$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C5247B1CF64591B1DB27280B439B507E56BF0232.cer File: C5247B1CF64591B1DB27280B439B507E56BF0232.cer (raw, json) Hash identifier: LjjS2pKNM26pgoWVO0heLPdvFeSw/0XkNe+aUbL0Zmg= Subject key identifier: C5:24:7B:1C:F6:45:91:B1:DB:27:28:0B:43:9B:50:7E:56:BF:02:32 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1975445E770E1265853E3DC20BB01C68CA745804 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c1a29a75-c5b9-475b-9d96-6d1a15eae24d/0/C5247B1CF64591B1DB27280B439B507E56BF0232.mft caRepository: rsync://repo-rpki.idnic.net/repo/c1a29a75-c5b9-475b-9d96-6d1a15eae24d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 07 Nov 2024 15:49:04 +0000 Certificate not after: Thu 06 Nov 2025 15:54:04 +0000 Subordinate resources: IP: 203.81.184.0/21 IP: 2403:2600::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:75:44:5e:77:0e:12:65:85:3e:3d:c2:0b:b0:1c:68:ca:74:58:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 7 15:49:04 2024 GMT Not After : Nov 6 15:54:04 2025 GMT Subject: CN=C5247B1CF64591B1DB27280B439B507E56BF0232 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:dd:45:0e:4f:f0:06:cd:ae:45:90:3a:e1:a8: e8:0a:51:59:49:f7:57:70:96:4f:f0:41:82:72:be: b5:9a:30:46:de:ee:97:86:70:14:58:c5:f7:5c:d7: f7:7c:cd:d9:06:08:a2:bd:ce:cc:c1:8c:5c:d2:48: fc:64:11:07:b0:c7:a8:2a:a7:b0:34:41:bf:e7:e6: 71:bc:40:61:e9:1a:07:a0:7b:51:d4:43:90:0b:8d: 53:02:c5:da:df:67:6c:32:8a:4f:da:0e:6f:ae:cf: 3d:fb:b5:0f:f9:a3:a9:e1:f4:aa:1a:26:84:b7:fc: ee:11:b1:14:8b:19:f8:43:f9:53:c7:c1:9f:fa:54: 6e:0a:33:c5:bc:23:e6:22:e6:bf:c7:71:0e:5e:76: ba:db:0f:18:03:db:07:74:ae:af:4d:c6:94:8c:79: ed:4b:5d:73:eb:b7:60:c8:a3:77:e9:75:fd:20:1d: 7c:af:41:97:03:d7:e1:f9:00:ee:87:ad:31:5a:c2: 83:fe:c3:c8:89:18:d5:35:77:c3:08:fb:46:0e:6b: ab:ae:f1:48:e1:47:60:d9:90:a6:c0:ef:e3:8b:92: fa:05:e4:c6:3c:8c:7b:3b:74:6f:b4:03:32:7f:e7: 46:a8:62:29:77:66:b5:e5:d4:ca:63:1c:32:19:ae: 0e:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C5:24:7B:1C:F6:45:91:B1:DB:27:28:0B:43:9B:50:7E:56:BF:02:32 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c1a29a75-c5b9-475b-9d96-6d1a15eae24d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c1a29a75-c5b9-475b-9d96-6d1a15eae24d/0/C5247B1CF64591B1DB27280B439B507E56BF0232.