$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/993D6DBC0B37BB59CEA86CE024A349353C57D366.cer File: 993D6DBC0B37BB59CEA86CE024A349353C57D366.cer (raw, json) Hash identifier: w/ja/EEJXamI00AsjTdP1jynFK1GjILOOy05BdtfSt0= Subject key identifier: 99:3D:6D:BC:0B:37:BB:59:CE:A8:6C:E0:24:A3:49:35:3C:57:D3:66 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B0B73D8A5973E2625F6801D5605B7A85491DFBC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/993D6DBC0B37BB59CEA86CE024A349353C57D366.mft caRepository: rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 16 May 2024 07:43:02 +0000 Certificate not after: Thu 15 May 2025 07:48:02 +0000 Subordinate resources: IP: 103.169.72.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0b:73:d8:a5:97:3e:26:25:f6:80:1d:56:05:b7:a8:54:91:df:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 16 07:43:02 2024 GMT Not After : May 15 07:48:02 2025 GMT Subject: CN=993D6DBC0B37BB59CEA86CE024A349353C57D366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:16:9f:df:b3:8a:40:b5:70:e4:f3:c3:28:3d: 8e:7a:9f:b1:9a:40:ad:68:2b:92:cb:ee:f1:52:1f: e0:7e:b8:0e:c8:4d:44:05:c7:93:46:12:a4:a4:ec: 47:05:e0:c0:a3:61:8d:47:e7:43:13:50:77:73:9a: cf:e9:a3:40:dc:8f:a6:ae:0b:18:d1:c3:a9:74:e5: 3d:0f:9b:38:9b:2a:1c:54:b0:61:bf:ef:02:85:10: 4e:e8:eb:d6:44:5a:57:4f:db:bb:f7:a0:51:4c:94: 8f:09:b7:82:5d:c8:dd:2e:7b:e5:da:78:e0:2a:bc: dd:be:85:54:50:81:7b:9c:f8:1c:bf:16:f6:db:2a: a0:90:1c:40:57:11:07:2f:ea:72:07:4e:94:8c:bd: 27:da:ce:bd:05:de:1d:e5:c8:c0:e4:30:74:98:95: c8:7f:be:06:2f:5d:7a:42:fa:aa:1c:bd:b6:cb:ed: 24:d3:aa:75:92:3b:19:f3:fb:52:13:49:da:08:a2: 83:ba:9f:1d:ff:8c:3a:a3:f7:c6:49:f2:92:00:18: f9:d4:3c:6f:09:fe:97:85:d2:b1:30:ae:4d:df:8e: d2:5a:06:c0:68:e2:49:1d:ca:55:0f:ed:a2:ad:22: 36:46:5c:c9:77:cf:c6:41:f2:24:92:a8:d0:b0:d2: 6d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 99:3D:6D:BC:0B:37:BB:59:CE:A8:6C:E0:24:A3:49:35:3C:57:D3:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/993D6DBC0B37BB59CEA86CE024A349353C57D366.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.72.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:c4:2b:c8:83:d5:9c:c4:37:83:13:35:f3:05:6e:21:e5:e4: 41:ab:cb:22:ab:30:01:89:cb:da:a7:cb:95:da:18:21:f5:7d: 9e:29:ea:48:3e:60:c2:8b:4a:be:2c:2e:3c:42:15:f5:a2:87: e0:50:d9:68:18:8c:f4:3e:a8:1e:95:2c:d7:79:7e:cd:ad:6b: 68:5e:68:b9:88:92:6c:53:1f:89:ce:ae:13:7e:c6:f4:41:c7: fc:38:8b:11:f7:f6:95:86:25:03:bd:12:8d:6e:01:d7:dc:34: c0:97:cc:2b:4a:ce:06:75:0b:d1:72:76:33:79:50:ad:04:f5: 3f:41:94:9d:16:97:fc:9c:67:01:3b:02:c0:06:fb:18:0b:2d: 29:73:41:44:b3:b8:2e:4d:59:62:3f:62:74:33:16:83:f8:c2: 31:74:3c:49:71:03:0c:5c:d9:62:9d:66:bf:a0:49:b4:36:66: 48:7a:d5:32:0f:8f:7b:c2:f6:1a:9d:6b:56:6a:8b:61:8d:69: 4a:82:a1:f8:55:46:04:16:11:d4:0e:43:49:e5:96:9c:a9:69: f3:1d:9f:1e:08:b8:44:a7:3b:83:16:49:6f:35:a8:be:8f:41: db:7f:8e:56:65:21:ed:df:52:7f:57:9d:db:e3:b6:9b:2b:af: a3:71:9d:3a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUewtz2KWXPiYl9oAdVgW3qFSR37wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUxNjA3NDMwMloX DTI1MDUxNTA3NDgwMlowMzExMC8GA1UEAxMoOTkzRDZEQkMwQjM3QkI1OUNFQTg2 Q0UwMjRBMzQ5MzUzQzU3RDM2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKIWn9+zikC1cOTzwyg9jnqfsZpArWgrksvu8VIf4H64DshNRAXHk0YSpKTs RwXgwKNhjUfnQxNQd3Oaz+mjQNyPpq4LGNHDqXTlPQ+bOJsqHFSwYb/vAoUQTujr 1kRaV0/bu/egUUyUjwm3gl3I3S575dp44Cq83b6FVFCBe5z4HL8W9tsqoJAcQFcR By/qcgdOlIy9J9rOvQXeHeXIwOQwdJiVyH++Bi9dekL6qhy9tsvtJNOqdZI7GfP7 UhNJ2giig7qfHf+MOqP3xknykgAY+dQ8bwn+l4XSsTCuTd+O0loGwGjiSR3KVQ/t oq0iNkZcyXfPxkHyJJKo0LDSbXcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJk9bbwLN7tZzqhs4CSjSTU8V9NmMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xNDFhMDJlNi0yMTcxLTQ3YzktODZjOS1kNWQ4MGY0NTg4MzYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MWEwMmU2 LTIxNzEtNDdjOS04NmM5LWQ1ZDgwZjQ1ODgzNi8wLzk5M0Q2REJDMEIzN0JCNTlD RUE4NkNFMDI0QTM0OTM1M0M1N0QzNjYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqUgwDQYJKoZIhvcNAQELBQADggEBAG/EK8iD1ZzEN4MTNfMFbiHl5EGryyKr MAGJy9qny5XaGCH1fZ4p6kg+YMKLSr4sLjxCFfWih+BQ2WgYjPQ+qB6VLNd5fs2t a2heaLmIkmxTH4nOrhN+xvRBx/w4ixH39pWGJQO9Eo1uAdfcNMCXzCtKzgZ1C9Fy djN5UK0E9T9BlJ0Wl/ycZwE7AsAG+xgLLSlzQUSzuC5NWWI/YnQzFoP4wjF0PElx Awxc2WKdZr+gSbQ2Zkh61TIPj3vC9hqda1Zqi2GNaUqCofhVRgQWEdQOQ0nllpyp afMdnx4IuESnO4MWSW81qL6PQdt/jlZlIe3fUn9Xndvjtpsrr6NxnTo= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:21 2024 by rpki-client on console-fra.rpki-client.org