$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer File: CC0E0C41CCA9566894D1D35FDE2D6425849503B5.cer (raw, json) Hash identifier: +8LxWOymqOB6XGAU+30JuHqGCNM1cFUlJVlxgD49UeA= Subject key identifier: CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4B624EFDCA302F0141D6DB2477ECD6605B041623 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.mft caRepository: rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 18 Jun 2024 06:10:12 +0000 Certificate not after: Tue 17 Jun 2025 06:15:12 +0000 Subordinate resources: IP: 103.4.174.0/23 IP: 103.23.234.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:62:4e:fd:ca:30:2f:01:41:d6:db:24:77:ec:d6:60:5b:04:16:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 18 06:10:12 2024 GMT Not After : Jun 17 06:15:12 2025 GMT Subject: CN=CC0E0C41CCA9566894D1D35FDE2D6425849503B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cd:a1:e5:50:c1:db:62:5a:4f:b0:70:08:79: d6:f4:1a:1f:ef:c7:9d:04:e2:e6:5c:ee:22:85:5a: bb:17:7a:a0:dd:1c:e7:d6:22:71:40:da:4e:cf:05: 5c:7c:2d:64:7f:92:9f:54:b1:97:6b:79:ce:e6:8d: 11:e1:f1:81:fe:0f:60:c1:55:c1:9b:3a:d9:cb:49: 51:38:05:f7:a7:ee:9d:dd:ff:e4:3d:16:50:a4:75: 98:c5:13:dd:1c:13:aa:41:a0:42:ea:b8:14:6c:9e: 41:f2:e0:56:aa:55:4e:e4:59:8b:53:52:b1:a3:1f: 28:a0:e3:4e:ed:f6:ab:30:d6:5c:bd:5f:1c:29:e3: cb:54:ab:07:ac:d7:8d:09:8b:f3:da:26:64:e5:cc: 2a:3e:00:d7:37:24:ee:61:3c:8d:7b:73:bb:81:49: 9f:a6:d3:0a:bb:f0:77:3b:0d:80:7d:26:29:01:fd: 4c:6a:5d:a3:b6:76:52:88:5f:6b:9b:1d:ab:1f:f7: 13:fa:b5:d5:a0:d6:08:dc:9c:d4:b3:fe:e2:ac:8d: b2:b6:d7:32:e2:4f:6e:74:a2:5c:be:6a:ab:2f:2e: 59:17:1e:88:16:c0:1c:d4:6b:6d:7c:37:56:de:ba: 21:78:b9:e4:0d:d3:b2:7e:e4:b1:5a:61:e6:d7:c7: 5d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CC:0E:0C:41:CC:A9:56:68:94:D1:D3:5F:DE:2D:64:25:84:95:03:B5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a05f768b-4218-4c5d-893a-0ff696526639/0/CC0E0C41CCA9566894D1D35FDE2D6425849503B5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.4.174.0/23 103.23.234.0/23 Signature Algorithm: sha256WithRSAEncryption 92:d7:b8:ef:a0:4d:eb:58:d1:c4:14:c0:66:c4:f7:58:0d:e0: f6:67:5d:c2:28:00:61:7f:28:34:b9:78:80:5f:a7:7a:9d:46: d0:32:d6:dc:de:08:91:6f:ed:06:6c:80:ff:cd:f9:12:ec:18: a1:b6:cd:c1:6e:63:19:fb:53:2f:5b:a0:7a:d7:0c:cc:40:21: a0:d6:a8:10:3b:02:cf:84:a5:f9:b8:24:03:11:e7:6d:6d:6c: 71:61:5a:16:6a:eb:06:d7:76:cc:9a:cc:ee:28:c4:ca:55:85: 76:61:b4:5b:b9:fa:77:d4:4d:68:ef:05:d3:4d:18:93:68:9d: 18:1f:b0:4a:65:36:b5:48:d4:7e:8f:fb:a7:40:bd:76:72:99: 8a:b3:d6:73:5f:cb:6c:55:45:48:c1:e8:de:77:03:11:e1:5a: 90:cd:14:25:d6:3f:96:65:e1:9b:42:7a:a5:ec:52:8a:89:07: 20:c6:e8:bd:0d:6b:2c:69:ee:24:0a:28:4c:91:b7:37:de:5b: 41:c4:e9:f2:74:c8:6a:48:7e:94:33:0b:25:b0:b3:67:5c:f3: 63:17:92:e1:b5:3f:6d:34:cd:1c:eb:0b:b7:57:df:23:45:1f: 54:39:e8:38:6d:3f:0d:18:18:7d:c3:7e:99:ef:d3:c6:b6:ad: f3:20:20:97 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUS2JO/cowLwFB1tskd+zWYFsEFiMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxODA2MTAxMloX DTI1MDYxNzA2MTUxMlowMzExMC8GA1UEAxMoQ0MwRTBDNDFDQ0E5NTY2ODk0RDFE MzVGREUyRDY0MjU4NDk1MDNCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKzNoeVQwdtiWk+wcAh51vQaH+/HnQTi5lzuIoVauxd6oN0c59YicUDaTs8F XHwtZH+Sn1Sxl2t5zuaNEeHxgf4PYMFVwZs62ctJUTgF96fund3/5D0WUKR1mMUT 3RwTqkGgQuq4FGyeQfLgVqpVTuRZi1NSsaMfKKDjTu32qzDWXL1fHCnjy1SrB6zX jQmL89omZOXMKj4A1zck7mE8jXtzu4FJn6bTCrvwdzsNgH0mKQH9TGpdo7Z2Uohf a5sdqx/3E/q11aDWCNyc1LP+4qyNsrbXMuJPbnSiXL5qqy8uWRceiBbAHNRrbXw3 Vt66IXi55A3Tsn7ksVph5tfHXXcCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMwODEHMqVZolNHTX94tZCWElQO1MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMDVmNzY4Yi00MjE4LTRjNWQtODkzYS0wZmY2OTY1MjY2MzkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EwNWY3Njhi LTQyMTgtNGM1ZC04OTNhLTBmZjY5NjUyNjYzOS8wL0NDMEUwQzQxQ0NBOTU2Njg5 NEQxRDM1RkRFMkQ2NDI1ODQ5NTAzQjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAFnBK4DBAFnF+owDQYJKoZIhvcNAQELBQADggEBAJLXuO+gTetY0cQUwGbE91gN 4PZnXcIoAGF/KDS5eIBfp3qdRtAy1tzeCJFv7QZsgP/N+RLsGKG2zcFuYxn7Uy9b oHrXDMxAIaDWqBA7As+Epfm4JAMR521tbHFhWhZq6wbXdsyazO4oxMpVhXZhtFu5 +nfUTWjvBdNNGJNonRgfsEplNrVI1H6P+6dAvXZymYqz1nNfy2xVRUjB6N53AxHh WpDNFCXWP5Zl4ZtCeqXsUoqJByDG6L0Nayxp7iQKKEyRtzfeW0HE6fJ0yGpIfpQz CyWws2dc82MXkuG1P200zRzrC7dX3yNFH1Q56DhtPw0YGH3Dfpnv08a2rfMgIJc= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:33 2024 by rpki-client on console-ams.rpki-client.org