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.81.184.0/21 IPv6: 2403:2600::/32 Signature Algorithm: sha256WithRSAEncryption 2b:0c:0d:af:ef:e7:ba:8b:67:65:1c:a4:c4:b0:95:55:70:f7: d6:93:10:ef:ee:2b:a7:e3:82:7c:3d:ec:d7:16:04:5e:22:9c: ee:b4:bb:23:d7:43:4d:da:59:f6:df:a1:9e:02:09:ac:5f:1d: a4:5b:47:a2:28:31:dc:89:d3:83:91:be:c5:0b:c4:ac:16:8b: 0b:ca:93:49:9d:fe:2b:6b:9e:55:7d:27:b1:35:bd:ca:24:b4: 45:ad:a3:18:e8:a4:86:9e:51:75:a1:aa:48:81:81:ed:06:4c: a6:f4:b4:a6:fd:91:e2:7c:94:09:5a:29:7d:ca:58:5e:84:77: 70:c1:12:95:09:95:86:ac:b3:22:b3:12:dd:cc:20:4d:bc:13: 51:4b:b9:b9:d6:79:6b:b8:6c:02:1a:34:47:ec:7d:5e:60:01: e9:57:f6:2c:07:e3:84:f3:5d:64:d8:df:e7:2f:be:19:e6:72: 13:b9:50:eb:66:ac:8d:19:30:93:1a:2c:12:64:a2:5e:1e:7b: 21:f9:81:02:46:7c:80:b4:07:da:e7:0a:8a:5e:1d:c5:70:f6: 12:cd:2e:71:1f:6e:fd:7d:70:f6:4d:2f:4f:5b:f5:9e:3d:e4: fa:9d:7e:bf:c8:05:b7:49:e0:a5:58:ab:8d:9f:7c:f8:e5:94: af:52:17:d4 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUGXVEXncOEmWFPj3CC7AcaMp0WAQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTEwNzE1NDkwNFoX DTI1MTEwNjE1NTQwNFowMzExMC8GA1UEAxMoQzUyNDdCMUNGNjQ1OTFCMURCMjcy ODBCNDM5QjUwN0U1NkJGMDIzMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANDdRQ5P8AbNrkWQOuGo6ApRWUn3V3CWT/BBgnK+tZowRt7ul4ZwFFjF91zX 93zN2QYIor3OzMGMXNJI/GQRB7DHqCqnsDRBv+fmcbxAYekaB6B7UdRDkAuNUwLF 2t9nbDKKT9oOb67PPfu1D/mjqeH0qhomhLf87hGxFIsZ+EP5U8fBn/pUbgozxbwj 5iLmv8dxDl52utsPGAPbB3Sur03GlIx57Utdc+u3YMijd+l1/SAdfK9BlwPX4fkA 7oetMVrCg/7DyIkY1TV3wwj7Rg5rq67xSOFHYNmQpsDv44uS+gXkxjyMezt0b7QD Mn/nRqhiKXdmteXUymMcMhmuDq0CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMUkexz2RZGx2ycoC0ObUH5WvwIyMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jMWEyOWE3NS1jNWI5LTQ3NWItOWQ5Ni02ZDFhMTVlYWUyNGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxYTI5YTc1 LWM1YjktNDc1Yi05ZDk2LTZkMWExNWVhZTI0ZC8wL0M1MjQ3QjFDRjY0NTkxQjFE QjI3MjgwQjQzOUI1MDdFNTZCRjAyMzIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAPLUbgwDQQCAAIwBwMFACQDJgAwDQYJKoZIhvcNAQELBQADggEBACsMDa/v57qL Z2UcpMSwlVVw99aTEO/uK6fjgnw97NcWBF4inO60uyPXQ03aWfbfoZ4CCaxfHaRb R6IoMdyJ04ORvsULxKwWiwvKk0md/itrnlV9J7E1vcoktEWtoxjopIaeUXWhqkiB ge0GTKb0tKb9keJ8lAlaKX3KWF6Ed3DBEpUJlYassyKzEt3MIE28E1FLubnWeWu4 bAIaNEfsfV5gAelX9iwH44TzXWTY3+cvvhnmchO5UOtmrI0ZMJMaLBJkol4eeyH5 gQJGfIC0B9rnCopeHcVw9hLNLnEfbv19cPZNL09b9Z495Pqdfr/IBbdJ4KVYq42f fPjllK9SF9Q= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:32 2024 by rpki-client on console-ams.rpki-client.org