$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCEE1D439DB1441C4F21223918AC0811E65D56F.cer File: AFCEE1D439DB1441C4F21223918AC0811E65D56F.cer (raw, json) Hash identifier: IDi6QvD8DOl4LubdroNZPKqECTbcawUgCQ6k6/Oo+iI= Subject key identifier: AF:CE:E1:D4:39:DB:14:41:C4:F2:12:23:91:8A:C0:81:1E:65:D5:6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 27F705B34EA4AEB0DBF64644A35C60E6CE0AFEC2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/AFCEE1D439DB1441C4F21223918AC0811E65D56F.mft caRepository: rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 21 Sep 2024 06:17:35 +0000 Certificate not after: Sat 20 Sep 2025 06:22:35 +0000 Subordinate resources: IP: 103.175.188.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:f7:05:b3:4e:a4:ae:b0:db:f6:46:44:a3:5c:60:e6:ce:0a:fe:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 21 06:17:35 2024 GMT Not After : Sep 20 06:22:35 2025 GMT Subject: CN=AFCEE1D439DB1441C4F21223918AC0811E65D56F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:72:24:d5:fe:ec:5b:38:e6:5d:56:0a:1c:08: 87:ed:d0:a2:a8:ee:bf:e7:49:ab:d0:0d:26:cb:e9: d6:f8:96:1a:f0:75:c9:d1:5f:f8:2a:ac:d4:46:cc: 44:9b:e9:87:4a:76:7d:13:97:fc:db:9b:6b:4e:55: 0e:84:d1:06:90:86:83:67:5a:2d:7f:fb:72:5e:0d: 91:7e:cd:36:ba:5e:fe:2e:c2:0a:e7:47:ea:c6:82: 1a:42:8c:61:37:34:08:91:18:c9:4f:eb:f0:22:d3: 74:cc:25:13:7e:66:64:f8:bc:c5:83:93:66:22:e2: d2:54:c3:f8:db:03:87:55:cc:20:cb:3a:82:86:5e: a1:17:c5:80:c8:1f:f8:c3:ef:8c:9c:81:c1:8d:6d: 66:08:f5:9b:13:15:41:75:46:9a:6f:39:78:23:b1: 2d:09:4e:ee:e0:f6:41:33:7b:61:34:c6:41:18:3e: a5:e7:e5:f7:49:fe:f9:3f:27:45:d5:fa:7d:37:6f: e6:91:ad:6e:8b:61:4e:12:86:29:f3:e5:ee:e1:0e: 04:8f:0f:60:de:fa:dd:a6:c9:a9:b5:70:d0:f5:03: 59:e7:af:a1:0c:8e:4a:86:00:d0:22:82:b3:d7:3f: 00:9c:df:69:4a:4e:2c:65:10:23:2c:80:f6:d2:08: 10:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AF:CE:E1:D4:39:DB:14:41:C4:F2:12:23:91:8A:C0:81:1E:65:D5:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/AFCEE1D439DB1441C4F21223918AC0811E65D56F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.188.0/23 Signature Algorithm: sha256WithRSAEncryption 57:a3:ad:04:3a:b1:4a:c4:9c:17:80:4b:be:47:54:aa:a0:ba: bd:e6:61:11:e9:45:5c:b5:d3:f1:6a:a7:e2:1e:b5:62:e2:2c: 51:29:66:02:07:af:89:7a:a8:28:4b:a9:71:20:ba:e4:95:08: 07:2d:13:18:c4:49:85:80:c6:af:c4:19:8f:25:71:92:eb:40: 8d:3d:16:7f:20:ae:e2:f6:3a:21:05:6a:0e:cb:10:1f:c5:aa: 9b:39:ce:8b:77:3b:34:c6:6f:b1:b7:f2:f3:ee:aa:a5:0b:89: e7:26:7a:67:26:73:05:d2:3f:a9:e7:23:9a:6d:f4:f7:73:18: a3:9a:6a:b7:8b:fb:4b:8f:d4:a4:db:37:a2:d9:4c:d6:d7:7e: 57:6e:97:d7:e9:d3:3d:54:de:ec:1e:0d:71:a6:4f:90:06:ed: ce:0e:67:0b:2e:cf:2d:ea:0e:77:1a:4f:61:02:1a:f6:8e:f2: c9:16:a1:82:05:f3:5c:82:bc:76:30:df:3a:3d:0d:99:9c:04: 51:43:b2:bf:61:cc:3f:9d:78:77:ae:5e:0f:20:e1:39:6e:12: 58:90:ab:6f:04:94:4d:7d:06:f2:c3:fa:0c:ed:8b:af:86:75: 3a:78:22:70:07:81:8b:ed:b6:07:a4:fd:05:63:60:f4:48:aa: 74:96:c8:aa -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJ/cFs06krrDb9kZEo1xg5s4K/sIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyMTA2MTczNVoX DTI1MDkyMDA2MjIzNVowMzExMC8GA1UEAxMoQUZDRUUxRDQzOURCMTQ0MUM0RjIx MjIzOTE4QUMwODExRTY1RDU2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtyJNX+7Fs45l1WChwIh+3Qoqjuv+dJq9ANJsvp1viWGvB1ydFf+Cqs1EbM RJvph0p2fROX/Nuba05VDoTRBpCGg2daLX/7cl4NkX7NNrpe/i7CCudH6saCGkKM YTc0CJEYyU/r8CLTdMwlE35mZPi8xYOTZiLi0lTD+NsDh1XMIMs6goZeoRfFgMgf +MPvjJyBwY1tZgj1mxMVQXVGmm85eCOxLQlO7uD2QTN7YTTGQRg+pefl90n++T8n RdX6fTdv5pGtbothThKGKfPl7uEOBI8PYN763abJqbVw0PUDWeevoQyOSoYA0CKC s9c/AJzfaUpOLGUQIyyA9tIIECECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK/O4dQ52xRBxPISI5GKwIEeZdVvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iOWY2MDkyNy0xZjM0LTRjNTQtOTY3NC1mOWRlYWY3NWMyZmMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5ZjYwOTI3 LTFmMzQtNGM1NC05Njc0LWY5ZGVhZjc1YzJmYy8wL0FGQ0VFMUQ0MzlEQjE0NDFD NEYyMTIyMzkxOEFDMDgxMUU2NUQ1NkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnr7wwDQYJKoZIhvcNAQELBQADggEBAFejrQQ6sUrEnBeAS75HVKqgur3mYRHp RVy10/Fqp+IetWLiLFEpZgIHr4l6qChLqXEguuSVCActExjESYWAxq/EGY8lcZLr QI09Fn8gruL2OiEFag7LEB/Fqps5zot3OzTGb7G38vPuqqULiecmemcmcwXSP6nn I5pt9PdzGKOaareL+0uP1KTbN6LZTNbXfldul9fp0z1U3uweDXGmT5AG7c4OZwsu zy3qDncaT2ECGvaO8skWoYIF81yCvHYw3zo9DZmcBFFDsr9hzD+deHeuXg8g4Tlu EliQq28ElE19BvLD+gzti6+GdTp4InAHgYvttgek/QVjYPRIqnSWyKo= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:53 2024 by rpki-client on console-fra.rpki-client.org