$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer File: D0C90407CCD53717DFEA21D51A8921F20564AB25.cer (raw, json) Hash identifier: 5QtRicI7zlUSXqQAn/cLYWIu3dbDa8mMpuNNvdfhANo= Subject key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7BC9A5570189EE552F5EE30C9E8561EE94B3B066 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft caRepository: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 16 Jun 2024 02:52:04 +0000 Certificate not after: Sun 15 Jun 2025 02:57:04 +0000 Subordinate resources: IP: 103.10.136.0/22 IP: 114.199.80.0/20 IP: 202.47.64.0/20 IP: 202.52.8.0/22 IP: 202.58.216.0/21 IP: 2402:fc00::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:c9:a5:57:01:89:ee:55:2f:5e:e3:0c:9e:85:61:ee:94:b3:b0:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 16 02:52:04 2024 GMT Not After : Jun 15 02:57:04 2025 GMT Subject: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:33:75:25:53:b0:00:78:46:6a:0d:cb:7f:b6: f7:4d:72:71:fa:e5:a9:2f:e4:d2:8b:95:e2:02:ed: fc:57:c5:e1:bb:be:8a:ed:3e:46:b9:14:9e:81:d4: 33:b2:ff:ea:a8:ad:f2:d6:bf:40:8c:74:97:33:7c: b1:d3:9e:bb:c3:92:62:7c:5e:20:31:d3:3f:12:b3: 8c:b6:9e:e0:b5:cb:f4:e8:2c:d5:d4:30:70:f2:f6: eb:d9:64:16:47:fb:87:12:af:db:d0:a0:a7:31:cc: 10:b5:c2:ac:96:ff:d4:a7:ee:3f:74:24:3d:cb:0e: 62:00:dd:6a:99:0e:05:99:5a:d6:15:2d:0a:65:f7: d2:b1:bc:03:85:74:c3:14:0f:a5:78:aa:04:bf:64: bf:63:63:77:0b:32:47:bf:0d:1f:1e:4a:da:b3:cc: 3b:37:6e:0a:38:f0:7b:03:4c:bf:c7:88:1b:bc:fc: fc:22:15:f0:6d:39:6f:76:2e:27:e6:69:a9:bc:7f: 73:45:63:f3:eb:71:8b:f3:70:d2:fa:4e:e0:f0:00: a7:5d:40:ab:22:a0:79:75:df:25:c8:9b:0a:5d:b8: 2f:19:dc:77:e2:46:a8:94:1d:f8:98:a5:a0:35:f9: 31:00:19:29:56:4a:56:be:0a:1e:5e:a5:51:5e:fe: 78:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.136.0/22 114.199.80.0/20 202.47.64.0/20 202.52.8.0/22 202.58.216.0/21 IPv6: 2402:fc00::/32 Signature Algorithm: sha256WithRSAEncryption 22:b8:34:e7:bb:8a:69:bb:e0:c7:08:a1:6d:ed:fd:62:e5:71: fc:57:ef:32:b3:80:07:19:6c:08:8d:0c:7e:d5:cd:50:92:fe: 43:da:97:16:1b:87:27:06:c1:c2:1e:09:6c:d6:73:ff:af:3b: 4b:fd:8b:81:fb:c7:2b:ef:3e:4b:d9:ab:aa:09:58:b8:79:63: 20:81:04:41:3f:88:87:d3:d6:4f:66:89:be:90:79:df:8b:b7: 38:61:38:69:80:90:bb:04:9f:f0:8a:4a:44:45:d5:dc:f0:7d: 69:da:68:47:d8:fd:9a:75:3a:ef:ca:e2:e2:a9:90:7b:59:f2: 5a:94:35:22:fa:8b:91:fc:35:74:92:bb:0b:6b:2d:dd:da:aa: 13:12:f3:75:2f:91:b4:0d:fa:c5:b7:a5:c5:9b:8d:72:d4:a1: f0:bf:d0:20:dd:cb:ba:02:9e:cb:85:d7:84:ed:ce:36:06:6c: 1f:38:26:31:2d:08:42:df:ae:f8:5d:2e:61:33:a6:d4:42:58: ef:30:1a:55:6a:be:fd:d7:90:db:1c:8e:7a:19:81:3c:3c:94: 46:de:26:a7:e4:f4:28:f8:f3:17:f4:b0:f4:57:cc:50:ee:5f: dd:83:f2:ca:d8:53:de:15:cc:c0:22:21:77:01:a5:82:0b:df: ab:40:c6:4c -----BEGIN CERTIFICATE----- MIIF7DCCBNSgAwIBAgIUe8mlVwGJ7lUvXuMMnoVh7pSzsGYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxNjAyNTIwNFoX DTI1MDYxNTAyNTcwNFowMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEy MUQ1MUE4OTIxRjIwNTY0QUIyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL4zdSVTsAB4RmoNy3+2901ycfrlqS/k0ouV4gLt/FfF4bu+iu0+RrkUnoHU M7L/6qit8ta/QIx0lzN8sdOeu8OSYnxeIDHTPxKzjLae4LXL9Ogs1dQwcPL269lk Fkf7hxKv29CgpzHMELXCrJb/1KfuP3QkPcsOYgDdapkOBZla1hUtCmX30rG8A4V0 wxQPpXiqBL9kv2NjdwsyR78NHx5K2rPMOzduCjjwewNMv8eIG7z8/CIV8G05b3Yu J+Zpqbx/c0Vj8+txi/Nw0vpO4PAAp11AqyKgeXXfJcibCl24Lxncd+JGqJQd+Jil oDX5MQAZKVZKVr4KHl6lUV7+eF0CAwEAAaOCAt8wggLbMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNDJBAfM1TcX3+oh1RqJIfIFZKslMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2 LWZlMmEtNDkxYi1hYWM4LTIyMGVhZDBiNTRlMi8wL0QwQzkwNDA3Q0NENTM3MTdE RkVBMjFENTFBODkyMUYyMDU2NEFCMjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MCQEAgABMB4D BAJnCogDBARyx1ADBATKL0ADBALKNAgDBAPKOtgwDQQCAAIwBwMFACQC/AAwDQYJ KoZIhvcNAQELBQADggEBACK4NOe7imm74McIoW3t/WLlcfxX7zKzgAcZbAiNDH7V zVCS/kPalxYbhycGwcIeCWzWc/+vO0v9i4H7xyvvPkvZq6oJWLh5YyCBBEE/iIfT 1k9mib6Qed+LtzhhOGmAkLsEn/CKSkRF1dzwfWnaaEfY/Zp1Ou/K4uKpkHtZ8lqU NSL6i5H8NXSSuwtrLd3aqhMS83UvkbQN+sW3pcWbjXLUofC/0CDdy7oCnsuF14Tt zjYGbB84JjEtCELfrvhdLmEzptRCWO8wGlVqvv3XkNscjnoZgTw8lEbeJqfk9Cj4 8xf0sPRXzFDuX92D8srYU94VzMAiIXcBpYIL36tAxkw= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:33 2024 by rpki-client on console-ams.rpki-client.org