$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DB3705DEAC1CB7212393B7021AB671BD8699FE9B.cer File: DB3705DEAC1CB7212393B7021AB671BD8699FE9B.cer (raw, json) Hash identifier: AYF0OaVQ3YkMTAI8yq4a6PpPJ/8acJHFV3EzQ5Bsr2A= Subject key identifier: DB:37:05:DE:AC:1C:B7:21:23:93:B7:02:1A:B6:71:BD:86:99:FE:9B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 54D38026EA647F733CD4235CE5F9C284E708E3EB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/DB3705DEAC1CB7212393B7021AB671BD8699FE9B.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 12 Jun 2024 10:59:17 +0000 Certificate not after: Wed 11 Jun 2025 11:04:17 +0000 Subordinate resources: IP: 103.163.240.0/23 IP: 2401:7e20::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:d3:80:26:ea:64:7f:73:3c:d4:23:5c:e5:f9:c2:84:e7:08:e3:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 12 10:59:17 2024 GMT Not After : Jun 11 11:04:17 2025 GMT Subject: CN=DB3705DEAC1CB7212393B7021AB671BD8699FE9B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:d6:d5:8a:c6:91:68:71:1c:e6:2c:44:d7:f9: 31:76:cf:3e:15:42:96:95:1c:f5:76:c7:8b:8e:d7: 88:12:18:34:cf:cc:eb:77:03:c6:16:77:7b:c4:39: 0d:1f:c9:1a:7d:35:39:5a:68:a6:2b:a5:72:b0:ef: 6c:f2:59:8c:ce:6f:a6:1e:ff:57:f5:38:a8:65:ae: 2f:32:8e:36:2f:03:99:24:fb:f2:b1:e7:1d:a4:df: bc:44:84:04:03:88:5a:4b:04:8b:90:95:9f:c6:4d: 73:1b:d2:9e:9d:cb:ef:2b:a9:e5:40:e1:61:c6:38: 4d:8f:dc:cb:d5:c8:30:ef:d4:a2:c1:b4:1d:7c:04: f4:51:5e:44:63:25:79:4a:c3:c6:37:12:ae:46:47: 72:df:2b:9e:13:11:21:ed:6a:07:93:f5:84:2d:93: 86:5d:1e:d2:59:f0:10:20:ce:54:79:b0:39:9b:92: 76:f0:d6:1e:22:f3:a3:4c:7b:43:23:8e:5a:47:c7: 35:dc:05:9e:77:ae:29:30:70:85:2e:6c:e5:6d:7d: cd:1c:98:24:6f:84:2a:56:24:c7:1c:73:0b:95:60: 95:75:0b:81:11:da:41:66:d1:04:6e:5c:9e:d4:10: 22:f0:eb:de:d3:ef:fc:cb:85:9e:0c:95:54:fa:a1: a8:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DB:37:05:DE:AC:1C:B7:21:23:93:B7:02:1A:B6:71:BD:86:99:FE:9B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c5b785d-8303-45c5-9a58-ec1288740866/0/DB3705DEAC1CB7212393B7021AB671BD8699FE9B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.240.0/23 IPv6: 2401:7e20::/32 Signature Algorithm: sha256WithRSAEncryption 81:ea:92:55:1a:39:d3:e1:6d:1f:e4:02:41:a8:f1:8e:83:f4: ad:36:b8:41:13:73:dc:8b:00:5e:9c:93:22:45:28:0f:a4:fe: 91:93:6e:a4:fd:32:9e:be:cb:b6:87:ec:7d:21:4c:1c:bb:8f: 86:35:a9:2a:e0:59:76:e0:9b:3e:94:8f:e8:5a:b9:49:2d:05: 95:5b:81:75:d5:71:41:06:1f:6b:92:81:4a:48:d2:d3:92:24: 76:1c:36:2c:93:19:0f:d7:80:e0:b3:15:4b:3d:b7:fa:4d:b8: 1b:dc:c2:7d:41:10:14:a9:a5:c6:bb:4a:b9:fa:8b:94:d5:1a: c6:0e:78:10:b8:98:19:70:f1:90:58:0c:e4:fe:6a:11:a6:02: 44:42:02:2a:05:d9:6e:41:22:7f:89:93:cc:3b:0a:ab:4e:e7: e3:c0:01:b8:84:00:a8:35:f8:e6:6d:4e:b3:bd:bb:11:bd:ac: 0e:e1:b9:57:ed:b1:8f:d3:86:03:f2:b8:ef:82:08:8e:7a:2b: 53:d6:da:ad:c1:d3:de:02:1e:7c:83:71:a5:bb:b7:05:e5:b4: 7e:46:84:79:01:21:79:d0:5a:09:1f:5c:55:2e:c9:16:06:f6: 1f:6e:07:52:3e:15:e2:52:ae:08:1f:43:3e:b5:89:3a:66:7d: 08:12:1a:4f -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUVNOAJupkf3M81CNc5fnChOcI4+swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYxMjEwNTkxN1oX DTI1MDYxMTExMDQxN1owMzExMC8GA1UEAxMoREIzNzA1REVBQzFDQjcyMTIzOTNC NzAyMUFCNjcxQkQ4Njk5RkU5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAODW1YrGkWhxHOYsRNf5MXbPPhVClpUc9XbHi47XiBIYNM/M63cDxhZ3e8Q5 DR/JGn01OVpopiulcrDvbPJZjM5vph7/V/U4qGWuLzKONi8DmST78rHnHaTfvESE BAOIWksEi5CVn8ZNcxvSnp3L7yup5UDhYcY4TY/cy9XIMO/UosG0HXwE9FFeRGMl eUrDxjcSrkZHct8rnhMRIe1qB5P1hC2Thl0e0lnwECDOVHmwOZuSdvDWHiLzo0x7 QyOOWkfHNdwFnneuKTBwhS5s5W19zRyYJG+EKlYkxxxzC5VglXULgRHaQWbRBG5c ntQQIvDr3tPv/MuFngyVVPqhqE8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNs3Bd6sHLchI5O3Ahq2cb2Gmf6bMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzViNzg1ZC04MzAzLTQ1YzUtOWE1OC1lYzEyODg3NDA4NjYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjNWI3ODVk LTgzMDMtNDVjNS05YTU4LWVjMTI4ODc0MDg2Ni8wL0RCMzcwNURFQUMxQ0I3MjEy MzkzQjcwMjFBQjY3MUJEODY5OUZFOUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFno/AwDQQCAAIwBwMFACQBfiAwDQYJKoZIhvcNAQELBQADggEBAIHqklUaOdPh bR/kAkGo8Y6D9K02uEETc9yLAF6ckyJFKA+k/pGTbqT9Mp6+y7aH7H0hTBy7j4Y1 qSrgWXbgmz6Uj+hauUktBZVbgXXVcUEGH2uSgUpI0tOSJHYcNiyTGQ/XgOCzFUs9 t/pNuBvcwn1BEBSppca7Srn6i5TVGsYOeBC4mBlw8ZBYDOT+ahGmAkRCAioF2W5B In+Jk8w7CqtO5+PAAbiEAKg1+OZtTrO9uxG9rA7huVftsY/ThgPyuO+CCI56K1PW 2q3B094CHnyDcaW7twXltH5GhHkBIXnQWgkfXFUuyRYG9h9uB1I+FeJSrggfQz61 iTpmfQgSGk8= -----END CERTIFICATE-----Generated at Mon Nov 25 13:02:01 2024 by rpki-client on console-fra.rpki-client.org