$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer File: C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer (raw, json) Hash identifier: gUBI7tNEk7W2T1CxElNtRKzF1Y7IUoCUbr60UWJHf70= Subject key identifier: C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 63BBE2B3B78AE404D9EA748ECBD98A84278E817E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.mft caRepository: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 12 Jul 2024 06:11:26 +0000 Certificate not after: Fri 11 Jul 2025 06:16:26 +0000 Subordinate resources: IP: 103.152.92.0/23 IP: 2407:72c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:bb:e2:b3:b7:8a:e4:04:d9:ea:74:8e:cb:d9:8a:84:27:8e:81:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 12 06:11:26 2024 GMT Not After : Jul 11 06:16:26 2025 GMT Subject: CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a9:77:29:27:53:d2:a9:6e:39:22:ea:71:7e: f2:1d:32:80:7c:d4:40:6d:34:7c:6f:ce:b5:48:35: c8:c9:0c:df:be:ef:28:bc:e5:d0:ce:b2:bf:0f:8c: ab:f3:d5:18:89:2a:2f:72:b5:0e:54:8e:a9:db:b1: 30:df:6c:ef:dc:9e:a5:6e:76:14:f6:d3:6e:a0:62: 74:75:e7:df:1a:02:44:2c:81:3f:e9:e5:73:51:d9: 63:72:09:98:f7:4d:f1:e6:31:47:c9:90:c1:70:76: 24:48:0f:07:91:e6:c0:f8:1c:24:9a:f1:84:f5:24: 6f:72:b4:42:a0:c1:3d:a0:44:c8:24:1c:0d:dc:e1: 10:05:bd:0f:ad:40:fa:06:3b:86:a9:28:f9:41:dc: 24:b7:14:26:00:2c:15:21:d6:05:b9:21:f2:ec:ff: a9:3a:e8:d6:c0:d4:72:bb:ef:1a:e4:f1:c1:bc:80: de:fe:75:03:10:7b:e6:8a:9b:29:f3:3f:22:b1:95: c6:5a:b5:d7:9c:f3:fa:6e:dd:23:7b:80:67:2e:fa: 10:f9:47:90:59:4d:c1:33:13:29:38:5a:9e:6a:2d: 83:aa:87:d1:8a:47:ad:d8:71:52:6b:74:ab:9d:ac: 96:b5:d1:a0:d4:6f:26:8c:85:fc:ac:d0:24:0b:a6: ed:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.92.0/23 IPv6: 2407:72c0::/32 Signature Algorithm: sha256WithRSAEncryption 19:72:8d:fc:d8:49:13:0e:b1:85:e4:d7:9e:56:a4:d3:84:dd: 29:90:8b:1e:55:97:e1:15:b4:6a:39:9f:25:14:0e:86:ea:70: 4a:5f:50:ee:61:eb:da:27:aa:50:93:d5:ce:57:b5:97:ed:e9: a1:25:34:cd:74:71:d7:04:8f:41:dc:67:62:c2:cf:72:08:df: 75:83:bc:b1:a1:86:3c:4c:41:c0:c4:f9:b5:7f:36:e6:6e:c7: ab:c2:e1:a4:b3:f6:71:ae:85:83:05:f7:b6:82:fe:65:de:59: d9:17:8d:8f:f2:03:62:40:15:68:2d:db:0d:68:b8:75:af:9d: ef:4d:27:00:a9:8a:c7:fd:85:f0:a9:5c:09:08:bc:b4:1e:d6: 7f:93:2f:83:b4:09:e8:51:aa:70:4b:52:9c:cf:29:8a:f4:d4: c4:fe:20:4d:f0:2f:d3:4d:48:c4:b9:2e:bf:29:93:75:24:69: a9:3e:c4:c7:eb:5f:f5:6c:38:5d:1e:90:8e:16:9d:fc:ad:7a: 1b:ad:ea:fd:da:0b:9a:d3:d8:f2:16:39:2f:ee:d5:41:6d:01: 20:23:1e:07:80:3d:a3:2f:f4:bf:f5:6e:95:78:7b:bf:9c:62: 5f:e1:f9:ff:46:70:f0:18:53:47:54:c9:ec:a4:5d:a8:df:61: ad:39:e1:eb -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUY7vis7eK5ATZ6nSOy9mKhCeOgX4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcxMjA2MTEyNloX DTI1MDcxMTA2MTYyNlowMzExMC8GA1UEAxMoQzFDMDIzM0RDMDczMDJFODZEMTE0 QUI3NzJBQjY1NjZFRDdGNUZCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+pdyknU9Kpbjki6nF+8h0ygHzUQG00fG/OtUg1yMkM377vKLzl0M6yvw+M q/PVGIkqL3K1DlSOqduxMN9s79yepW52FPbTbqBidHXn3xoCRCyBP+nlc1HZY3IJ mPdN8eYxR8mQwXB2JEgPB5HmwPgcJJrxhPUkb3K0QqDBPaBEyCQcDdzhEAW9D61A +gY7hqko+UHcJLcUJgAsFSHWBbkh8uz/qTro1sDUcrvvGuTxwbyA3v51AxB75oqb KfM/IrGVxlq115zz+m7dI3uAZy76EPlHkFlNwTMTKThanmotg6qH0YpHrdhxUmt0 q52slrXRoNRvJoyF/KzQJAum7a8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMHAIz3AcwLobRFKt3KrZWbtf1+7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zOGM5YzI1Mi1mN2NhLTRkZDUtODhmNi0yMmFkZGM4OTM0YjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzljMjUy LWY3Y2EtNGRkNS04OGY2LTIyYWRkYzg5MzRiMy8wL0MxQzAyMzNEQzA3MzAyRTg2 RDExNEFCNzcyQUI2NTY2RUQ3RjVGQkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnmFwwDQQCAAIwBwMFACQHcsAwDQYJKoZIhvcNAQELBQADggEBABlyjfzYSRMO sYXk155WpNOE3SmQix5Vl+EVtGo5nyUUDobqcEpfUO5h69onqlCT1c5XtZft6aEl NM10cdcEj0HcZ2LCz3II33WDvLGhhjxMQcDE+bV/NuZux6vC4aSz9nGuhYMF97aC /mXeWdkXjY/yA2JAFWgt2w1ouHWvne9NJwCpisf9hfCpXAkIvLQe1n+TL4O0CehR qnBLUpzPKYr01MT+IE3wL9NNSMS5Lr8pk3Ukaak+xMfrX/VsOF0ekI4Wnfytehut 6v3aC5rT2PIWOS/u1UFtASAjHgeAPaMv9L/1bpV4e7+cYl/h+f9GcPAYU0dUyeyk XajfYa054es= -----END CERTIFICATE-----Generated at Mon Nov 25 13:02:00 2024 by rpki-client on console-fra.rpki-client.org