$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C2E929DFB05F81B91880BC808154365AECAC27D2.cer File: C2E929DFB05F81B91880BC808154365AECAC27D2.cer (raw, json) Hash identifier: +YpiEEjQIAc3HVKcx1lmgC3eWXPjAsQrgDYgFL1E7zg= Subject key identifier: C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3CA9C6F45A3B35BE0FCC4A394C6E689744995E49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.mft caRepository: rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 22 Oct 2024 14:18:31 +0000 Certificate not after: Tue 21 Oct 2025 14:23:31 +0000 Subordinate resources: IP: 202.47.186.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:a9:c6:f4:5a:3b:35:be:0f:cc:4a:39:4c:6e:68:97:44:99:5e:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 22 14:18:31 2024 GMT Not After : Oct 21 14:23:31 2025 GMT Subject: CN=C2E929DFB05F81B91880BC808154365AECAC27D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:4f:30:1d:0a:2a:f6:f0:c2:98:ee:38:f2:ee: 0d:a6:6f:8f:a1:50:12:45:59:28:c6:77:fb:61:62: 05:a3:f6:ee:d0:c7:15:31:d5:fd:ec:a2:88:74:99: ae:84:d3:6b:6a:43:c2:2a:86:39:bc:95:db:ff:74: 34:30:2f:f6:a2:10:7c:e2:e3:39:3c:8f:6d:a0:9b: 36:02:76:fd:f5:99:43:ca:5d:ed:5a:a5:0e:83:a3: 8d:d8:a5:0f:d8:63:36:31:1f:0a:7c:52:b8:d9:ad: f2:1a:de:bb:81:d2:bd:33:03:bd:e8:4f:73:39:71: 8c:f1:5c:9f:8b:30:28:ef:aa:40:37:d3:d7:92:f2: 6b:19:84:bd:b7:9f:b1:b9:69:e1:e8:a2:31:fc:37: 7e:84:8e:fd:71:1a:b1:31:f9:f0:15:29:57:ed:74: de:95:fc:e1:a8:aa:7f:ba:3e:4f:a2:34:85:85:4f: 1d:97:df:49:db:67:3a:02:72:48:16:36:29:25:a9: 85:27:2b:06:6e:26:24:26:9f:1d:7a:29:12:23:8b: 76:49:29:a5:c9:c2:e3:2d:1e:aa:9b:a5:35:2f:1e: ad:b4:0f:34:b3:8b:c0:b3:c1:f9:c3:0f:9b:80:3a: 39:37:71:76:df:bf:d1:83:ff:fd:b8:d8:b0:6e:59: b1:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C2:E9:29:DF:B0:5F:81:B9:18:80:BC:80:81:54:36:5A:EC:AC:27:D2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4d6ffad2-20bc-4246-8293-44666ce1cfe0/0/C2E929DFB05F81B91880BC808154365AECAC27D2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.186.0/24 Signature Algorithm: sha256WithRSAEncryption 02:a2:9d:7f:c0:fd:6f:d0:7b:0b:ab:a2:e9:9b:09:da:fc:c0: 25:7f:a0:c0:66:9e:ed:b3:28:f8:13:78:8e:81:1c:6c:08:0a: a3:c3:8a:0d:ed:79:e2:57:85:0b:cb:64:09:56:bb:7c:c5:7b: f7:bf:a4:1f:05:86:fd:b3:46:f4:35:7b:2e:71:43:cf:9a:37: 72:9e:eb:db:1f:4b:2c:4f:ac:82:96:35:81:b3:c2:df:b2:7a: e1:55:1d:5c:9c:72:a4:75:74:12:ef:2c:71:53:d1:c7:0a:d7: 20:ee:9d:31:a7:dd:3d:2a:f6:be:40:9d:0c:8a:96:13:d1:90: ce:a7:71:ae:b4:34:df:93:a6:a1:99:5b:14:ce:73:f0:63:f6: 1c:c9:25:6e:f1:60:28:6d:a1:f7:72:53:c0:3d:db:bd:c5:ff: b3:12:d6:e1:99:64:ca:1d:84:2c:8c:25:51:cc:6c:b4:6d:70: 79:f3:36:b0:31:29:3f:a8:7a:6b:de:2d:a5:62:f4:84:c5:73: c9:0c:71:e0:2a:80:3d:b4:7f:44:0b:99:8e:6e:4a:9d:48:79: 41:83:72:fc:79:01:f4:56:fe:bb:8a:7a:99:d8:9f:e1:92:7e: f1:da:61:e6:45:2d:d8:7b:78:90:d6:6d:94:72:7d:10:26:fb: 16:7c:1c:ff -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPKnG9Fo7Nb4PzEo5TG5ol0SZXkkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyMjE0MTgzMVoX DTI1MTAyMTE0MjMzMVowMzExMC8GA1UEAxMoQzJFOTI5REZCMDVGODFCOTE4ODBC QzgwODE1NDM2NUFFQ0FDMjdEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALlPMB0KKvbwwpjuOPLuDaZvj6FQEkVZKMZ3+2FiBaP27tDHFTHV/eyiiHSZ roTTa2pDwiqGObyV2/90NDAv9qIQfOLjOTyPbaCbNgJ2/fWZQ8pd7VqlDoOjjdil D9hjNjEfCnxSuNmt8hreu4HSvTMDvehPczlxjPFcn4swKO+qQDfT15LyaxmEvbef sblp4eiiMfw3foSO/XEasTH58BUpV+103pX84aiqf7o+T6I0hYVPHZffSdtnOgJy SBY2KSWphScrBm4mJCafHXopEiOLdkkppcnC4y0eqpulNS8erbQPNLOLwLPB+cMP m4A6OTdxdt+/0YP//bjYsG5ZsWsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMLpKd+wX4G5GIC8gIFUNlrsrCfSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZDZmZmFkMi0yMGJjLTQyNDYtODI5My00NDY2NmNlMWNmZTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNmZmYWQy LTIwYmMtNDI0Ni04MjkzLTQ0NjY2Y2UxY2ZlMC8wL0MyRTkyOURGQjA1RjgxQjkx ODgwQkM4MDgxNTQzNjVBRUNBQzI3RDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADKL7owDQYJKoZIhvcNAQELBQADggEBAAKinX/A/W/QewuroumbCdr8wCV/oMBm nu2zKPgTeI6BHGwICqPDig3teeJXhQvLZAlWu3zFe/e/pB8Fhv2zRvQ1ey5xQ8+a N3Ke69sfSyxPrIKWNYGzwt+yeuFVHVyccqR1dBLvLHFT0ccK1yDunTGn3T0q9r5A nQyKlhPRkM6nca60NN+TpqGZWxTOc/Bj9hzJJW7xYChtofdyU8A9273F/7MS1uGZ ZModhCyMJVHMbLRtcHnzNrAxKT+oemveLaVi9ITFc8kMceAqgD20f0QLmY5uSp1I eUGDcvx5AfRW/ruKepnYn+GSfvHaYeZFLdh7eJDWbZRyfRAm+xZ8HP8= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:29 2024 by rpki-client on console-fra.rpki-client.org