$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer File: D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer (raw, json) Hash identifier: EsNePaRSaxbOVPKRGB4m5fYZBqEmtFF653QyGZ335T8= Subject key identifier: D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 26666E9FB717E62451C41F97A7CE1A17A2BBD400 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.mft caRepository: rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 23 Oct 2024 14:01:33 +0000 Certificate not after: Wed 22 Oct 2025 14:06:33 +0000 Subordinate resources: IP: 103.41.248.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:66:6e:9f:b7:17:e6:24:51:c4:1f:97:a7:ce:1a:17:a2:bb:d4:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 23 14:01:33 2024 GMT Not After : Oct 22 14:06:33 2025 GMT Subject: CN=D469937BD030575A6389B1FF4CDB185EFBC4B1FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:12:4e:38:c4:a9:fb:85:ad:42:9c:ea:4e:26: 2f:a7:36:5e:b6:45:6c:df:b0:f1:f7:79:26:af:4c: 7d:0c:3a:23:ca:91:39:9f:c8:bd:35:30:38:fa:f0: 7f:0f:3f:47:2d:f6:e2:1b:03:2a:b2:9e:81:26:1d: 1d:9d:bc:4b:f2:87:46:ae:81:a7:c8:b3:d2:b6:fc: 91:88:8c:6c:e0:f0:16:c0:d6:c9:ef:ee:14:73:ce: 80:11:48:35:1a:f8:02:90:ee:bd:f3:6b:5b:74:9f: 83:9b:39:44:38:7b:46:28:79:bc:76:7a:ed:e6:25: 37:60:67:98:1a:62:88:c7:41:a5:e2:00:11:df:3a: 74:2d:95:45:ec:40:b6:db:cf:e1:f9:20:0b:00:d8: a5:9f:86:d6:da:bb:82:c6:2a:02:51:1d:6f:fe:58: f6:bc:4e:a4:92:fd:f3:ca:c9:20:6e:10:77:b1:fb: 45:6b:86:05:97:84:87:5c:6b:44:d2:54:bc:d5:3e: ca:cf:52:f2:ff:90:05:ea:19:a8:10:c3:9a:07:67: 69:7a:8c:93:89:31:06:94:16:28:9b:23:e8:1b:ac: 5c:ba:22:81:5b:c2:be:c6:07:32:62:41:67:ae:35: 56:b1:e0:4b:e4:33:32:df:00:72:08:26:14:95:1b: 21:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.248.0/23 Signature Algorithm: sha256WithRSAEncryption 62:92:de:08:7c:ec:e3:19:29:90:87:a8:42:58:d6:dc:c3:98: 31:b4:b0:9c:40:79:da:df:34:fa:c5:96:25:7c:46:16:06:bf: 26:da:ee:5d:79:c3:2b:55:ca:4c:ab:81:e4:7e:22:af:16:84: 17:ec:11:05:e0:43:12:7e:3e:0f:66:36:74:42:94:df:ce:65: 58:d5:87:3a:06:ae:39:52:3b:ce:ed:d2:fb:c6:9f:e1:20:10: a1:00:f7:47:f8:a2:ab:b5:ce:70:e9:1c:e7:f7:b2:47:b8:b9: 62:3b:5f:c0:4c:6a:b3:b3:0c:fe:d8:71:23:de:69:65:ca:79: f2:c0:35:87:47:04:5f:ac:3e:bd:53:1a:3e:cb:34:2d:f3:bd: f8:d1:e3:0e:cb:80:47:6a:dd:6f:db:b1:f4:03:72:b0:7f:e9: 82:c4:45:bc:12:4a:b8:16:ae:15:7c:ea:6e:98:b5:ce:d7:9f: 75:79:a0:1c:a7:b3:01:6a:31:49:b2:00:f4:3e:64:a7:36:3f: b7:ef:89:d7:59:87:ba:70:45:ac:9a:31:7e:6b:46:95:88:aa: 08:ec:13:e0:97:2c:1a:2c:cd:93:65:68:21:b4:dd:c2:27:29: b1:94:e4:8c:cc:20:89:32:9b:38:c6:ee:6c:5a:e7:10:4f:9b: 56:57:28:dd -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJmZun7cX5iRRxB+Xp84aF6K71AAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyMzE0MDEzM1oX DTI1MTAyMjE0MDYzM1owMzExMC8GA1UEAxMoRDQ2OTkzN0JEMDMwNTc1QTYzODlC MUZGNENEQjE4NUVGQkM0QjFGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0STjjEqfuFrUKc6k4mL6c2XrZFbN+w8fd5Jq9MfQw6I8qROZ/IvTUwOPrw fw8/Ry324hsDKrKegSYdHZ28S/KHRq6Bp8iz0rb8kYiMbODwFsDWye/uFHPOgBFI NRr4ApDuvfNrW3Sfg5s5RDh7Rih5vHZ67eYlN2BnmBpiiMdBpeIAEd86dC2VRexA ttvP4fkgCwDYpZ+G1tq7gsYqAlEdb/5Y9rxOpJL988rJIG4Qd7H7RWuGBZeEh1xr RNJUvNU+ys9S8v+QBeoZqBDDmgdnaXqMk4kxBpQWKJsj6BusXLoigVvCvsYHMmJB Z641VrHgS+QzMt8AcggmFJUbIcECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNRpk3vQMFdaY4mx/0zbGF77xLH6MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NzUyNzdlOC03ZDBmLTQxODQtOWMyOC1hNjYzNWVmZWYyOWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3NTI3N2U4 LTdkMGYtNDE4NC05YzI4LWE2NjM1ZWZlZjI5Yy8wL0Q0Njk5MzdCRDAzMDU3NUE2 Mzg5QjFGRjRDREIxODVFRkJDNEIxRkEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnKfgwDQYJKoZIhvcNAQELBQADggEBAGKS3gh87OMZKZCHqEJY1tzDmDG0sJxA edrfNPrFliV8RhYGvyba7l15wytVykyrgeR+Iq8WhBfsEQXgQxJ+Pg9mNnRClN/O ZVjVhzoGrjlSO87t0vvGn+EgEKEA90f4oqu1znDpHOf3ske4uWI7X8BMarOzDP7Y cSPeaWXKefLANYdHBF+sPr1TGj7LNC3zvfjR4w7LgEdq3W/bsfQDcrB/6YLERbwS SrgWrhV86m6Ytc7Xn3V5oBynswFqMUmyAPQ+ZKc2P7fviddZh7pwRayaMX5rRpWI qgjsE+CXLBoszZNlaCG03cInKbGU5IzMIIkymzjG7mxa5xBPm1ZXKN0= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:34 2024 by rpki-client on console-ams.rpki-client.org