$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer File: C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer (raw, json) Hash identifier: wzQ+bmGv4IBmk64Po4Dva5GshM1fYA9HL7aFCfENYcg= Subject key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 778E39D70E41BB99114E6240238278FEB1B5C8AF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft caRepository: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 07:05:07 +0000 Certificate not after: Mon 30 Jun 2025 07:10:07 +0000 Subordinate resources: IP: 103.215.24.0/22 IP: 112.109.16.0/21 IP: 119.82.240.0/21 IP: 123.255.200.0/21 IP: 175.184.224.0/20 IP: 203.89.24.0/21 IP: 2403:ba00::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:8e:39:d7:0e:41:bb:99:11:4e:62:40:23:82:78:fe:b1:b5:c8:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 07:05:07 2024 GMT Not After : Jun 30 07:10:07 2025 GMT Subject: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:09:c7:15:46:3e:be:ee:0b:25:10:89:7e:09: 2a:10:dc:a7:cd:c8:46:18:4f:1a:c0:cb:a4:4a:e5: 4e:2c:e0:44:a0:08:62:b5:88:2c:64:30:7b:e2:87: 9c:51:f1:84:43:c7:30:b1:cf:45:62:b0:e3:28:d1: e4:e2:8e:17:b2:d2:85:ac:97:cf:4b:f0:e4:28:01: 7e:ba:75:eb:69:2d:41:76:42:5b:24:2b:96:4f:ce: 5b:43:e3:1c:5d:6d:17:ad:33:e3:0b:09:24:9f:56: b6:e5:e9:78:e1:2c:c4:67:08:5e:f3:78:cb:96:9e: 7f:d3:5c:17:58:f8:e7:93:9f:a8:fa:8f:83:32:6f: 7f:73:18:19:a1:76:0f:cb:70:ec:a1:8a:5f:05:21: a6:82:c7:76:c4:2e:c1:78:f0:d8:71:c4:ac:87:0b: ee:ee:28:5a:a6:f4:6d:1e:e9:0c:97:e3:0f:c6:4b: c0:df:ff:50:b0:f1:f9:e2:98:0c:8d:3e:76:b0:8b: f2:04:30:4d:95:0e:5f:c5:15:95:91:95:c6:ff:d8: 8f:dd:25:76:2d:f3:c5:92:60:77:0d:39:3d:f4:e2: 0a:f6:b1:d8:6e:a7:8d:ad:54:37:e4:f6:78:40:3a: 6d:69:81:88:ed:9b:3a:83:97:cf:06:c9:a6:ff:b0: a5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.215.24.0/22 112.109.16.0/21 119.82.240.0/21 123.255.200.0/21 175.184.224.0/20 203.89.24.0/21 IPv6: 2403:ba00::/32 Signature Algorithm: sha256WithRSAEncryption 14:28:aa:d8:ff:c0:21:51:9e:5f:d1:1a:71:ac:8f:ca:c9:46: 4b:2c:43:89:c8:40:61:a7:03:1b:6d:72:9a:25:77:bc:a5:77: f8:6e:5b:0e:26:3c:dd:e6:f6:8b:79:cb:05:57:ef:8b:85:7b: a3:7b:d1:39:b4:31:4f:66:99:af:93:b2:f3:55:9f:95:89:cd: df:db:4a:7e:86:17:68:8e:0b:16:b9:58:5b:18:02:17:d3:e7: 7c:ed:29:4f:52:eb:f3:6e:e4:1e:e2:39:b3:14:65:94:b4:45: d7:68:c7:16:2f:9b:f8:a0:5f:f2:2b:b3:9d:24:b2:1c:26:90: 35:08:a1:80:05:4f:14:9c:be:a1:5d:fb:46:95:0d:27:80:ed: e8:85:b5:0b:b2:e2:ee:78:52:41:f8:aa:bd:f2:78:21:fc:22: d7:37:0e:d9:0f:e8:84:20:b7:0d:1c:1e:7f:50:a1:89:cf:28: 4d:bf:f1:fe:91:c3:87:27:f0:fe:ee:4a:63:c8:7b:7a:b0:0b: 7e:3a:2a:74:7b:77:6d:25:0c:7f:2d:a3:0d:3c:a4:9f:90:b4: ef:ed:a2:71:ed:69:91:92:82:f7:41:1d:3a:f7:c0:0d:5d:1a: d2:f5:c2:09:03:e2:f8:a2:78:e7:1c:c3:d3:d2:65:cb:7f:f2: 1c:3e:27:47 -----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgIUd4451w5Bu5kRTmJAI4J4/rG1yK8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTA3MDUwN1oX DTI1MDYzMDA3MTAwN1owMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0 OTY1QjUyMDgwMDgzQjI3MUUzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANwJxxVGPr7uCyUQiX4JKhDcp83IRhhPGsDLpErlTizgRKAIYrWILGQwe+KH nFHxhEPHMLHPRWKw4yjR5OKOF7LShayXz0vw5CgBfrp162ktQXZCWyQrlk/OW0Pj HF1tF60z4wsJJJ9WtuXpeOEsxGcIXvN4y5aef9NcF1j455OfqPqPgzJvf3MYGaF2 D8tw7KGKXwUhpoLHdsQuwXjw2HHErIcL7u4oWqb0bR7pDJfjD8ZLwN//ULDx+eKY DI0+drCL8gQwTZUOX8UVlZGVxv/Yj90ldi3zxZJgdw05PfTiCvax2G6nja1UN+T2 eEA6bWmBiO2bOoOXzwbJpv+wpV0CAwEAAaOCAuUwggLhMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMP3Re3n9MDY5WdJZbUggAg7Jx4+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wMDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIx LTFiN2ItNDY3MS1hYjk0LTVjNWU3NDg4MjU0Ny8wL0MzRjc0NUVERTdGNEMwRDhF NTY3NDk2NUI1MjA4MDA4M0IyNzFFM0UubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwTAYIKwYBBQUHAQcBAf8EPTA7MCoEAgABMCQD BAJn1xgDBANwbRADBAN3UvADBAN7/8gDBASvuOADBAPLWRgwDQQCAAIwBwMFACQD ugAwDQYJKoZIhvcNAQELBQADggEBABQoqtj/wCFRnl/RGnGsj8rJRkssQ4nIQGGn Axttcpold7yld/huWw4mPN3m9ot5ywVX74uFe6N70Tm0MU9mma+TsvNVn5WJzd/b Sn6GF2iOCxa5WFsYAhfT53ztKU9S6/Nu5B7iObMUZZS0RddoxxYvm/igX/Irs50k shwmkDUIoYAFTxScvqFd+0aVDSeA7eiFtQuy4u54UkH4qr3yeCH8Itc3DtkP6IQg tw0cHn9QoYnPKE2/8f6Rw4cn8P7uSmPIe3qwC346KnR7d20lDH8tow08pJ+QtO/t onHtaZGSgvdBHTr3wA1dGtL1wgkD4viieOccw9PSZct/8hw+J0c= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:51 2024 by rpki-client on console-ams.rpki-client.org