$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer File: 842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.cer (raw, json) Hash identifier: suqoodgsprqOgnJkePlWcoI7WM3l2vkUAxA68iBUrDs= Subject key identifier: 84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 79D7EA4561BA1A595CC407FA85B82F1EC7BDE2A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.mft caRepository: rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 18 Oct 2024 22:03:19 +0000 Certificate not after: Fri 17 Oct 2025 22:08:19 +0000 Subordinate resources: IP: 202.47.162.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:d7:ea:45:61:ba:1a:59:5c:c4:07:fa:85:b8:2f:1e:c7:bd:e2:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 18 22:03:19 2024 GMT Not After : Oct 17 22:08:19 2025 GMT Subject: CN=842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:a2:49:e9:b3:82:2d:a8:61:6c:f0:69:53:e3: f7:29:6a:09:50:57:d6:ef:81:f6:24:1c:c0:19:38: a5:fc:91:3e:da:8e:50:7a:94:77:b1:a7:a3:9c:31: 64:af:db:63:e0:06:08:b1:23:c1:55:6e:f8:05:09: 8d:50:f1:13:b5:4b:9a:58:e0:19:31:da:39:f3:b7: 77:bd:58:97:42:3a:b7:0c:1b:b1:9f:39:3c:f3:8d: eb:d9:7a:13:d1:b7:1a:b5:7c:10:92:0a:2f:c0:25: 58:40:8a:03:e6:9d:c0:78:8e:44:69:00:20:2d:c3: de:97:13:04:22:9a:55:01:0c:e2:0f:fc:f2:fe:d7: 29:84:cb:c2:a9:45:eb:f2:b9:b8:fb:c5:ee:9a:79: d4:57:dc:84:38:5f:14:de:e6:3a:f8:43:83:8d:e8: 1c:30:15:d4:e3:b6:78:96:63:06:fa:06:58:27:1f: c3:a5:96:09:de:59:a4:82:67:c4:25:8b:5d:0c:02: 0e:24:47:2b:60:73:4a:9c:03:1a:53:24:7f:1e:f9: 12:03:a4:9f:c7:42:73:eb:31:cf:0c:ed:01:13:9f: a7:fa:4e:06:c5:31:f2:41:c8:9a:e4:40:6e:da:cb: 4f:ff:0c:0f:21:cb:27:3a:9e:50:d8:b5:14:04:b2: ea:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 84:22:33:D6:E7:56:BC:93:C0:DB:9A:45:DD:2F:7B:CD:97:CB:29:AF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/581274af-7cd0-40af-a321-676898d58db8/0/842233D6E756BC93C0DB9A45DD2F7BCD97CB29AF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.162.0/23 Signature Algorithm: sha256WithRSAEncryption 56:e9:3e:9f:8c:d3:37:7e:a9:3c:69:08:61:fb:ad:c4:e4:7d: d1:2d:c8:56:67:5a:e2:9a:fe:29:2e:d8:f0:f2:06:41:26:45: 44:82:4c:73:e2:d4:55:a8:d4:fa:7d:65:1c:03:f8:fc:bf:e8: b5:72:f5:1b:37:ab:6e:db:42:c2:1f:7b:73:7d:51:74:7b:bf: af:c5:30:98:02:2e:3c:0b:a1:6e:3a:fc:0f:4d:3c:46:00:89: de:c5:6a:b7:23:03:0e:55:61:59:52:99:ac:da:e4:ea:61:c2: f8:5a:c9:72:de:9e:92:ac:79:d3:f9:eb:bf:d5:e1:92:97:0b: a9:33:df:db:14:1d:a6:a6:0e:21:5d:54:99:d2:b3:9f:db:fc: f1:36:0d:a1:d1:37:48:c3:60:c7:ad:3c:e4:ec:90:2d:3f:12: 14:6b:a0:af:11:71:5e:3b:23:6b:9c:b2:d4:eb:28:2e:0a:d2: ae:bb:4c:96:a8:00:0c:18:cf:46:23:0a:d9:b1:77:91:aa:b1: 7c:6b:86:3e:46:24:c2:b8:06:f8:bd:3f:23:ec:f0:a6:2d:53: 60:17:70:2e:c3:b5:bb:7f:88:81:67:d5:a1:71:3a:d0:24:8c: e2:75:d8:21:aa:06:07:70:13:2f:4f:bc:f0:4e:5e:14:e5:64: 1a:14:a1:22 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUedfqRWG6GllcxAf6hbgvHse94qEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxODIyMDMxOVoX DTI1MTAxNzIyMDgxOVowMzExMC8GA1UEAxMoODQyMjMzRDZFNzU2QkM5M0MwREI5 QTQ1REQyRjdCQ0Q5N0NCMjlBRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANyiSemzgi2oYWzwaVPj9ylqCVBX1u+B9iQcwBk4pfyRPtqOUHqUd7Gno5wx ZK/bY+AGCLEjwVVu+AUJjVDxE7VLmljgGTHaOfO3d71Yl0I6twwbsZ85PPON69l6 E9G3GrV8EJIKL8AlWECKA+adwHiORGkAIC3D3pcTBCKaVQEM4g/88v7XKYTLwqlF 6/K5uPvF7pp51FfchDhfFN7mOvhDg43oHDAV1OO2eJZjBvoGWCcfw6WWCd5ZpIJn xCWLXQwCDiRHK2BzSpwDGlMkfx75EgOkn8dCc+sxzwztAROfp/pOBsUx8kHImuRA btrLT/8MDyHLJzqeUNi1FASy6uUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIQiM9bnVryTwNuaRd0ve82XyymvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ODEyNzRhZi03Y2QwLTQwYWYtYTMyMS02NzY4OThkNThkYjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MTI3NGFm LTdjZDAtNDBhZi1hMzIxLTY3Njg5OGQ1OGRiOC8wLzg0MjIzM0Q2RTc1NkJDOTND MERCOUE0NUREMkY3QkNEOTdDQjI5QUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHKL6IwDQYJKoZIhvcNAQELBQADggEBAFbpPp+M0zd+qTxpCGH7rcTkfdEtyFZn WuKa/iku2PDyBkEmRUSCTHPi1FWo1Pp9ZRwD+Py/6LVy9Rs3q27bQsIfe3N9UXR7 v6/FMJgCLjwLoW46/A9NPEYAid7FarcjAw5VYVlSmaza5OphwvhayXLenpKsedP5 67/V4ZKXC6kz39sUHaamDiFdVJnSs5/b/PE2DaHRN0jDYMetPOTskC0/EhRroK8R cV47I2ucstTrKC4K0q67TJaoAAwYz0YjCtmxd5GqsXxrhj5GJMK4Bvi9PyPs8KYt U2AXcC7Dtbt/iIFn1aFxOtAkjOJ12CGqBgdwEy9PvPBOXhTlZBoUoSI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:20 2024 by rpki-client on console-fra.rpki-client.org