4:fb:87:6f:01:e5:3b:1a:56:37:15:47:fc:78:54: 95:75:8e:a4:f1:b0:66:4f:01:70:ed:c1:6c:a8:2e:74:a4:b4: e9:85:7d:3c:62:d7:72:2a:1e:31:15:e3:08:94:fd:5f:84:e9: be:9c:5a:bd:e2:5e:28:8e:cd:bd:81:6b:1c:71:c4:c1:c0:17: 50:cf:3f:13:99:7d:c4:03:ef:c4:bb:d4:30:8e:61:b4:78:85: da:61:29:e2:e1:e8:f5:87:83:cd:b2:18:b3:a1:31:13:35:e8: 28:e4:eb:e6:bd:45:05:96:2d:6b:70:b4:1f:13:19:61:ab:40: 47:7e:7d:ad:4e:d9:69:1f:e8:2e:21:6e:1e:43:f8:f0:9f:b4: d0:2e:21:9f:5e:21:59:82:6e:b7:b9:4b:d6:05:a8:28:59:e9: 75:8f:2a:8a:be:0c:f6:28:ab:bc:74:85:2d:e9:92:20:7a:2a: 31:b0:cf:5f:39:f8:c1:4d:f5:b4:b7:53:5b:62:be:24:be:f9: d8:66:ac:d7 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUIK6HLDMMIFc3UJyaGoqr0VqW05UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAzMDEwMDI0NVoX DTI1MTAyOTEwMDc0NVowMzExMC8GA1UEAxMoN0I5RjUwNzIyRUU1RDVEQjhERjU1 MkVEMzJDQjg3NjRCNjRGQTkwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyCIqaNIScKq2sKEXEKhq15WsBpi8zXN3U0j8vSo3SuYuEAE0vL1ZgAnldz oMvrlPQE6ipttsl3+BQxkxLaanJGpZWS7AsiOIp0zIcmBHHOOAvLXWK7CsmF3gJ9 +QPMC/nWW8R+DUKUDMRcJCjPbG6vWn5U3qVPoWIrYIYtWlU6qFSdsLZoXVGG+5P6 DGa+sSaD22/aUzqrLGHXpvPH/niQwnfPIc5xs6kyAHB0g6Y0LeJt5FA0MuATSlys yOX1ICqchVJDyf7+nio8sctajcMSOpzbLWgBqLcdanTnowsZV4wTAxCT0scXBXpS JHGZmT2a0gE+tZ3Jgn462lvEgmECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHufUHIu5dXbjfVS7TLLh2S2T6kCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZTNkOGMwMy0xN2JiLTRjYWItODUyNi0xMThmNTg3ZGNjMDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlM2Q4YzAz LTE3YmItNGNhYi04NTI2LTExOGY1ODdkY2MwOS8wLzdCOUY1MDcyMkVFNUQ1REI4 REY1NTJFRDMyQ0I4NzY0QjY0RkE5MDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnt2QwDQYJKoZIhvcNAQELBQADggEBADaNUKX5h/xDes77rpMKibhE/V/Z7u3x hVq8cX+XQPIBLVm6V/B8rVGv1jgTalmx/afnpaETB/mKcaT7h28B5TsaVjcVR/x4 VJV1jqTxsGZPAXDtwWyoLnSktOmFfTxi13IqHjEV4wiU/V+E6b6cWr3iXiiOzb2B axxxxMHAF1DPPxOZfcQD78S71DCOYbR4hdphKeLh6PWHg82yGLOhMRM16Cjk6+a9 RQWWLWtwtB8TGWGrQEd+fa1O2Wkf6C4hbh5D+PCftNAuIZ9eIVmCbre5S9YFqChZ 6XWPKoq+DPYoq7x0hS3pkiB6KjGwz185+MFN9bS3U1tiviS++dhmrNc= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:50 2024 by rpki-client on console-fra.rpki-client.org