$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E014E6ED03537E453565D06E7B8A31AA8A0525A1.cer File: E014E6ED03537E453565D06E7B8A31AA8A0525A1.cer (raw, json) Hash identifier: Pwdi7yepZXPWKvPWl6Ui5NrwjpEpkoofAhcIjJ8+pt8= Subject key identifier: E0:14:E6:ED:03:53:7E:45:35:65:D0:6E:7B:8A:31:AA:8A:05:25:A1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3E221AE3D7B93D93D9B5A92BB267F2D1DB66FDD0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0bb29378-45f0-49d3-a6af-573be7dca6d0/0/E014E6ED03537E453565D06E7B8A31AA8A0525A1.mft caRepository: rsync://repo-rpki.idnic.net/repo/0bb29378-45f0-49d3-a6af-573be7dca6d0/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 31 Aug 2024 10:38:03 +0000 Certificate not after: Sat 30 Aug 2025 10:43:03 +0000 Subordinate resources: IP: 103.175.38.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:22:1a:e3:d7:b9:3d:93:d9:b5:a9:2b:b2:67:f2:d1:db:66:fd:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 31 10:38:03 2024 GMT Not After : Aug 30 10:43:03 2025 GMT Subject: CN=E014E6ED03537E453565D06E7B8A31AA8A0525A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7a:f5:c4:5c:f6:f9:4a:b9:3c:4f:8b:a0:a6: 1f:e3:d6:7d:9f:18:97:91:72:91:c0:83:19:b2:b8: ef:b6:62:ba:08:17:63:3a:03:81:76:27:9a:f1:15: a1:81:3e:a4:7e:34:aa:d3:14:6b:40:54:c0:7d:82: 9e:78:77:31:36:9c:1e:58:bf:68:c1:1a:85:51:ff: b7:5c:d3:58:43:0a:51:94:5f:40:48:66:3f:9c:9c: 2e:db:60:d9:ba:61:86:0a:e8:36:a9:cf:69:ef:f8: 45:5c:50:2b:b2:7e:eb:2f:24:d1:89:40:8e:d0:59: 8b:b6:a3:1e:05:0d:2a:fe:5a:e9:96:66:56:b1:cc: 4f:c3:38:d4:9b:d4:3a:50:9a:74:66:d3:5e:e5:f1: 1a:a9:0d:ec:af:a5:72:02:71:69:46:b7:fc:a0:f9: dd:50:a5:2f:eb:1b:6e:11:11:8e:81:76:8e:e3:43: 35:3c:e0:f0:a9:e7:d0:bf:34:0a:fa:2a:2c:96:4f: e3:70:07:93:36:0e:95:c0:d8:7b:1d:ce:26:41:d9: b1:45:9b:46:ea:5a:56:f7:7b:9e:89:a1:04:a3:7a: fd:98:94:e4:ad:ad:57:5a:bc:68:1d:e4:ab:bc:80: e2:27:57:b7:c6:ad:5c:c6:8a:b2:cc:e6:17:c9:66: a2:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E0:14:E6:ED:03:53:7E:45:35:65:D0:6E:7B:8A:31:AA:8A:05:25:A1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0bb29378-45f0-49d3-a6af-573be7dca6d0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0bb29378-45f0-49d3-a6af-573be7dca6d0/0/E014E6ED03537E453565D06E7B8A31AA8A0525A1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.38.0/23 Signature Algorithm: sha256WithRSAEncryption 65:08:e1:2a:82:5d:f2:1d:b9:9d:fd:11:77:d2:51:33:5c:9b: 40:d1:a1:41:f8:3c:38:c7:64:d1:c5:54:14:18:c1:02:22:f7: 24:18:e5:53:17:03:ba:1a:4b:9d:7b:ab:7b:2c:ae:05:76:8f: 08:37:e2:c8:2f:38:d5:cb:32:c4:e6:2d:ac:bc:86:87:23:5c: 43:bc:02:aa:4e:13:4d:6f:78:e4:0d:5b:9a:9d:a0:8b:89:04: 1a:31:03:52:17:61:15:13:02:4e:e7:e5:4f:e1:42:e1:ca:13: 6e:c9:a6:12:74:c2:1d:49:2c:12:ff:d0:c8:74:6f:21:be:8a: 9a:2d:90:51:d4:8a:9e:50:1e:9e:30:ab:d5:f1:a2:7e:d5:bd: 83:69:f4:52:c5:4b:bc:4e:fb:3f:13:f3:42:dd:94:65:da:df: 99:50:79:84:07:e7:59:93:0c:08:34:5a:3f:62:b9:2a:ea:dc: c7:5a:cb:43:19:51:2d:fc:24:3a:13:47:04:e4:f6:f9:d6:52: 7a:9b:25:c8:e6:f6:91:66:f5:d5:98:32:b5:3d:2f:2c:ca:9e: 02:f6:a7:88:68:c2:92:41:d3:75:50:8d:87:cc:f3:e8:9e:77: e1:b0:e3:cc:43:37:55:69:31:26:81:73:d1:91:77:8e:28:79: 9a:5c:7a:9f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPiIa49e5PZPZtakrsmfy0dtm/dAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgzMTEwMzgwM1oX DTI1MDgzMDEwNDMwM1owMzExMC8GA1UEAxMoRTAxNEU2RUQwMzUzN0U0NTM1NjVE MDZFN0I4QTMxQUE4QTA1MjVBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ169cRc9vlKuTxPi6CmH+PWfZ8Yl5FykcCDGbK477ZiuggXYzoDgXYnmvEV oYE+pH40qtMUa0BUwH2Cnnh3MTacHli/aMEahVH/t1zTWEMKUZRfQEhmP5ycLttg 2bphhgroNqnPae/4RVxQK7J+6y8k0YlAjtBZi7ajHgUNKv5a6ZZmVrHMT8M41JvU OlCadGbTXuXxGqkN7K+lcgJxaUa3/KD53VClL+sbbhERjoF2juNDNTzg8Knn0L80 CvoqLJZP43AHkzYOlcDYex3OJkHZsUWbRupaVvd7nomhBKN6/ZiU5K2tV1q8aB3k q7yA4idXt8atXMaKsszmF8lmoisCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOAU5u0DU35FNWXQbnuKMaqKBSWhMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wYmIyOTM3OC00NWYwLTQ5ZDMtYTZhZi01NzNiZTdkY2E2ZDAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiYjI5Mzc4 LTQ1ZjAtNDlkMy1hNmFmLTU3M2JlN2RjYTZkMC8wL0UwMTRFNkVEMDM1MzdFNDUz NTY1RDA2RTdCOEEzMUFBOEEwNTI1QTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnryYwDQYJKoZIhvcNAQELBQADggEBAGUI4SqCXfIduZ39EXfSUTNcm0DRoUH4 PDjHZNHFVBQYwQIi9yQY5VMXA7oaS517q3ssrgV2jwg34sgvONXLMsTmLay8hocj XEO8AqpOE01veOQNW5qdoIuJBBoxA1IXYRUTAk7n5U/hQuHKE27JphJ0wh1JLBL/ 0Mh0byG+ipotkFHUip5QHp4wq9Xxon7VvYNp9FLFS7xO+z8T80LdlGXa35lQeYQH 51mTDAg0Wj9iuSrq3Mday0MZUS38JDoTRwTk9vnWUnqbJcjm9pFm9dWYMrU9LyzK ngL2p4howpJB03VQjYfM8+ied+Gw48xDN1VpMSaBc9GRd44oeZpcep8= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:31 2024 by rpki-client on console-fra.rpki-client.org