$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DF3717861F6521730921F11365C5A826CFF24DAA.cer File: DF3717861F6521730921F11365C5A826CFF24DAA.cer (raw, json) Hash identifier: CQIfXTFu29NkMqhrP9A0ylFcSDeVWRiacW4/03FYico= Subject key identifier: DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3205AB003724B8BE24A3610994768A0E321BB338 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.mft caRepository: rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 11 Jan 2024 04:31:14 +0000 Certificate not after: Thu 09 Jan 2025 04:36:14 +0000 Subordinate resources: IP: 2001:df3:5bc0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:05:ab:00:37:24:b8:be:24:a3:61:09:94:76:8a:0e:32:1b:b3:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 11 04:31:14 2024 GMT Not After : Jan 9 04:36:14 2025 GMT Subject: CN=DF3717861F6521730921F11365C5A826CFF24DAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6b:c6:34:46:0f:e3:f3:47:13:1f:76:91:f6: bc:da:82:ce:ff:31:73:e6:2b:4a:95:1f:24:61:3a: b8:df:9e:fd:46:4e:a8:c5:75:4a:39:7a:a8:81:08: 83:a3:06:70:9c:67:8b:a4:5e:82:95:30:a5:22:8e: dc:f8:88:f7:32:ed:d4:8d:53:3d:d2:9c:4c:4b:ca: 9f:0a:e7:b6:50:1b:1f:87:ad:ce:fa:67:d6:ae:f3: 9b:bb:f2:69:ff:e9:25:5c:07:50:d6:cc:66:a2:46: 90:7a:f2:66:27:e2:d7:01:8d:cd:b8:63:bd:2c:72: e0:22:2a:e3:f0:91:93:55:c8:89:5f:10:7f:be:e9: a2:6c:e8:a7:e6:78:fa:44:6a:ad:9f:c5:3a:ee:89: 42:14:ab:2a:bf:24:3a:74:2a:f2:88:43:a7:a8:c1: ed:c5:50:6c:4a:2f:8f:b5:21:8d:21:ef:4f:d0:e7: 4c:4b:03:e6:46:c5:7b:76:a2:2f:c2:0b:b0:52:46: 70:8d:c3:f7:5f:0e:8f:dc:b1:38:9f:0a:ea:d0:50: a0:bc:52:c9:34:fc:8e:98:30:fe:c1:60:c2:3f:7c: d0:bc:5b:f5:aa:13:6f:90:09:e2:3b:ec:0a:a9:f4: 4a:e1:4e:b2:4d:26:37:a1:62:4e:63:96:cc:f9:f3: 18:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DF:37:17:86:1F:65:21:73:09:21:F1:13:65:C5:A8:26:CF:F2:4D:AA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e47cd5a2-a742-450c-b190-500e754520de/1/DF3717861F6521730921F11365C5A826CFF24DAA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:5bc0::/48 Signature Algorithm: sha256WithRSAEncryption 9b:ee:3b:d6:61:24:2f:58:13:fa:16:be:0b:55:74:43:cb:ab: 7c:52:61:59:98:c2:60:0a:2b:a5:1d:20:82:cd:7c:2e:5e:f7: 17:7c:f6:2b:ef:46:47:28:a2:d9:2f:08:a2:59:dd:14:0c:1f: ab:17:b2:59:d4:8c:8e:27:d6:13:ae:2d:ea:41:e6:97:35:22: e1:29:a0:12:ed:92:98:c5:ba:71:68:e4:30:aa:fd:8a:37:58: 96:49:4f:8d:93:b4:46:42:b1:b3:52:16:9f:0e:27:28:3e:7c: ae:fe:65:0f:af:7e:b1:88:50:2d:d4:81:59:e1:9b:eb:8c:75: 31:fd:65:d6:37:06:90:b5:df:97:b4:a9:9b:72:c1:05:24:4e: 12:7b:1f:b4:f7:75:37:09:b0:ff:b9:f7:9d:f8:71:40:30:70: ed:d9:ed:63:f7:24:a1:9f:74:fb:9a:9a:6f:c2:ac:6c:d1:b1: 85:55:4b:c7:ff:85:34:68:23:51:54:28:76:4f:0d:e9:ac:26: 47:9a:9d:50:d8:50:3c:9a:60:e6:51:02:5c:96:4e:b0:3d:e6: f9:cc:1a:41:07:ef:0a:71:0d:d4:a6:d5:23:88:b4:be:d7:2f: 40:f0:bc:c2:67:34:f3:97:41:7e:ca:e4:1a:10:bc:5a:a4:7e: 6b:81:a3:28 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUMgWrADckuL4ko2EJlHaKDjIbszgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMTA0MzExNFoX DTI1MDEwOTA0MzYxNFowMzExMC8GA1UEAxMoREYzNzE3ODYxRjY1MjE3MzA5MjFG MTEzNjVDNUE4MjZDRkYyNERBQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALNrxjRGD+PzRxMfdpH2vNqCzv8xc+YrSpUfJGE6uN+e/UZOqMV1Sjl6qIEI g6MGcJxni6RegpUwpSKO3PiI9zLt1I1TPdKcTEvKnwrntlAbH4etzvpn1q7zm7vy af/pJVwHUNbMZqJGkHryZifi1wGNzbhjvSxy4CIq4/CRk1XIiV8Qf77pomzop+Z4 +kRqrZ/FOu6JQhSrKr8kOnQq8ohDp6jB7cVQbEovj7UhjSHvT9DnTEsD5kbFe3ai L8ILsFJGcI3D918Oj9yxOJ8K6tBQoLxSyTT8jpgw/sFgwj980Lxb9aoTb5AJ4jvs Cqn0SuFOsk0mN6FiTmOWzPnzGGUCAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN83F4YfZSFzCSHxE2XFqCbP8k2qMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNDdjZDVhMi1hNzQyLTQ1MGMtYjE5MC01MDBlNzU0NTIwZGUvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U0N2NkNWEy LWE3NDItNDUwYy1iMTkwLTUwMGU3NTQ1MjBkZS8xL0RGMzcxNzg2MUY2NTIxNzMw OTIxRjExMzY1QzVBODI2Q0ZGMjREQUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ3zW8AwDQYJKoZIhvcNAQELBQADggEBAJvuO9ZhJC9YE/oWvgtVdEPLq3xS YVmYwmAKK6UdIILNfC5e9xd89ivvRkcootkvCKJZ3RQMH6sXslnUjI4n1hOuLepB 5pc1IuEpoBLtkpjFunFo5DCq/Yo3WJZJT42TtEZCsbNSFp8OJyg+fK7+ZQ+vfrGI UC3UgVnhm+uMdTH9ZdY3BpC135e0qZtywQUkThJ7H7T3dTcJsP+59534cUAwcO3Z 7WP3JKGfdPuamm/CrGzRsYVVS8f/hTRoI1FUKHZPDemsJkeanVDYUDyaYOZRAlyW TrA95vnMGkEH7wpxDdSm1SOItL7XL0DwvMJnNPOXQX7K5BoQvFqkfmuBoyg= -----END CERTIFICATE-----Generated at Mon Nov 25 13:02:01 2024 by rpki-client on console-fra.rpki-client.org