$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A4A4C426A4F42A29829636FB3223FA7F5C68509A.cer File: A4A4C426A4F42A29829636FB3223FA7F5C68509A.cer (raw, json) Hash identifier: tDZYGWZ/GPiUG0mrlx2TvBEPpWKV2zPn4AOBFWfxouk= Subject key identifier: A4:A4:C4:26:A4:F4:2A:29:82:96:36:FB:32:23:FA:7F:5C:68:50:9A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7C3256309002C3BFB19150BED25D339FA4551AA6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/A4A4C426A4F42A29829636FB3223FA7F5C68509A.mft caRepository: rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 08 Feb 2024 19:38:55 +0000 Certificate not after: Thu 06 Feb 2025 19:43:55 +0000 Subordinate resources: IP: 103.13.36.0/24 IP: 2001:df0:418::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:32:56:30:90:02:c3:bf:b1:91:50:be:d2:5d:33:9f:a4:55:1a:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 8 19:38:55 2024 GMT Not After : Feb 6 19:43:55 2025 GMT Subject: CN=A4A4C426A4F42A29829636FB3223FA7F5C68509A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:27:c3:0b:f7:e2:08:9b:d9:d9:74:76:4c:73: 82:3f:d2:4e:d8:2d:c3:0a:0d:ac:a0:36:8a:f9:d1: eb:12:c9:98:b8:70:cd:b7:d4:5b:11:12:37:c6:66: 5b:2c:cc:64:c9:4f:5f:30:77:51:23:e2:bd:77:19: 32:91:86:f7:c1:d1:26:01:9b:e0:55:b2:6d:3d:08: df:ce:fb:1d:ce:f4:bb:03:25:f3:53:d4:64:8d:87: 44:11:e8:37:5d:6e:5e:9d:9a:2e:3f:32:b7:fa:5c: 8a:88:93:9a:dd:41:1e:b1:b4:26:eb:49:b5:18:24: f2:ba:fe:74:03:e1:f3:a2:c2:20:16:33:de:1d:cb: a5:b2:d0:3a:ca:ec:68:13:a5:27:fd:8b:d7:d4:dc: ae:3e:b8:a9:b7:6b:f4:52:93:38:31:29:3c:79:eb: c1:a9:4d:6b:ea:8d:21:f7:3b:21:fe:5d:a6:34:2e: 06:1f:f0:66:1b:e3:8d:1a:6d:d0:0c:34:cb:47:28: c4:b3:af:e8:da:e3:ef:55:57:4e:ee:65:c8:42:c8: 10:73:e8:e3:76:81:75:7b:70:d2:7f:11:3c:4b:95: bd:a3:ff:7e:7d:0f:e3:11:d8:0c:60:90:14:1a:e3: d7:18:3f:b8:d7:01:23:0e:db:38:94:86:9a:bb:15: e0:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A4:A4:C4:26:A4:F4:2A:29:82:96:36:FB:32:23:FA:7F:5C:68:50:9A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5baebfb3-e29b-47c4-bd21-4571c30f441b/0/A4A4C426A4F42A29829636FB3223FA7F5C68509A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.36.0/24 IPv6: 2001:df0:418::/48 Signature Algorithm: sha256WithRSAEncryption 72:87:e8:eb:27:5a:df:45:06:15:02:16:1d:03:4f:17:15:2f: c4:2b:08:73:cb:c5:b9:f0:e5:89:af:14:cc:c2:9b:3f:51:84: f6:f6:ee:41:aa:8a:1e:53:cc:14:c2:a8:d8:c8:04:47:b9:26: b7:36:46:2d:dc:bf:e5:3a:4c:14:c3:db:22:59:bd:7c:95:da: 1d:11:fd:a2:eb:9a:df:41:e6:21:6d:89:7e:c1:05:4b:51:72: ce:f9:ed:f6:00:a1:49:4a:5b:a3:13:6f:d3:81:59:b7:65:a0: 79:27:80:f1:e4:f6:8d:63:69:d2:d2:7a:20:b9:07:7d:79:7e: af:f6:03:16:8b:91:30:f5:5b:b8:64:bd:98:c0:97:d8:56:2f: 5b:e5:ac:5f:83:02:6c:02:35:67:75:bd:3b:ee:28:5b:d1:42: 71:48:cd:19:6f:8c:95:c3:69:41:9b:08:db:79:ac:ee:12:e2: 81:18:80:8b:50:53:52:5e:27:31:6d:5d:8c:3a:c3:03:81:9e: 32:b9:20:10:20:e6:f4:18:95:c8:03:21:0b:aa:90:19:c9:8f: 4b:26:c3:be:1b:11:26:a2:33:eb:79:0d:e7:88:4b:09:fc:d2: a5:21:eb:e4:f0:2d:75:c7:2d:70:21:5c:3c:8e:9b:5c:d0:ac: 5b:6d:2b:65 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUfDJWMJACw7+xkVC+0l0zn6RVGqYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwODE5Mzg1NVoX DTI1MDIwNjE5NDM1NVowMzExMC8GA1UEAxMoQTRBNEM0MjZBNEY0MkEyOTgyOTYz NkZCMzIyM0ZBN0Y1QzY4NTA5QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMnwwv34gib2dl0dkxzgj/STtgtwwoNrKA2ivnR6xLJmLhwzbfUWxESN8Zm WyzMZMlPXzB3USPivXcZMpGG98HRJgGb4FWybT0I3877Hc70uwMl81PUZI2HRBHo N11uXp2aLj8yt/pcioiTmt1BHrG0JutJtRgk8rr+dAPh86LCIBYz3h3LpbLQOsrs aBOlJ/2L19Tcrj64qbdr9FKTODEpPHnrwalNa+qNIfc7If5dpjQuBh/wZhvjjRpt 0Aw0y0coxLOv6Nrj71VXTu5lyELIEHPo43aBdXtw0n8RPEuVvaP/fn0P4xHYDGCQ FBrj1xg/uNcBIw7bOJSGmrsV4D8CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKSkxCak9CopgpY2+zIj+n9caFCaMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81YmFlYmZiMy1lMjliLTQ3YzQtYmQyMS00NTcxYzMwZjQ0MWIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViYWViZmIz LWUyOWItNDdjNC1iZDIxLTQ1NzFjMzBmNDQxYi8wL0E0QTRDNDI2QTRGNDJBMjk4 Mjk2MzZGQjMyMjNGQTdGNUM2ODUwOUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnDSQwDwQCAAIwCQMHACABDfAEGDANBgkqhkiG9w0BAQsFAAOCAQEAcofo6yda 30UGFQIWHQNPFxUvxCsIc8vFufDlia8UzMKbP1GE9vbuQaqKHlPMFMKo2MgER7km tzZGLdy/5TpMFMPbIlm9fJXaHRH9ouua30HmIW2JfsEFS1Fyzvnt9gChSUpboxNv 04FZt2WgeSeA8eT2jWNp0tJ6ILkHfXl+r/YDFouRMPVbuGS9mMCX2FYvW+WsX4MC bAI1Z3W9O+4oW9FCcUjNGW+MlcNpQZsI23ms7hLigRiAi1BTUl4nMW1djDrDA4Ge MrkgECDm9BiVyAMhC6qQGcmPSybDvhsRJqIz63kN54hLCfzSpSHr5PAtdcctcCFc PI6bXNCsW20rZQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:22 2024 by rpki-client on console-fra.rpki-client.org