$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CEEE0277998C75D36A98EC102AD67573C8C514E9.cer File: CEEE0277998C75D36A98EC102AD67573C8C514E9.cer (raw, json) Hash identifier: 89164cWDgYWNhcl7z77YFSmaTvdGERAvh6X1czjTgGw= Subject key identifier: CE:EE:02:77:99:8C:75:D3:6A:98:EC:10:2A:D6:75:73:C8:C5:14:E9 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4BC9CC4B3F5FFE9C94BF7578D47275B2C740E902 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/95a3b106-8ef0-45bf-b277-a27947e4591b/0/CEEE0277998C75D36A98EC102AD67573C8C514E9.mft caRepository: rsync://repo-rpki.idnic.net/repo/95a3b106-8ef0-45bf-b277-a27947e4591b/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 18 Oct 2024 17:14:52 +0000 Certificate not after: Fri 17 Oct 2025 17:19:52 +0000 Subordinate resources: IP: 202.122.8.0/21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:c9:cc:4b:3f:5f:fe:9c:94:bf:75:78:d4:72:75:b2:c7:40:e9:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 18 17:14:52 2024 GMT Not After : Oct 17 17:19:52 2025 GMT Subject: CN=CEEE0277998C75D36A98EC102AD67573C8C514E9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:02:4a:e3:00:5d:bd:d2:84:87:49:7c:f6:70: 58:ec:e8:15:b1:fe:c3:c9:64:a7:d4:16:bb:fb:45: e3:bb:db:0c:dc:73:e1:63:0b:59:be:0e:48:16:59: ad:29:d2:cc:77:77:83:b3:8f:e4:6e:19:6c:bc:17: aa:ae:5d:b7:0a:5d:f7:43:3a:21:ca:e6:aa:47:72: c0:74:9a:b7:11:c9:96:0b:cd:92:da:e1:a2:c0:84: 01:be:7c:c9:c9:18:e2:f7:e9:7a:09:0c:2a:0b:63: b0:83:b1:66:66:af:eb:1b:d7:bf:ec:13:66:b8:76: d7:1b:1e:d7:54:40:61:f5:93:03:be:60:9a:2a:d5: 1f:79:c0:85:6b:3f:66:2b:09:c0:1f:ad:4a:73:ca: ef:28:c8:62:f9:43:a7:3c:9e:92:e0:50:69:af:92: bd:f5:45:44:73:cb:b0:ce:5f:fb:77:3b:88:6c:5b: 17:2c:2c:16:b4:5a:f7:50:97:72:af:99:e0:b3:fe: bd:2c:77:c7:66:12:92:f2:91:51:de:00:b3:34:9e: 48:4e:83:5d:38:e9:31:e4:76:a8:a3:6d:83:a3:d9: fd:dc:cc:4a:39:41:d5:59:0d:ac:8a:f7:c8:7d:d6: eb:be:4e:6a:b5:6e:b4:70:7d:20:e0:06:e3:7b:0b: e9:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CE:EE:02:77:99:8C:75:D3:6A:98:EC:10:2A:D6:75:73:C8:C5:14:E9 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/95a3b106-8ef0-45bf-b277-a27947e4591b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/95a3b106-8ef0-45bf-b277-a27947e4591b/0/CEEE0277998C75D36A98EC102AD67573C8C514E9.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.122.8.0/21 Signature Algorithm: sha256WithRSAEncryption 5f:d2:7a:1c:99:28:7d:b4:09:3a:da:84:c0:b1:be:c5:fb:80: b2:b8:e5:10:a2:5c:35:97:57:19:8e:6f:a9:1d:9e:fd:b7:65: a7:43:bc:21:f8:91:3f:77:50:cc:12:94:3f:05:5a:b5:18:04: e0:9b:b8:39:4f:17:bc:64:b3:17:08:ee:df:42:35:f1:61:f5: ed:ce:2d:0d:c2:53:2a:d5:dd:8b:8a:71:83:5e:99:44:75:da: 8b:69:ee:b6:f0:18:7d:15:ed:8c:44:a7:d6:7e:61:af:11:a3: 9b:d7:f9:1f:a6:8a:36:a0:1d:e4:f9:98:cc:a1:73:15:62:08: b2:1d:86:e2:39:cd:81:5e:20:45:f7:0d:33:7b:05:eb:9a:5b: 24:5d:f8:d4:68:84:93:d6:d1:99:eb:27:90:f4:14:49:20:31: ea:44:5c:ee:76:58:38:27:8d:d5:1d:6f:6d:fc:9e:71:21:d0: f8:eb:14:0b:96:4f:32:a9:82:c0:c8:6e:5e:56:59:e0:81:dc: 50:10:ff:fe:c5:23:17:56:71:92:8c:6d:a1:c3:d3:1b:ae:8e: af:a0:4f:1f:fa:a2:e9:bd:e0:f4:6b:4f:81:e3:30:ab:f8:3f: 61:42:c1:a1:df:5d:be:3c:be:3c:7e:db:82:12:74:3e:fd:06: 9e:90:1e:b2 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUS8nMSz9f/pyUv3V41HJ1ssdA6QIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxODE3MTQ1MloX DTI1MTAxNzE3MTk1MlowMzExMC8GA1UEAxMoQ0VFRTAyNzc5OThDNzVEMzZBOThF QzEwMkFENjc1NzNDOEM1MTRFOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALgCSuMAXb3ShIdJfPZwWOzoFbH+w8lkp9QWu/tF47vbDNxz4WMLWb4OSBZZ rSnSzHd3g7OP5G4ZbLwXqq5dtwpd90M6IcrmqkdywHSatxHJlgvNktrhosCEAb58 yckY4vfpegkMKgtjsIOxZmav6xvXv+wTZrh21xse11RAYfWTA75gmirVH3nAhWs/ ZisJwB+tSnPK7yjIYvlDpzyekuBQaa+SvfVFRHPLsM5f+3c7iGxbFywsFrRa91CX cq+Z4LP+vSx3x2YSkvKRUd4AszSeSE6DXTjpMeR2qKNtg6PZ/dzMSjlB1VkNrIr3 yH3W675OarVutHB9IOAG43sL6ckCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM7uAneZjHXTapjsECrWdXPIxRTpMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85NWEzYjEwNi04ZWYwLTQ1YmYtYjI3Ny1hMjc5NDdlNDU5MWIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1YTNiMTA2 LThlZjAtNDViZi1iMjc3LWEyNzk0N2U0NTkxYi8wL0NFRUUwMjc3OTk4Qzc1RDM2 QTk4RUMxMDJBRDY3NTczQzhDNTE0RTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAPKeggwDQYJKoZIhvcNAQELBQADggEBAF/SehyZKH20CTrahMCxvsX7gLK45RCi XDWXVxmOb6kdnv23ZadDvCH4kT93UMwSlD8FWrUYBOCbuDlPF7xksxcI7t9CNfFh 9e3OLQ3CUyrV3YuKcYNemUR12otp7rbwGH0V7YxEp9Z+Ya8Ro5vX+R+mijagHeT5 mMyhcxViCLIdhuI5zYFeIEX3DTN7BeuaWyRd+NRohJPW0ZnrJ5D0FEkgMepEXO52 WDgnjdUdb238nnEh0PjrFAuWTzKpgsDIbl5WWeCB3FAQ//7FIxdWcZKMbaHD0xuu jq+gTx/6oum94PRrT4HjMKv4P2FCwaHfXb48vjx+24ISdD79Bp6QHrI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:51 2024 by rpki-client on console-ams.rpki-client.org