$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C24FD85D1F493383773D253EBB38BED908305E45.cer File: C24FD85D1F493383773D253EBB38BED908305E45.cer (raw, json) Hash identifier: vzhma/150wTaiH12TwntNE/VaDBi7MlJ7SDcZJEe33s= Subject key identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 67E186C33F2AF22D7C05E9CD09B4B2980B2FDC81 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft caRepository: rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 14 Feb 2024 15:30:50 +0000 Certificate not after: Wed 12 Feb 2025 15:35:50 +0000 Subordinate resources: IP: 103.169.148.0/23 IP: 2407:a5c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:e1:86:c3:3f:2a:f2:2d:7c:05:e9:cd:09:b4:b2:98:0b:2f:dc:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 14 15:30:50 2024 GMT Not After : Feb 12 15:35:50 2025 GMT Subject: CN=C24FD85D1F493383773D253EBB38BED908305E45 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:2a:48:bd:61:c1:e8:d9:f0:07:24:8a:2e:17: c4:32:6d:7a:3a:7a:a0:18:b7:09:4c:2a:cd:db:85: 63:2e:68:7a:69:be:4e:20:13:12:72:ae:00:15:cb: da:34:73:1a:6d:c7:ae:97:e7:80:da:a9:5c:01:b5: e8:d3:6f:dd:e8:b6:b6:3d:82:84:a9:44:54:2e:cc: 95:31:76:b3:52:8f:a9:b4:6d:35:9b:0b:77:c8:56: f4:1d:c1:e6:a3:30:43:1e:d2:78:84:da:da:4b:e6: 2b:6a:9d:b8:eb:3a:f4:d9:3c:53:c5:01:95:ed:e1: 83:a6:77:a2:e4:43:d1:87:28:12:98:09:41:15:48: 12:b4:04:b7:4d:53:c9:e2:e2:58:ee:d4:1e:11:7d: 78:47:ea:01:e0:45:7b:85:c8:52:9c:60:6f:ce:60: 59:21:27:85:66:82:a0:08:e5:c7:f3:5b:cb:45:0c: 35:29:da:a0:21:99:2f:ce:cf:f7:f0:d6:61:05:34: 66:6f:98:cc:c5:d7:55:85:6d:cf:a3:2f:e6:c7:7b: 88:06:58:a3:83:d0:29:58:60:19:d0:ff:dd:2d:30: d4:62:9b:25:b7:20:70:e3:e7:66:05:b9:6d:eb:4f: 7a:c0:da:15:d3:17:1e:46:18:4d:8e:ec:36:39:07: 55:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C2:4F:D8:5D:1F:49:33:83:77:3D:25:3E:BB:38:BE:D9:08:30:5E:45 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1192021e-3904-4115-af5e-3edb713baa14/0/C24FD85D1F493383773D253EBB38BED908305E45.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.148.0/23 IPv6: 2407:a5c0::/32 Signature Algorithm: sha256WithRSAEncryption 01:cf:45:25:2a:9b:96:ae:7b:24:bd:90:25:78:6d:4a:44:a9: 4b:1d:c2:0f:f7:03:a2:ba:78:9f:51:0f:f1:3c:18:fa:9d:c8: 1c:31:5f:d9:30:64:de:4b:3e:15:05:34:d8:95:2e:dc:f6:08: db:46:6d:1d:49:9e:14:8f:49:5b:cf:62:46:1c:f2:82:0c:9c: 7c:89:59:ff:6c:7d:30:b5:69:8a:f4:e4:d8:a9:ff:23:f8:1a: 48:da:ed:31:d7:be:37:c0:ac:c2:0a:70:bf:ef:85:36:cc:35: ec:d5:b9:1f:a3:86:65:ef:94:69:aa:b3:bb:eb:18:1e:e8:e6: 2f:08:7a:05:8d:bb:62:de:7e:59:75:d5:71:69:4b:34:e7:9a: 88:28:64:a4:ab:b0:28:64:67:37:f4:c7:fe:13:fe:b5:e2:51: f2:f4:dc:c0:2d:4f:e0:9d:78:fa:e4:16:f6:8c:4b:8c:1e:b9: 94:87:58:55:84:d0:4d:b2:8c:23:4e:99:02:23:48:2c:db:0f: 50:23:02:76:77:9d:0a:22:1a:aa:51:39:c9:c7:63:94:ca:12: 3b:26:74:f8:1d:f9:4f:f5:5f:7e:bf:7d:9d:c9:05:69:c1:00: ed:f5:5b:ce:cb:50:da:2d:ad:95:89:a2:27:25:a0:21:d6:f7: 68:e1:2b:55 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUZ+GGwz8q8i18BenNCbSymAsv3IEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIxNDE1MzA1MFoX DTI1MDIxMjE1MzU1MFowMzExMC8GA1UEAxMoQzI0RkQ4NUQxRjQ5MzM4Mzc3M0Qy NTNFQkIzOEJFRDkwODMwNUU0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEqSL1hwejZ8Ackii4XxDJtejp6oBi3CUwqzduFYy5oemm+TiATEnKuABXL 2jRzGm3HrpfngNqpXAG16NNv3ei2tj2ChKlEVC7MlTF2s1KPqbRtNZsLd8hW9B3B 5qMwQx7SeITa2kvmK2qduOs69Nk8U8UBle3hg6Z3ouRD0YcoEpgJQRVIErQEt01T yeLiWO7UHhF9eEfqAeBFe4XIUpxgb85gWSEnhWaCoAjlx/Nby0UMNSnaoCGZL87P 9/DWYQU0Zm+YzMXXVYVtz6Mv5sd7iAZYo4PQKVhgGdD/3S0w1GKbJbcgcOPnZgW5 betPesDaFdMXHkYYTY7sNjkHVakCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMJP2F0fSTODdz0lPrs4vtkIMF5FMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xMTkyMDIxZS0zOTA0LTQxMTUtYWY1ZS0zZWRiNzEzYmFhMTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzExOTIwMjFl LTM5MDQtNDExNS1hZjVlLTNlZGI3MTNiYWExNC8wL0MyNEZEODVEMUY0OTMzODM3 NzNEMjUzRUJCMzhCRUQ5MDgzMDVFNDUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnqZQwDQQCAAIwBwMFACQHpcAwDQYJKoZIhvcNAQELBQADggEBAAHPRSUqm5au eyS9kCV4bUpEqUsdwg/3A6K6eJ9RD/E8GPqdyBwxX9kwZN5LPhUFNNiVLtz2CNtG bR1JnhSPSVvPYkYc8oIMnHyJWf9sfTC1aYr05Nip/yP4Gkja7THXvjfArMIKcL/v hTbMNezVuR+jhmXvlGmqs7vrGB7o5i8IegWNu2Lefll11XFpSzTnmogoZKSrsChk Zzf0x/4T/rXiUfL03MAtT+CdePrkFvaMS4weuZSHWFWE0E2yjCNOmQIjSCzbD1Aj AnZ3nQoiGqpROcnHY5TKEjsmdPgd+U/1X36/fZ3JBWnBAO31W87LUNotrZWJoicl oCHW92jhK1U= -----END CERTIFICATE-----Generated at Mon Nov 25 13:02:00 2024 by rpki-client on console-fra.rpki-client.org