$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D1CE4EF910CAB784EF293D26D983A92FCB3A3428.cer File: D1CE4EF910CAB784EF293D26D983A92FCB3A3428.cer (raw, json) Hash identifier: GXLqxmk2TicfXo3OG7hOUyDMMMn0tjZAv7b0PSUN+4Y= Subject key identifier: D1:CE:4E:F9:10:CA:B7:84:EF:29:3D:26:D9:83:A9:2F:CB:3A:34:28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5C6D131049ECCAB148464D34ED8431C3FDF9DA62 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0/D1CE4EF910CAB784EF293D26D983A92FCB3A3428.mft caRepository: rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 15 Jun 2024 00:30:46 +0000 Certificate not after: Sat 14 Jun 2025 00:35:46 +0000 Subordinate resources: IP: 103.82.180.0/22 IP: 2001:df7:8e00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 17:02:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:6d:13:10:49:ec:ca:b1:48:46:4d:34:ed:84:31:c3:fd:f9:da:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 15 00:30:46 2024 GMT Not After : Jun 14 00:35:46 2025 GMT Subject: CN=D1CE4EF910CAB784EF293D26D983A92FCB3A3428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:97:4d:ae:a4:4f:3c:47:13:c3:c6:7b:05:f1: 84:79:0e:de:ca:b6:7a:d1:04:06:e3:e7:40:bc:3a: dc:f3:bf:82:27:56:9b:11:98:32:ca:4e:e0:c3:d0: f3:05:1d:f8:8b:59:db:2e:77:bb:7f:1c:23:2e:62: c4:fc:6c:86:d0:8e:bf:2e:e0:2d:ec:42:d4:69:d4: a9:db:8a:0a:41:11:37:d1:15:6b:c6:c5:1e:7d:a2: d2:7b:ff:bd:a3:96:53:75:22:da:b8:db:79:4b:93: b4:d8:6c:47:15:ee:73:c3:66:f1:5d:1e:93:ae:c6: 61:fc:84:6b:dc:7d:c3:61:7a:44:81:1a:93:80:19: fe:ab:82:0d:1a:5d:91:18:cc:0d:4e:e8:b4:1b:0f: d3:d0:7c:8c:17:d3:9c:00:1f:f2:a9:0b:c2:62:81: 6e:7f:33:8e:c5:25:4e:b6:f2:55:ae:26:50:c0:5c: c6:ac:82:f7:d7:ce:74:c4:b0:70:ee:7a:f8:bd:10: 85:1a:2d:cf:84:ff:cf:f1:68:0e:5e:4f:e6:b1:87: e0:98:bc:c9:ee:ad:25:39:12:c3:25:7c:2c:f9:5a: 06:c3:90:16:15:46:72:5b:ad:5b:c7:eb:f4:c1:bf: d2:c5:21:e2:6e:4f:27:b2:60:f0:a7:f8:00:44:6f: cc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D1:CE:4E:F9:10:CA:B7:84:EF:29:3D:26:D9:83:A9:2F:CB:3A:34:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0/D1CE4EF910CAB784EF293D26D983A92FCB3A3428.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.180.0/22 IPv6: 2001:df7:8e00::/48 Signature Algorithm: sha256WithRSAEncryption 15:16:a7:08:a4:64:64:b3:d4:2a:f2:5f:16:3a:1e:ea:73:22: 1e:2e:4a:5d:5b:e8:31:3f:18:c8:bb:73:c4:d1:2f:1d:88:a6: 24:43:2b:b6:09:b0:85:88:14:16:e8:a6:fc:27:e4:95:ea:c0: 85:a6:e5:91:31:2a:c3:bc:e8:a3:a8:87:21:a3:dc:92:c4:b4: 1c:5a:1e:23:b8:f1:5d:0e:ad:7c:4a:14:79:fa:49:27:42:d6: af:81:87:68:62:4c:34:51:2e:23:3a:8f:18:64:8b:89:c0:1b: dc:93:84:ca:81:57:43:d0:9d:45:d6:43:f3:d3:d8:2f:c4:db: a1:72:42:c2:d9:9f:d3:48:74:73:3b:9f:a3:65:1c:84:32:d1: 38:16:cc:cb:87:ed:24:25:fd:20:60:f3:78:f0:9f:bc:52:12: 02:e1:0d:a1:17:43:d6:c9:4a:c6:bf:c3:54:fc:8a:18:bb:6b: fa:ce:85:a2:27:ee:26:ae:e1:0d:c9:05:33:e1:e2:4f:88:ae: 6c:3a:40:52:ca:ed:44:6c:2e:b3:6f:55:af:1e:dc:3b:8b:ab: b8:d6:ae:47:44:22:71:ed:f2:30:76:cc:87:e7:d6:51:c8:85: dc:5c:06:c1:dc:54:60:56:af:a0:a5:54:d3:7f:7a:70:8f:57: c4:66:6f:f5 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUXG0TEEnsyrFIRk007YQxw/352mIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxNTAwMzA0NloX DTI1MDYxNDAwMzU0NlowMzExMC8GA1UEAxMoRDFDRTRFRjkxMENBQjc4NEVGMjkz RDI2RDk4M0E5MkZDQjNBMzQyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCXTa6kTzxHE8PGewXxhHkO3sq2etEEBuPnQLw63PO/gidWmxGYMspO4MPQ 8wUd+ItZ2y53u38cIy5ixPxshtCOvy7gLexC1GnUqduKCkERN9EVa8bFHn2i0nv/ vaOWU3Ui2rjbeUuTtNhsRxXuc8Nm8V0ek67GYfyEa9x9w2F6RIEak4AZ/quCDRpd kRjMDU7otBsP09B8jBfTnAAf8qkLwmKBbn8zjsUlTrbyVa4mUMBcxqyC99fOdMSw cO56+L0QhRotz4T/z/FoDl5P5rGH4Ji8ye6tJTkSwyV8LPlaBsOQFhVGclutW8fr 9MG/0sUh4m5PJ7Jg8Kf4AERvzCkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNHOTvkQyreE7yk9JtmDqS/LOjQoMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84MDc1OGYxNS01ZGU4LTQ4N2QtOTk0NS1jM2VhMjA3ZTQ0YWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwNzU4ZjE1 LTVkZTgtNDg3ZC05OTQ1LWMzZWEyMDdlNDRhZC8wL0QxQ0U0RUY5MTBDQUI3ODRF RjI5M0QyNkQ5ODNBOTJGQ0IzQTM0MjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnUrQwDwQCAAIwCQMHACABDfeOADANBgkqhkiG9w0BAQsFAAOCAQEAFRanCKRk ZLPUKvJfFjoe6nMiHi5KXVvoMT8YyLtzxNEvHYimJEMrtgmwhYgUFuim/CfklerA hablkTEqw7zoo6iHIaPcksS0HFoeI7jxXQ6tfEoUefpJJ0LWr4GHaGJMNFEuIzqP GGSLicAb3JOEyoFXQ9CdRdZD89PYL8TboXJCwtmf00h0czufo2UchDLROBbMy4ft JCX9IGDzePCfvFISAuENoRdD1slKxr/DVPyKGLtr+s6FoifuJq7hDckFM+HiT4iu bDpAUsrtRGwus29Vrx7cO4uruNauR0Qice3yMHbMh+fWUciF3FwGwdxUYFavoKVU 0396cI9XxGZv9Q== -----END CERTIFICATE-----Generated at Fri Nov 22 09:39:11 2024 by rpki-client on console-ams.rpki-client.org