$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/9E106F95CC461B5B1F487A53F6B2D5A36F627004.cer File: 9E106F95CC461B5B1F487A53F6B2D5A36F627004.cer (raw, json) Hash identifier: SJaleqYsL91mx1t2GYHJZox7Wd4jOCFAMWdWCXrRltE= Subject key identifier: 9E:10:6F:95:CC:46:1B:5B:1F:48:7A:53:F6:B2:D5:A3:6F:62:70:04 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 24BB4BEE5A1D888B5B544B37D47E46D4CC428F74 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/9ad73895-c84c-464f-9b4f-8d30306b9727/0/9E106F95CC461B5B1F487A53F6B2D5A36F627004.mft caRepository: rsync://repo-rpki.idnic.net/repo/9ad73895-c84c-464f-9b4f-8d30306b9727/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 23 Oct 2024 23:31:25 +0000 Certificate not after: Wed 22 Oct 2025 23:36:25 +0000 Subordinate resources: IP: 103.162.112.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:bb:4b:ee:5a:1d:88:8b:5b:54:4b:37:d4:7e:46:d4:cc:42:8f:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 23 23:31:25 2024 GMT Not After : Oct 22 23:36:25 2025 GMT Subject: CN=9E106F95CC461B5B1F487A53F6B2D5A36F627004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5e:e2:87:96:a9:51:d5:ac:6b:fe:8a:28:5b: 00:37:35:40:ce:d1:4e:c6:2a:75:95:2b:e4:51:83: bf:f7:71:7f:a3:9a:fb:52:50:ec:99:bd:21:fa:89: 71:81:61:5f:ca:5b:a7:a2:30:be:a5:1e:24:b5:2e: 1c:6c:85:f6:88:e1:a9:55:d8:1e:5a:e2:f1:0f:2a: 6a:9e:a0:14:69:97:3d:22:7a:a2:4d:51:cc:f0:f9: 07:57:94:95:d1:6c:6e:2d:62:c1:9f:6e:64:3e:bb: 18:a5:cc:74:ae:16:7d:e6:92:64:2f:1d:a2:54:76: 9a:83:7e:f2:44:46:99:02:b3:73:72:e7:9a:47:61: 11:54:c2:29:65:52:e6:55:6b:18:a8:e4:77:f9:c2: af:59:97:3f:78:bd:a6:d2:24:a4:93:65:08:15:ad: e8:bd:1c:5f:4a:9a:0f:48:67:02:56:1f:79:91:c0: ae:21:56:68:8f:f3:59:5e:13:11:dc:02:c7:cd:d8: a1:0e:34:0b:24:a9:cd:90:00:23:5f:55:00:c9:2d: fd:11:b8:a4:71:a1:15:10:f7:6d:b5:d7:89:b0:fa: 17:a4:4f:bb:cb:dd:61:bb:f7:4d:21:17:27:5f:06: 86:64:cd:c6:f2:43:0c:fe:17:ca:c8:44:a3:3b:d5: 21:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9E:10:6F:95:CC:46:1B:5B:1F:48:7A:53:F6:B2:D5:A3:6F:62:70:04 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9ad73895-c84c-464f-9b4f-8d30306b9727/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9ad73895-c84c-464f-9b4f-8d30306b9727/0/9E106F95CC461B5B1F487A53F6B2D5A36F627004.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.112.0/23 Signature Algorithm: sha256WithRSAEncryption 06:8c:10:66:fd:05:2a:52:8c:6e:22:4a:94:94:02:c6:da:92: dd:69:2e:98:0d:7f:d1:6a:c1:15:5b:ee:73:da:66:3e:8f:f1: c3:d7:37:d1:04:04:45:e2:34:7b:5f:f2:3c:70:0a:9d:c3:a8: b9:41:37:45:13:60:52:e6:77:05:8d:ec:45:1e:cc:9b:93:9c: 2e:12:ee:2d:79:6c:c0:0a:5a:bb:3a:ff:28:f6:0c:c3:cd:56: 34:44:09:06:f3:9a:0a:bb:5a:6d:78:9b:fd:94:ef:22:13:ec: a0:0f:e6:c2:c9:62:b9:b8:27:f9:a9:bd:f1:f0:fd:b8:16:4a: 06:33:86:82:30:d9:4a:56:fd:34:50:44:43:6b:0e:61:57:b3: 56:10:e0:79:67:9a:fc:48:1b:84:aa:ef:e6:82:0e:f2:f2:ad: 8c:fb:4a:dd:21:f0:e1:d6:c9:db:43:3b:a6:4a:99:64:8d:dc: 84:4c:8a:82:ed:6f:20:0b:c7:f3:95:74:43:95:58:f1:35:1f: d6:98:82:54:ca:4d:6f:cd:d3:ff:59:4e:0e:24:2f:d5:e9:6d: 69:83:51:47:3d:1f:14:3e:cd:8f:de:54:f8:90:44:28:d1:96: 39:51:36:34:9f:37:c9:fb:54:b3:a9:26:16:bb:06:03:46:a6: 26:f8:29:db -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJLtL7lodiItbVEs31H5G1MxCj3QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyMzIzMzEyNVoX DTI1MTAyMjIzMzYyNVowMzExMC8GA1UEAxMoOUUxMDZGOTVDQzQ2MUI1QjFGNDg3 QTUzRjZCMkQ1QTM2RjYyNzAwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM9e4oeWqVHVrGv+iihbADc1QM7RTsYqdZUr5FGDv/dxf6Oa+1JQ7Jm9IfqJ cYFhX8pbp6IwvqUeJLUuHGyF9ojhqVXYHlri8Q8qap6gFGmXPSJ6ok1RzPD5B1eU ldFsbi1iwZ9uZD67GKXMdK4WfeaSZC8dolR2moN+8kRGmQKzc3LnmkdhEVTCKWVS 5lVrGKjkd/nCr1mXP3i9ptIkpJNlCBWt6L0cX0qaD0hnAlYfeZHAriFWaI/zWV4T EdwCx83YoQ40CySpzZAAI19VAMkt/RG4pHGhFRD3bbXXibD6F6RPu8vdYbv3TSEX J18GhmTNxvJDDP4XyshEozvVIdkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ4Qb5XMRhtbH0h6U/ay1aNvYnAEMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85YWQ3Mzg5NS1jODRjLTQ2NGYtOWI0Zi04ZDMwMzA2Yjk3MjcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhZDczODk1 LWM4NGMtNDY0Zi05YjRmLThkMzAzMDZiOTcyNy8wLzlFMTA2Rjk1Q0M0NjFCNUIx RjQ4N0E1M0Y2QjJENUEzNkY2MjcwMDQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnonAwDQYJKoZIhvcNAQELBQADggEBAAaMEGb9BSpSjG4iSpSUAsbakt1pLpgN f9FqwRVb7nPaZj6P8cPXN9EEBEXiNHtf8jxwCp3DqLlBN0UTYFLmdwWN7EUezJuT nC4S7i15bMAKWrs6/yj2DMPNVjRECQbzmgq7Wm14m/2U7yIT7KAP5sLJYrm4J/mp vfHw/bgWSgYzhoIw2UpW/TRQRENrDmFXs1YQ4HlnmvxIG4Sq7+aCDvLyrYz7St0h 8OHWydtDO6ZKmWSN3IRMioLtbyALx/OVdEOVWPE1H9aYglTKTW/N0/9ZTg4kL9Xp bWmDUUc9HxQ+zY/eVPiQRCjRljlRNjSfN8n7VLOpJha7BgNGpib4Kds= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:52 2024 by rpki-client on console-fra.rpki-client.org