$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.cer File: D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.cer (raw, json) Hash identifier: 6h7Nfbi7nUjz53i22Pt0DN2MbSOIYDoWT59n45FdHYw= Subject key identifier: D6:C1:F1:3C:67:CD:02:54:5D:EB:AA:84:6E:B2:8F:6E:A3:FC:EB:66 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 02728BD921CF83F721A81E398F6C92297CC9535D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.mft caRepository: rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 31 Aug 2024 16:18:17 +0000 Certificate not after: Sat 30 Aug 2025 16:23:17 +0000 Subordinate resources: IP: 103.176.200.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:72:8b:d9:21:cf:83:f7:21:a8:1e:39:8f:6c:92:29:7c:c9:53:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 31 16:18:17 2024 GMT Not After : Aug 30 16:23:17 2025 GMT Subject: CN=D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:65:5f:8d:2d:33:af:7c:87:ba:4e:74:9f:3a: 72:21:61:7d:f2:67:f9:21:70:d1:b0:e0:e9:99:cb: 01:d7:c3:06:97:75:95:ef:03:fc:51:58:b0:29:64: 99:e5:3f:40:f2:85:95:57:50:0c:7a:80:2d:3c:1b: 1f:6c:1b:96:a0:13:eb:b4:54:96:4c:cb:5b:22:99: 8c:7c:68:23:d1:2e:34:cc:49:c6:56:79:17:4c:99: a4:1a:ea:11:a9:c1:52:a8:c9:6c:71:7e:d5:bb:5b: 7a:ed:e2:90:ca:c2:98:2a:9c:e2:49:73:5d:c3:27: 34:e5:21:b8:59:75:41:dc:56:74:e3:e8:8b:0b:73: c7:0f:13:51:1b:cb:83:c9:7f:92:96:80:be:f2:91: 2d:5d:ad:f6:bd:cb:6b:58:d0:ac:00:25:7f:f1:a8: 62:94:de:da:21:c1:06:31:18:43:75:ab:16:78:9b: 24:ab:67:08:d3:6b:0c:1d:e7:56:57:82:18:6f:21: c1:17:db:b0:18:e6:1d:be:d5:e1:01:84:19:8c:e7: f5:5e:bd:a0:2f:05:fe:7f:f4:7d:4f:ac:35:91:e2: 90:26:33:f9:2e:f4:3b:21:24:ea:4b:10:49:73:50: d7:2f:eb:9c:68:fe:35:55:da:49:a0:f7:74:cd:92: 21:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D6:C1:F1:3C:67:CD:02:54:5D:EB:AA:84:6E:B2:8F:6E:A3:FC:EB:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.200.0/23 Signature Algorithm: sha256WithRSAEncryption 09:c3:e0:0b:b3:d4:3b:99:c9:66:5b:ca:d7:7c:fd:3c:fc:33: 3c:9a:f2:0a:9c:d6:7f:25:c4:c8:51:3f:53:68:11:e6:0f:9b: 79:be:51:9e:16:ef:e3:8d:ce:ce:89:a1:47:14:19:c2:5d:e9: 6c:1d:4c:3c:63:80:54:bd:43:d0:e7:23:91:e1:e5:8c:ce:a8: 19:db:61:d4:29:80:83:39:ba:1d:f5:b4:13:04:ca:f2:de:55: 1d:e0:62:bc:d0:1d:3d:16:51:68:9e:cc:12:38:c0:6f:b7:00: 9f:4b:41:dd:c9:b9:35:39:b4:05:ac:ef:33:ab:00:dc:24:d0: a6:fc:09:ba:76:52:33:36:16:df:1d:8a:ff:56:78:da:eb:14: 98:89:4a:8a:59:88:df:b2:45:b9:5d:25:50:4d:fa:40:00:d6: 1f:bd:62:97:8c:92:ee:e1:cb:4c:79:aa:d1:c4:e8:af:38:82: f4:af:ed:4b:2d:b4:3c:6c:50:dc:66:54:df:0d:8a:8a:1a:38: d4:9d:3b:d1:22:15:74:b1:33:99:3f:b1:73:e8:96:fb:33:1a: be:1f:8c:10:a0:b5:bd:9c:2a:01:5b:fd:b6:04:34:80:29:d2: fc:ca:8c:fb:77:eb:ef:8c:5d:c8:9b:ee:01:64:ed:7f:d1:03: ee:f4:2b:d6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAnKL2SHPg/chqB45j2ySKXzJU10wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgzMTE2MTgxN1oX DTI1MDgzMDE2MjMxN1owMzExMC8GA1UEAxMoRDZDMUYxM0M2N0NEMDI1NDVERUJB QTg0NkVCMjhGNkVBM0ZDRUI2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVlX40tM698h7pOdJ86ciFhffJn+SFw0bDg6ZnLAdfDBpd1le8D/FFYsClk meU/QPKFlVdQDHqALTwbH2wblqAT67RUlkzLWyKZjHxoI9EuNMxJxlZ5F0yZpBrq EanBUqjJbHF+1btbeu3ikMrCmCqc4klzXcMnNOUhuFl1QdxWdOPoiwtzxw8TURvL g8l/kpaAvvKRLV2t9r3La1jQrAAlf/GoYpTe2iHBBjEYQ3WrFnibJKtnCNNrDB3n VleCGG8hwRfbsBjmHb7V4QGEGYzn9V69oC8F/n/0fU+sNZHikCYz+S70OyEk6ksQ SXNQ1y/rnGj+NVXaSaD3dM2SIScCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNbB8TxnzQJUXeuqhG6yj26j/OtmMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jY2EyZTBkYi1lMjkzLTQxYzUtODU4My0zODAxNTc1ODQyMWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjYTJlMGRi LWUyOTMtNDFjNS04NTgzLTM4MDE1NzU4NDIxYy8wL0Q2QzFGMTNDNjdDRDAyNTQ1 REVCQUE4NDZFQjI4RjZFQTNGQ0VCNjYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsMgwDQYJKoZIhvcNAQELBQADggEBAAnD4Auz1DuZyWZbytd8/Tz8Mzya8gqc 1n8lxMhRP1NoEeYPm3m+UZ4W7+ONzs6JoUcUGcJd6WwdTDxjgFS9Q9DnI5Hh5YzO qBnbYdQpgIM5uh31tBMEyvLeVR3gYrzQHT0WUWiezBI4wG+3AJ9LQd3JuTU5tAWs 7zOrANwk0Kb8Cbp2UjM2Ft8div9WeNrrFJiJSopZiN+yRbldJVBN+kAA1h+9YpeM ku7hy0x5qtHE6K84gvSv7UsttDxsUNxmVN8NiooaONSdO9EiFXSxM5k/sXPolvsz Gr4fjBCgtb2cKgFb/bYENIAp0vzKjPt36++MXcib7gFk7X/RA+70K9Y= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:31 2024 by rpki-client on console-fra.rpki-client.org