$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer File: D4171C4C06975A4309FC59F2D340D6801EC26DD1.cer (raw, json) Hash identifier: QSs5WCVq5p+Hi/HdvKWl2CIVdfPRR0a+efWYa3my938= Subject key identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 03D34DB0DB6828BF3234BED2F1C9ED4E759DB0F9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft caRepository: rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 12 Jun 2024 16:14:45 +0000 Certificate not after: Wed 11 Jun 2025 16:19:45 +0000 Subordinate resources: IP: 103.186.204.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:d3:4d:b0:db:68:28:bf:32:34:be:d2:f1:c9:ed:4e:75:9d:b0:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 12 16:14:45 2024 GMT Not After : Jun 11 16:19:45 2025 GMT Subject: CN=D4171C4C06975A4309FC59F2D340D6801EC26DD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6a:ce:6f:52:6c:74:68:22:c2:5a:37:da:65: 68:df:77:a6:3a:d9:31:2c:48:b7:db:2f:df:49:b8: cf:2b:19:f7:f3:53:d7:e9:a5:38:35:35:4c:61:b1: bb:24:97:29:4b:c9:e7:25:af:44:20:2e:a6:0e:de: 08:80:73:64:b3:9e:50:cb:b5:d2:cb:cd:3e:ad:a5: 41:96:60:8a:d3:fe:79:44:78:7e:8c:3b:e4:8f:6e: 4c:d7:7a:f7:f1:38:97:e0:45:45:6b:2a:09:ec:f7: 18:54:20:53:73:2e:2f:e2:9d:a5:cb:08:fc:b0:52: 88:46:f9:e4:39:5e:63:52:e5:41:8b:3e:03:ad:98: 41:02:ed:86:51:c2:86:6e:6c:17:5f:f3:93:d6:ae: 06:9d:14:99:f8:2b:cd:ec:dc:f8:ca:b1:e1:55:a4: c2:5d:ce:6b:7e:01:81:30:38:e3:a0:13:38:97:60: 7f:e4:7c:0e:40:72:9f:5f:fe:83:93:a0:2a:48:30: 01:86:fd:11:28:a9:01:f5:dd:52:8a:31:d8:48:93: fd:8c:f1:a3:a7:b7:02:56:66:b5:46:d4:50:6f:47: d5:c4:ce:52:21:a4:40:f7:65:96:7b:c6:0d:b8:ad: 8b:ab:b0:4b:0a:a6:c0:c3:4a:3c:88:54:a5:6d:14: 18:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D4:17:1C:4C:06:97:5A:43:09:FC:59:F2:D3:40:D6:80:1E:C2:6D:D1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/07680d0d-e240-4aaf-bc23-282359373289/0/D4171C4C06975A4309FC59F2D340D6801EC26DD1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.204.0/24 Signature Algorithm: sha256WithRSAEncryption 54:35:00:8b:d6:2b:29:65:3e:48:ce:10:41:10:2c:e0:1d:b1: d1:5f:7a:1e:3c:18:9c:00:fb:9d:99:65:b2:b1:30:1d:ce:b5: 68:31:d0:91:cd:2d:03:a1:fe:8e:08:9e:5d:02:68:7b:e7:1f: 4f:35:6e:f7:1d:5c:50:f1:5f:36:34:5b:a0:43:63:be:38:4f: 71:1d:f7:87:52:c3:7c:94:19:b1:36:d6:22:7c:43:86:72:ab: cf:9f:e0:8a:a6:02:34:99:d2:49:67:92:f3:ef:10:c6:2d:1a: f7:43:4c:91:94:71:0a:00:6b:94:ab:3e:89:35:d2:fb:f7:9e: 7e:47:59:9c:2d:4a:6e:bb:34:24:7f:89:67:f7:3b:85:58:80: c2:2c:52:47:f9:c3:02:a7:11:96:85:b6:54:25:b0:9d:5f:f7: 30:37:bd:2f:74:50:01:92:2b:9f:09:d8:e7:23:ff:3e:37:df: 0f:69:d3:22:b9:f7:fd:db:7d:32:10:0b:f1:69:ef:07:5b:a9: 55:77:db:6e:6c:c0:50:13:7e:bb:b5:32:f6:2f:fd:72:45:d1: dd:75:0c:a4:0a:48:9e:de:3d:a4:f0:38:1e:42:95:5f:23:76: d3:ec:8e:84:34:90:52:2e:79:27:02:f4:56:72:6a:31:25:c4: 7e:d3:c8:ad -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUA9NNsNtoKL8yNL7S8cntTnWdsPkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxMjE2MTQ0NVoX DTI1MDYxMTE2MTk0NVowMzExMC8GA1UEAxMoRDQxNzFDNEMwNjk3NUE0MzA5RkM1 OUYyRDM0MEQ2ODAxRUMyNkREMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK1qzm9SbHRoIsJaN9plaN93pjrZMSxIt9sv30m4zysZ9/NT1+mlODU1TGGx uySXKUvJ5yWvRCAupg7eCIBzZLOeUMu10svNPq2lQZZgitP+eUR4fow75I9uTNd6 9/E4l+BFRWsqCez3GFQgU3MuL+KdpcsI/LBSiEb55DleY1LlQYs+A62YQQLthlHC hm5sF1/zk9auBp0Umfgrzezc+Mqx4VWkwl3Oa34BgTA446ATOJdgf+R8DkByn1/+ g5OgKkgwAYb9ESipAfXdUoox2EiT/Yzxo6e3AlZmtUbUUG9H1cTOUiGkQPdllnvG Dbiti6uwSwqmwMNKPIhUpW0UGFECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNQXHEwGl1pDCfxZ8tNA1oAewm3RMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNzY4MGQwZC1lMjQwLTRhYWYtYmMyMy0yODIzNTkzNzMyODkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA3NjgwZDBk LWUyNDAtNGFhZi1iYzIzLTI4MjM1OTM3MzI4OS8wL0Q0MTcxQzRDMDY5NzVBNDMw OUZDNTlGMkQzNDBENjgwMUVDMjZERDEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnuswwDQYJKoZIhvcNAQELBQADggEBAFQ1AIvWKyllPkjOEEEQLOAdsdFfeh48 GJwA+52ZZbKxMB3OtWgx0JHNLQOh/o4Inl0CaHvnH081bvcdXFDxXzY0W6BDY744 T3Ed94dSw3yUGbE21iJ8Q4Zyq8+f4IqmAjSZ0klnkvPvEMYtGvdDTJGUcQoAa5Sr Pok10vv3nn5HWZwtSm67NCR/iWf3O4VYgMIsUkf5wwKnEZaFtlQlsJ1f9zA3vS90 UAGSK58J2Ocj/z433w9p0yK59/3bfTIQC/Fp7wdbqVV3225swFATfru1MvYv/XJF 0d11DKQKSJ7ePaTwOB5ClV8jdtPsjoQ0kFIueScC9FZyajElxH7TyK0= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:31 2024 by rpki-client on console-fra.rpki-client.org