$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer File: D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.cer (raw, json) Hash identifier: 0+Ze+7f1HZDEsOsczdjjI4QlsD3DwK6N2gDz3zmX80A= Subject key identifier: D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3BB13115A079EFE3391101475CD9028ADE1A5452 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft caRepository: rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 14 Mar 2024 07:18:23 +0000 Certificate not after: Thu 13 Mar 2025 07:23:23 +0000 Subordinate resources: IP: 103.183.6.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:b1:31:15:a0:79:ef:e3:39:11:01:47:5c:d9:02:8a:de:1a:54:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 14 07:18:23 2024 GMT Not After : Mar 13 07:23:23 2025 GMT Subject: CN=D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:e9:7c:9e:05:cb:40:5c:4a:70:34:c4:1b:67: 76:cf:02:ba:c4:a0:ef:52:14:3a:fa:dc:97:69:24: 3a:12:43:e6:95:38:e7:8e:38:be:76:5f:e6:87:96: 0a:3e:6d:ef:b8:b4:f5:00:43:b1:64:49:61:2f:c6: 86:2c:e7:b5:85:65:d2:2a:66:c7:62:cd:ad:f6:86: 47:0b:84:c9:c4:4e:c8:4f:4a:0c:08:47:2a:d9:87: 8a:f0:b0:cd:1e:87:ea:13:ca:2b:77:3c:94:3a:6a: a9:08:fc:6f:5d:f8:da:0f:4a:b6:ad:3d:4f:fd:dd: 64:b8:df:e2:fa:84:f4:a9:08:00:88:7b:51:6a:49: f0:74:d2:d1:75:3b:97:7b:e0:91:b2:38:2e:b1:39: 1b:4c:4f:55:39:c1:f9:35:29:d9:16:91:c3:f3:d5: 63:6e:ca:b5:13:bb:8e:71:d0:fb:81:ca:fa:88:8b: 76:28:25:c1:60:4c:1a:44:7f:59:13:60:8b:75:50: 0a:3e:96:ae:fc:8b:81:fd:fa:7e:d5:79:e2:e4:8c: 3a:3e:3f:54:a9:60:87:af:69:a4:d8:1d:76:06:9b: bd:40:e5:56:d7:0e:53:f1:69:a4:07:e7:b1:5c:50: 36:52:95:a9:f8:cf:71:f0:0d:2f:3b:8f:25:f0:ed: a7:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D2:1A:35:97:D7:B5:EB:D9:A5:47:68:0F:1C:2E:D7:A4:64:DD:9F:26 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3cc5605d-f17a-4010-9253-210c64f148bd/0/D21A3597D7B5EBD9A547680F1C2ED7A464DD9F26.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.6.0/23 Signature Algorithm: sha256WithRSAEncryption 33:05:96:2a:5a:50:b3:1e:a2:42:5e:4d:de:bf:44:21:5a:5f: 69:69:43:8d:24:e7:e7:17:1e:ee:f1:09:54:88:5a:38:6f:d7: 48:61:1e:d4:76:03:d7:64:8b:06:0d:10:30:9c:14:96:c6:68: fe:18:da:64:e7:20:f3:92:9a:80:ed:1b:7d:3d:72:f7:4d:de: ab:4f:4e:90:f1:cb:b0:93:4f:64:05:a9:b7:21:0d:96:03:e5: 95:21:9f:99:eb:e3:5f:09:48:f3:88:c9:a8:b6:dc:6b:4f:c6: 6c:16:97:0c:e1:3f:bc:2b:49:d3:ff:2e:8e:2f:f1:61:06:4c: 1f:a8:ca:05:df:66:bf:cd:2f:f0:50:3a:59:02:79:cd:58:d8: 5b:36:60:5a:91:8c:fe:91:6b:28:a7:0d:8f:d0:0f:b0:e3:a8: 64:78:d7:4c:94:25:f3:12:06:6d:67:f1:db:8a:63:5c:64:82: 86:a6:82:a0:28:57:85:03:1c:3b:7e:4e:3f:b3:ca:17:1b:e5: d2:85:d5:fa:b4:ed:9e:b6:ad:46:95:51:47:0b:9b:b2:0c:44: 09:f0:94:3a:f5:de:5f:43:34:53:36:a6:ee:39:1a:56:5c:e9: 97:44:c3:81:ef:8b:b7:37:1f:14:ad:df:07:ca:35:ad:9f:79: bf:f5:ea:d7 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUO7ExFaB57+M5EQFHXNkCit4aVFIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxNDA3MTgyM1oX DTI1MDMxMzA3MjMyM1owMzExMC8GA1UEAxMoRDIxQTM1OTdEN0I1RUJEOUE1NDc2 ODBGMUMyRUQ3QTQ2NEREOUYyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMfpfJ4Fy0BcSnA0xBtnds8CusSg71IUOvrcl2kkOhJD5pU45444vnZf5oeW Cj5t77i09QBDsWRJYS/GhizntYVl0ipmx2LNrfaGRwuEycROyE9KDAhHKtmHivCw zR6H6hPKK3c8lDpqqQj8b1342g9Ktq09T/3dZLjf4vqE9KkIAIh7UWpJ8HTS0XU7 l3vgkbI4LrE5G0xPVTnB+TUp2RaRw/PVY27KtRO7jnHQ+4HK+oiLdiglwWBMGkR/ WRNgi3VQCj6WrvyLgf36ftV54uSMOj4/VKlgh69ppNgddgabvUDlVtcOU/FppAfn sVxQNlKVqfjPcfANLzuPJfDtpxMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNIaNZfXtevZpUdoDxwu16Rk3Z8mMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zY2M1NjA1ZC1mMTdhLTQwMTAtOTI1My0yMTBjNjRmMTQ4YmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjYzU2MDVk LWYxN2EtNDAxMC05MjUzLTIxMGM2NGYxNDhiZC8wL0QyMUEzNTk3RDdCNUVCRDlB NTQ3NjgwRjFDMkVEN0E0NjRERDlGMjYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFntwYwDQYJKoZIhvcNAQELBQADggEBADMFlipaULMeokJeTd6/RCFaX2lpQ40k 5+cXHu7xCVSIWjhv10hhHtR2A9dkiwYNEDCcFJbGaP4Y2mTnIPOSmoDtG309cvdN 3qtPTpDxy7CTT2QFqbchDZYD5ZUhn5nr418JSPOIyai23GtPxmwWlwzhP7wrSdP/ Lo4v8WEGTB+oygXfZr/NL/BQOlkCec1Y2Fs2YFqRjP6RayinDY/QD7DjqGR410yU JfMSBm1n8duKY1xkgoamgqAoV4UDHDt+Tj+zyhcb5dKF1fq07Z62rUaVUUcLm7IM RAnwlDr13l9DNFM2pu45GlZc6ZdEw4Hvi7c3HxSt3wfKNa2feb/16tc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:52 2024 by rpki-client on console-ams.rpki-client.org