$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer File: A075EFE65C596438427C6A22E60EB0A01ADEDA8A.cer (raw, json) Hash identifier: dkyaaEuGdoIgmn51jepdcT5PpMO80BGf3mSmsRJw5LA= Subject key identifier: A0:75:EF:E6:5C:59:64:38:42:7C:6A:22:E6:0E:B0:A0:1A:DE:DA:8A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 44A9C5DB11F62D8CC09DEAFE41144C96007BF72E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.mft caRepository: rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 13 Mar 2024 19:19:13 +0000 Certificate not after: Wed 12 Mar 2025 19:24:13 +0000 Subordinate resources: IP: 103.22.204.0/22 IP: 2001:df0:a00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:a9:c5:db:11:f6:2d:8c:c0:9d:ea:fe:41:14:4c:96:00:7b:f7:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 13 19:19:13 2024 GMT Not After : Mar 12 19:24:13 2025 GMT Subject: CN=A075EFE65C596438427C6A22E60EB0A01ADEDA8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:14:97:4d:a0:f9:5c:40:7b:f1:aa:58:5c: 0a:fa:20:f5:90:f8:29:5d:fc:39:bb:73:d8:18:f5: 0a:49:c8:97:cb:d2:50:f7:01:59:d1:88:0e:ce:b1: 8c:50:f2:21:d0:00:af:af:1c:74:5c:0f:8e:9d:23: c8:67:de:3f:bc:68:44:0d:6f:0a:e3:17:47:8c:55: 79:d6:b9:68:f7:2f:be:12:84:2c:1f:1d:b4:52:e3: f1:d5:5e:05:33:ad:df:7c:bd:29:d1:ff:ed:3f:85: b3:96:8d:6a:f1:67:b5:19:9c:dc:62:47:c4:c4:83: 0a:8e:16:5d:68:14:da:61:4e:c8:98:cb:a9:26:d4: 3b:9c:77:ba:30:ed:b6:67:db:c4:9f:b6:81:02:f4: b3:7e:a0:10:8a:26:df:4e:4d:2f:ff:8c:4e:f5:3d: 51:24:9d:b4:15:7a:fe:52:66:3c:69:72:3f:9a:b7: 65:bc:7e:e9:ef:e0:1c:f9:f3:95:b9:64:1a:2d:72: 0a:bd:92:6c:a3:4a:c7:64:75:60:b2:39:90:79:ee: de:aa:03:ca:a8:c1:2f:c5:f4:cc:56:5e:08:a6:b0: 7a:d2:9d:cc:d5:cc:45:f7:4b:50:fd:6e:2e:03:e3: 6e:6a:d5:bf:56:1a:b1:87:24:5b:ca:af:42:d6:49: b6:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A0:75:EF:E6:5C:59:64:38:42:7C:6A:22:E6:0E:B0:A0:1A:DE:DA:8A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/904d0397-ffa0-4903-805f-084527bc430c/0/A075EFE65C596438427C6A22E60EB0A01ADEDA8A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.22.204.0/22 IPv6: 2001:df0:a00::/48 Signature Algorithm: sha256WithRSAEncryption 85:c6:bb:7c:80:27:be:bb:32:a5:c0:ab:63:d5:b3:42:2d:53: 54:84:d1:3b:7a:1f:6a:53:91:66:ce:3c:6f:00:ca:6b:66:65: 2f:79:44:46:37:18:75:9c:08:a4:9b:31:ba:57:84:9b:48:cf: 18:d0:a9:17:82:ec:87:4d:e4:f4:3b:76:a4:46:9a:8e:96:ca: 62:2c:b0:2d:e3:5d:22:bf:d0:eb:75:53:b4:b9:b8:31:48:4e: 7b:84:81:88:29:71:73:95:99:1c:a8:96:0f:d4:af:4d:f8:1a: 70:4a:77:f4:9d:f3:91:57:16:37:c8:e4:c1:59:09:c4:ab:a6: 7e:90:92:88:71:79:47:0a:c2:54:1f:14:b6:99:7f:8c:8f:82: 58:78:c6:05:8f:d6:57:e3:43:c2:73:88:e7:a9:40:11:07:be: 33:2e:b0:64:e5:ad:1a:56:e7:55:48:7d:ff:6e:65:16:c1:0c: a8:d2:45:d3:c7:2d:c4:2e:36:5c:5c:ab:5b:20:3a:2b:0b:e5: 03:db:a3:49:22:97:3a:f1:7c:9e:11:8d:40:1c:89:7c:12:5c: f1:d1:2e:af:35:56:6a:62:dc:15:50:e6:e8:d9:db:87:54:f1: fe:7e:c4:3b:1c:1d:b9:54:2c:40:98:2f:86:11:39:a7:1c:68: 2a:bc:e1:36 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIURKnF2xH2LYzAner+QRRMlgB79y4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxMzE5MTkxM1oX DTI1MDMxMjE5MjQxM1owMzExMC8GA1UEAxMoQTA3NUVGRTY1QzU5NjQzODQyN0M2 QTIyRTYwRUIwQTAxQURFREE4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL23FJdNoPlcQHvxqlhcCvog9ZD4KV38Obtz2Bj1CknIl8vSUPcBWdGIDs6x jFDyIdAAr68cdFwPjp0jyGfeP7xoRA1vCuMXR4xVeda5aPcvvhKELB8dtFLj8dVe BTOt33y9KdH/7T+Fs5aNavFntRmc3GJHxMSDCo4WXWgU2mFOyJjLqSbUO5x3ujDt tmfbxJ+2gQL0s36gEIom305NL/+MTvU9USSdtBV6/lJmPGlyP5q3Zbx+6e/gHPnz lblkGi1yCr2SbKNKx2R1YLI5kHnu3qoDyqjBL8X0zFZeCKawetKdzNXMRfdLUP1u LgPjbmrVv1YasYckW8qvQtZJto0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKB17+ZcWWQ4QnxqIuYOsKAa3tqKMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MDRkMDM5Ny1mZmEwLTQ5MDMtODA1Zi0wODQ1MjdiYzQzMGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkwNGQwMzk3 LWZmYTAtNDkwMy04MDVmLTA4NDUyN2JjNDMwYy8wL0EwNzVFRkU2NUM1OTY0Mzg0 MjdDNkEyMkU2MEVCMEEwMUFERURBOEEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnFswwDwQCAAIwCQMHACABDfAKADANBgkqhkiG9w0BAQsFAAOCAQEAhca7fIAn vrsypcCrY9WzQi1TVITRO3ofalORZs48bwDKa2ZlL3lERjcYdZwIpJsxuleEm0jP GNCpF4Lsh03k9Dt2pEaajpbKYiywLeNdIr/Q63VTtLm4MUhOe4SBiClxc5WZHKiW D9SvTfgacEp39J3zkVcWN8jkwVkJxKumfpCSiHF5RwrCVB8Utpl/jI+CWHjGBY/W V+NDwnOI56lAEQe+My6wZOWtGlbnVUh9/25lFsEMqNJF08ctxC42XFyrWyA6Kwvl A9ujSSKXOvF8nhGNQByJfBJc8dEurzVWamLcFVDm6Nnbh1Tx/n7EOxwduVQsQJgv hhE5pxxoKrzhNg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:52 2024 by rpki-client on console-fra.rpki-client.org