$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D79DCFAD73DC86775F136607372499D1F2C9E25C.cer File: D79DCFAD73DC86775F136607372499D1F2C9E25C.cer (raw, json) Hash identifier: bCOgZqK4+E6Pzf5waZsXUq5jtE3f5rOTKDqGlk6Y0xI= Subject key identifier: D7:9D:CF:AD:73:DC:86:77:5F:13:66:07:37:24:99:D1:F2:C9:E2:5C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 091FD6A98DA1B62FAD399EA9B264F3D871984CBA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/92e95493-ae76-4cef-a08c-a20dfc9d2619/0/D79DCFAD73DC86775F136607372499D1F2C9E25C.mft caRepository: rsync://repo-rpki.idnic.net/repo/92e95493-ae76-4cef-a08c-a20dfc9d2619/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 10 Jan 2024 01:57:08 +0000 Certificate not after: Wed 08 Jan 2025 02:02:08 +0000 Subordinate resources: IP: 103.161.228.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:1f:d6:a9:8d:a1:b6:2f:ad:39:9e:a9:b2:64:f3:d8:71:98:4c:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 10 01:57:08 2024 GMT Not After : Jan 8 02:02:08 2025 GMT Subject: CN=D79DCFAD73DC86775F136607372499D1F2C9E25C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:98:18:e8:f6:3c:51:42:b3:a7:d6:8e:30:62: c3:e8:5b:0c:75:57:b9:b2:45:dd:0a:9c:a0:8b:8d: ef:bd:07:14:9f:dc:5d:ed:61:e6:1d:d5:2b:f1:63: 4a:ed:56:20:21:71:14:d9:6f:0f:42:44:ec:26:4f: 78:78:d2:6a:f7:e4:a9:d4:82:30:24:16:26:9a:55: bc:4f:80:93:e3:01:9b:1b:3c:6e:cc:84:89:da:2b: da:69:11:9b:6a:7d:ec:74:96:4d:49:10:5d:4b:84: 96:d8:ea:76:29:bd:b7:6c:12:71:95:40:6a:51:92: f4:f1:a6:47:e6:46:77:00:ec:c6:e6:f7:c0:b9:d0: 12:fb:f5:8d:b9:e7:ee:40:48:8b:71:13:55:f4:7d: a9:2d:e3:11:56:08:b1:73:7b:3c:a2:fe:ab:94:e5: dd:d7:a3:22:f4:db:0d:77:54:e4:10:c5:7b:d3:c0: d2:6b:61:b8:77:7d:d1:d3:ea:b6:99:86:66:74:9f: 66:da:f0:c7:f3:ef:a7:a6:99:35:a3:54:c4:eb:77: da:e9:1d:c9:bd:2f:ef:59:f4:c9:5b:7b:45:54:b7: b5:01:7c:bf:c2:39:fc:6a:5e:55:8a:e3:99:23:7a: ac:60:99:b7:81:aa:f1:33:4a:6e:fe:ed:7c:52:49: dd:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D7:9D:CF:AD:73:DC:86:77:5F:13:66:07:37:24:99:D1:F2:C9:E2:5C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/92e95493-ae76-4cef-a08c-a20dfc9d2619/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/92e95493-ae76-4cef-a08c-a20dfc9d2619/0/D79DCFAD73DC86775F136607372499D1F2C9E25C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.161.228.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:9d:b0:41:1c:3d:6d:7e:30:ec:fb:46:26:50:be:48:bc:d1: d5:33:a4:b1:43:05:cd:5d:dc:f1:86:77:f6:c7:e6:6f:35:4e: 1e:ff:96:49:ae:d4:e7:83:45:1a:03:e2:0b:4f:2f:e5:4f:de: ad:7d:9a:95:e7:47:00:3d:7b:c0:8c:9b:46:f5:59:be:d0:e7: 59:63:74:1b:4f:60:32:30:98:31:ba:7e:19:56:4e:91:2e:fc: 27:53:bc:32:57:ff:0a:eb:4a:7f:2f:50:da:9d:21:19:97:35: 57:77:12:80:58:6a:7b:72:44:45:44:6b:19:56:af:e4:b0:a0: 2c:d4:66:0a:8e:31:ad:02:55:1a:a5:30:6c:86:65:98:ef:d4: 6a:13:eb:1d:e7:e9:9d:de:ed:aa:1a:57:35:ea:1a:af:c2:63: 92:c2:68:dd:fa:41:22:aa:35:b3:ed:fc:06:ca:a9:cc:0e:37: e8:d9:a3:2f:eb:63:d6:3d:fd:4e:fb:f2:da:ba:4d:e8:bb:bf: 60:bf:fd:d7:bd:e8:52:63:86:00:f7:f7:16:0a:21:53:5b:67: 8d:8d:9d:5e:3b:03:b8:db:d7:dd:7f:db:46:eb:8c:74:6b:a9: c2:eb:87:e2:ae:64:4c:f3:9b:32:f9:bc:8c:52:6d:75:47:f1: 94:2f:ce:5f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCR/WqY2hti+tOZ6psmTz2HGYTLowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMDAxNTcwOFoX DTI1MDEwODAyMDIwOFowMzExMC8GA1UEAxMoRDc5RENGQUQ3M0RDODY3NzVGMTM2 NjA3MzcyNDk5RDFGMkM5RTI1QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALCYGOj2PFFCs6fWjjBiw+hbDHVXubJF3QqcoIuN770HFJ/cXe1h5h3VK/Fj Su1WICFxFNlvD0JE7CZPeHjSavfkqdSCMCQWJppVvE+Ak+MBmxs8bsyEidor2mkR m2p97HSWTUkQXUuEltjqdim9t2wScZVAalGS9PGmR+ZGdwDsxub3wLnQEvv1jbnn 7kBIi3ETVfR9qS3jEVYIsXN7PKL+q5Tl3dejIvTbDXdU5BDFe9PA0mthuHd90dPq tpmGZnSfZtrwx/Pvp6aZNaNUxOt32ukdyb0v71n0yVt7RVS3tQF8v8I5/GpeVYrj mSN6rGCZt4Gq8TNKbv7tfFJJ3dkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNedz61z3IZ3XxNmBzckmdHyyeJcMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85MmU5NTQ5My1hZTc2LTRjZWYtYTA4Yy1hMjBkZmM5ZDI2MTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzkyZTk1NDkz LWFlNzYtNGNlZi1hMDhjLWEyMGRmYzlkMjYxOS8wL0Q3OURDRkFENzNEQzg2Nzc1 RjEzNjYwNzM3MjQ5OUQxRjJDOUUyNUMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnoeQwDQYJKoZIhvcNAQELBQADggEBAG2dsEEcPW1+MOz7RiZQvki80dUzpLFD Bc1d3PGGd/bH5m81Th7/lkmu1OeDRRoD4gtPL+VP3q19mpXnRwA9e8CMm0b1Wb7Q 51ljdBtPYDIwmDG6fhlWTpEu/CdTvDJX/wrrSn8vUNqdIRmXNVd3EoBYantyREVE axlWr+SwoCzUZgqOMa0CVRqlMGyGZZjv1GoT6x3n6Z3e7aoaVzXqGq/CY5LCaN36 QSKqNbPt/AbKqcwON+jZoy/rY9Y9/U778tq6Tei7v2C//de96FJjhgD39xYKIVNb Z42NnV47A7jb191/20brjHRrqcLrh+KuZEzzmzL5vIxSbXVH8ZQvzl8= -----END CERTIFICATE-----Generated at Wed May 8 18:12:21 2024 by rpki-client on console-fra.rpki-client.org