$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer File: 7DA5F7B42931EE3A414B9A5B7996703DF70BD897.cer (raw, json) Hash identifier: M4UGAVCriu8QjwPPdEcBb3xRglL9WzV/R8EFLsrvj1U= Subject key identifier: 7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 11A79F7BF307EED8F248ACC6827164B0F3CC107F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.mft caRepository: rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 20 Sep 2024 17:04:01 +0000 Certificate not after: Fri 19 Sep 2025 17:09:01 +0000 Subordinate resources: IP: 103.27.192.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:a7:9f:7b:f3:07:ee:d8:f2:48:ac:c6:82:71:64:b0:f3:cc:10:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 20 17:04:01 2024 GMT Not After : Sep 19 17:09:01 2025 GMT Subject: CN=7DA5F7B42931EE3A414B9A5B7996703DF70BD897 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:0e:81:5e:a5:0a:a0:da:50:5d:3e:49:a5:d4: e3:4a:ac:d6:b7:c0:26:0d:5a:e3:c5:38:a4:20:c8: 09:04:b1:56:b4:8b:d7:b3:f2:be:41:2b:62:ad:60: 0c:f0:8e:21:a6:2f:84:e6:4c:5c:66:4d:a4:d7:7d: 1c:7b:7d:a2:5a:f0:29:ed:7e:c7:65:38:38:c3:45: 4e:49:27:f3:07:74:5f:b8:bb:56:bb:94:e5:55:1d: fa:8b:73:af:4e:fc:1a:5c:97:82:7f:75:23:89:da: 24:33:af:8a:45:12:27:7c:21:f2:ae:de:60:50:2f: 22:87:5f:52:d4:19:fe:35:d2:cb:f1:58:05:f4:ca: 98:77:06:74:f7:1e:a3:ac:45:d6:64:22:f5:36:f3: fa:a7:d2:3b:df:88:53:3e:fc:b0:30:a0:bd:7c:bd: 0a:6e:77:9c:48:28:19:79:6d:ae:59:c9:98:1f:ff: fd:d7:c4:1f:f6:48:af:cd:02:1f:87:45:b9:eb:82: ab:d0:ea:90:3f:f7:22:92:1a:e1:53:24:6a:3e:fc: 65:c1:5e:19:96:cd:09:bd:f7:36:fb:80:c5:83:72: 46:bc:50:ba:2c:47:46:3c:fa:89:56:18:bb:94:92: b2:5b:72:81:09:09:64:73:d0:d8:db:29:56:48:28: 6f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 7D:A5:F7:B4:29:31:EE:3A:41:4B:9A:5B:79:96:70:3D:F7:0B:D8:97 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4227b176-4c17-4244-badf-f496bcb15e20/0/7DA5F7B42931EE3A414B9A5B7996703DF70BD897.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.27.192.0/23 Signature Algorithm: sha256WithRSAEncryption 47:90:8f:0c:27:e1:0d:7e:83:a4:e3:68:73:86:e0:7f:d1:48: df:13:a9:ef:a6:b2:12:c8:83:6b:91:68:9c:c7:a5:9d:91:c3: 99:07:0f:60:d3:27:99:af:55:af:6e:66:bd:97:b2:28:6e:14: 5e:27:a5:f8:f0:a8:f9:5f:84:33:ec:d4:8a:2d:cc:ea:11:9f: 0a:7a:91:44:43:ef:49:0a:d7:80:a4:73:90:69:3a:aa:90:9c: 9c:12:24:12:fa:68:6a:eb:e7:f5:27:f8:4b:80:6d:4e:9f:bd: 45:3a:0e:53:55:75:2e:be:27:19:43:97:c6:6c:93:1a:4d:30: db:c4:1c:30:d4:75:da:1b:c6:7e:7c:08:1f:f6:e7:dd:7e:91: 86:e5:f8:ed:48:d4:55:f1:68:12:e1:e4:b0:0a:97:6f:09:ba: b9:cb:f7:69:5d:4d:a3:91:5f:53:96:cc:5d:74:e9:fa:9b:68: 1b:8f:9c:c1:ec:21:93:85:2b:e6:55:cc:cf:f8:5c:3f:a0:25: 13:92:d4:a0:35:3d:86:27:9e:4d:49:31:43:31:44:ee:17:9d: b5:14:d1:16:80:29:8a:93:a7:fa:fd:61:8d:34:dc:53:56:bd: 2b:46:05:72:56:96:40:4f:1e:36:65:e6:9e:4d:ba:eb:3f:d4: ff:03:c0:17 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEaefe/MH7tjySKzGgnFksPPMEH8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyMDE3MDQwMVoX DTI1MDkxOTE3MDkwMVowMzExMC8GA1UEAxMoN0RBNUY3QjQyOTMxRUUzQTQxNEI5 QTVCNzk5NjcwM0RGNzBCRDg5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMsOgV6lCqDaUF0+SaXU40qs1rfAJg1a48U4pCDICQSxVrSL17PyvkErYq1g DPCOIaYvhOZMXGZNpNd9HHt9olrwKe1+x2U4OMNFTkkn8wd0X7i7VruU5VUd+otz r078GlyXgn91I4naJDOvikUSJ3wh8q7eYFAvIodfUtQZ/jXSy/FYBfTKmHcGdPce o6xF1mQi9Tbz+qfSO9+IUz78sDCgvXy9Cm53nEgoGXltrlnJmB///dfEH/ZIr80C H4dFueuCq9DqkD/3IpIa4VMkaj78ZcFeGZbNCb33NvuAxYNyRrxQuixHRjz6iVYY u5SSsltygQkJZHPQ2NspVkgob+MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFH2l97QpMe46QUuaW3mWcD33C9iXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80MjI3YjE3Ni00YzE3LTQyNDQtYmFkZi1mNDk2YmNiMTVlMjAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQyMjdiMTc2 LTRjMTctNDI0NC1iYWRmLWY0OTZiY2IxNWUyMC8wLzdEQTVGN0I0MjkzMUVFM0E0 MTRCOUE1Qjc5OTY3MDNERjcwQkQ4OTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnG8AwDQYJKoZIhvcNAQELBQADggEBAEeQjwwn4Q1+g6TjaHOG4H/RSN8Tqe+m shLIg2uRaJzHpZ2Rw5kHD2DTJ5mvVa9uZr2XsihuFF4npfjwqPlfhDPs1IotzOoR nwp6kURD70kK14Ckc5BpOqqQnJwSJBL6aGrr5/Un+EuAbU6fvUU6DlNVdS6+JxlD l8ZskxpNMNvEHDDUddobxn58CB/2591+kYbl+O1I1FXxaBLh5LAKl28JurnL92ld TaORX1OWzF106fqbaBuPnMHsIZOFK+ZVzM/4XD+gJROS1KA1PYYnnk1JMUMxRO4X nbUU0RaAKYqTp/r9YY003FNWvStGBXJWlkBPHjZl5p5Nuus/1P8DwBc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:43 2024 by rpki-client on console-ams.rpki-client.org