$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer File: DEF44331E724964F28697DEABAF2313CDCEEFACE.cer (raw, json) Hash identifier: qA1jaGC0EYhrFpLcGX9/Vb+/rjqXTXKgEFx0D8B5ATo= Subject key identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 501FE46D7C6CDCED039DA0618EEC64BC12E74D7D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.mft caRepository: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 16:42:01 +0000 Certificate not after: Mon 30 Jun 2025 16:47:01 +0000 Subordinate resources: IP: 103.108.191.0/24 IP: 2001:df4:1f00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:1f:e4:6d:7c:6c:dc:ed:03:9d:a0:61:8e:ec:64:bc:12:e7:4d:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 16:42:01 2024 GMT Not After : Jun 30 16:47:01 2025 GMT Subject: CN=DEF44331E724964F28697DEABAF2313CDCEEFACE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:61:28:d4:45:50:a1:8e:d4:ef:48:ec:eb:b5: 6f:49:d2:0d:b7:b5:78:5d:0c:25:e4:1f:6f:1d:83: 8c:22:5d:1e:cc:ab:8e:d6:d9:74:2b:21:2d:23:39: ef:f6:2f:7a:14:24:27:6b:a8:5b:84:30:39:13:52: 33:7f:8e:95:1c:b4:36:af:51:4e:5a:bb:b8:2b:cb: 76:b9:17:69:9b:1f:87:e2:68:f1:4f:76:e1:48:9e: 4b:e7:10:02:74:b5:c6:26:fd:ba:19:f6:14:61:31: 21:cb:e6:e7:6c:70:76:9a:ed:0e:9b:d2:7d:b3:17: b9:e1:4d:c2:58:17:2b:64:8b:53:ab:75:87:20:de: 6d:dc:4e:46:52:24:84:03:83:3b:88:2d:18:8f:c8: bf:89:bd:10:c8:66:d3:66:fa:bf:92:01:1f:40:e1: 5e:63:4b:2f:41:69:9f:29:b3:80:e4:02:61:14:7f: 70:9c:99:cb:5c:0a:0b:4b:bb:65:dc:e1:7d:b4:fb: 54:73:2a:f8:7d:ea:f4:83:9e:0d:77:93:6c:28:a8: 23:c1:9c:18:d7:2b:b4:ef:4a:ac:57:06:44:d1:62: b3:aa:94:d3:24:8c:a2:b6:7f:c4:72:7f:57:c0:13: a2:b8:e3:c6:a0:bb:90:45:3c:d2:ab:33:01:84:c0: 0e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.191.0/24 IPv6: 2001:df4:1f00::/48 Signature Algorithm: sha256WithRSAEncryption 0a:36:8f:48:2b:69:fb:b8:3c:3c:72:0e:b8:3c:40:c8:04:17: 50:ae:99:d1:76:90:38:92:2a:e2:73:75:a3:4a:53:7a:14:d1: d8:74:4e:9b:48:76:31:2f:ef:fd:c3:94:48:39:b4:79:13:4d: 49:2f:51:2f:81:42:ae:97:8a:f6:fc:6c:0f:22:a5:c9:5b:0f: 9a:ca:56:8f:3f:63:9e:ea:5a:b5:90:c2:5b:48:e6:88:36:e5: e6:06:2f:8a:eb:4f:8e:d1:5c:36:e4:bb:e8:71:39:41:c9:c5: 39:84:f5:ec:4c:cc:50:c5:45:32:ff:e7:13:a8:f1:10:5b:b3: c8:f0:5e:3e:1e:7a:92:7b:4a:05:ed:f1:de:36:83:be:b0:64: 5e:a3:d0:61:b2:cd:ee:7a:ae:2a:81:7b:1f:c8:4a:ba:fe:d1: c6:cb:39:1a:bf:b5:9a:52:9c:ce:06:47:4e:d8:f5:e4:16:c7: 90:75:e6:15:68:fc:20:84:19:d4:7b:30:9b:d6:7f:a2:25:e6: e1:76:0c:28:c4:e6:02:f3:86:d5:b4:21:3b:7e:7c:a1:82:f9: 7f:99:5b:3b:c5:cf:fc:96:2f:f2:e0:e4:1e:29:be:4e:4c:4f: c8:65:85:fc:7f:29:86:1f:5f:2e:03:aa:0b:70:da:46:78:ec: a8:7a:5e:92 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUUB/kbXxs3O0DnaBhjuxkvBLnTX0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTE2NDIwMVoX DTI1MDYzMDE2NDcwMVowMzExMC8GA1UEAxMoREVGNDQzMzFFNzI0OTY0RjI4Njk3 REVBQkFGMjMxM0NEQ0VFRkFDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORhKNRFUKGO1O9I7Ou1b0nSDbe1eF0MJeQfbx2DjCJdHsyrjtbZdCshLSM5 7/YvehQkJ2uoW4QwORNSM3+OlRy0Nq9RTlq7uCvLdrkXaZsfh+Jo8U924UieS+cQ AnS1xib9uhn2FGExIcvm52xwdprtDpvSfbMXueFNwlgXK2SLU6t1hyDebdxORlIk hAODO4gtGI/Iv4m9EMhm02b6v5IBH0DhXmNLL0FpnymzgOQCYRR/cJyZy1wKC0u7 ZdzhfbT7VHMq+H3q9IOeDXeTbCioI8GcGNcrtO9KrFcGRNFis6qU0ySMorZ/xHJ/ V8ATorjjxqC7kEU80qszAYTADpUCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN70QzHnJJZPKGl96rryMTzc7vrOMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMTkwYzM3ZS0yNjU1LTQyYjEtYmFmNy00MmVjMWNmMTkyYWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTBjMzdl LTI2NTUtNDJiMS1iYWY3LTQyZWMxY2YxOTJhYS8wL0RFRjQ0MzMxRTcyNDk2NEYy ODY5N0RFQUJBRjIzMTNDRENFRUZBQ0UubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnbL8wDwQCAAIwCQMHACABDfQfADANBgkqhkiG9w0BAQsFAAOCAQEACjaPSCtp +7g8PHIOuDxAyAQXUK6Z0XaQOJIq4nN1o0pTehTR2HROm0h2MS/v/cOUSDm0eRNN SS9RL4FCrpeK9vxsDyKlyVsPmspWjz9jnupatZDCW0jmiDbl5gYviutPjtFcNuS7 6HE5QcnFOYT17EzMUMVFMv/nE6jxEFuzyPBePh56kntKBe3x3jaDvrBkXqPQYbLN 7nquKoF7H8hKuv7Rxss5Gr+1mlKczgZHTtj15BbHkHXmFWj8IIQZ1Hswm9Z/oiXm 4XYMKMTmAvOG1bQhO358oYL5f5lbO8XP/JYv8uDkHim+TkxPyGWF/H8phh9fLgOq C3DaRnjsqHpekg== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:31 2024 by rpki-client on console-fra.rpki-client.org