$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E025EB5354ADB573B451D02820EA68FD4CAE920A.cer File: E025EB5354ADB573B451D02820EA68FD4CAE920A.cer (raw, json) Hash identifier: SD5hLq3qBOfH3aOLMcoQnzFtz3+mj5YD0Eh9AvHFsCI= Subject key identifier: E0:25:EB:53:54:AD:B5:73:B4:51:D0:28:20:EA:68:FD:4C:AE:92:0A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 51EFA63397276F6AB3A53A1FC6A53A21E83BDCAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d14a2a41-2838-4369-997b-4299f17eee90/0/E025EB5354ADB573B451D02820EA68FD4CAE920A.mft caRepository: rsync://repo-rpki.idnic.net/repo/d14a2a41-2838-4369-997b-4299f17eee90/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 28 May 2024 07:30:57 +0000 Certificate not after: Tue 27 May 2025 07:35:57 +0000 Subordinate resources: IP: 103.230.81.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ef:a6:33:97:27:6f:6a:b3:a5:3a:1f:c6:a5:3a:21:e8:3b:dc:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 28 07:30:57 2024 GMT Not After : May 27 07:35:57 2025 GMT Subject: CN=E025EB5354ADB573B451D02820EA68FD4CAE920A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:e2:e1:e4:04:6d:bf:b1:07:7f:4a:57:c8:95: 27:c6:2d:a7:00:52:7c:ee:bf:d5:9b:98:ea:fe:db: b1:42:43:67:b2:62:d0:60:6c:0a:f5:95:cb:1d:aa: 24:0e:14:26:89:5a:9e:66:bb:d0:42:e4:ac:e2:c2: 02:2d:83:18:0d:3a:a2:c7:aa:7d:b0:c6:cc:31:ea: e5:11:35:65:39:18:8d:80:46:cb:fc:32:9c:36:1a: 35:c9:6f:47:f1:4d:5c:5b:89:19:4b:e4:3f:0a:82: b1:c9:79:1b:7a:96:31:80:b4:35:0e:72:93:41:95: c1:ec:34:65:97:2b:3d:58:2e:27:6e:73:65:02:23: 11:df:c4:62:4b:4b:04:ca:29:52:4d:3c:d5:52:06: 83:a5:0c:6f:33:f2:15:c9:2d:01:04:86:5f:24:31: 97:3b:ac:47:b5:0c:42:39:26:bf:b5:a2:5d:29:3d: 69:68:8d:2e:97:20:e7:68:50:b4:bb:c5:a0:06:26: 20:e5:07:f5:a7:5f:10:bd:ca:6c:45:02:97:6d:3f: 6f:8e:45:4d:c3:67:f2:46:c1:b0:9d:19:ac:76:b9: 9c:69:8c:69:5b:83:a5:06:b6:ad:da:94:b0:2c:a5: 89:a0:35:c6:f6:d2:07:bf:d9:81:06:0c:f9:22:2d: 13:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E0:25:EB:53:54:AD:B5:73:B4:51:D0:28:20:EA:68:FD:4C:AE:92:0A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d14a2a41-2838-4369-997b-4299f17eee90/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d14a2a41-2838-4369-997b-4299f17eee90/0/E025EB5354ADB573B451D02820EA68FD4CAE920A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.230.81.0/24 Signature Algorithm: sha256WithRSAEncryption 56:31:8c:ef:7f:ae:8b:2f:8e:f2:98:ac:72:23:4a:50:da:59: 70:8e:2e:c8:f3:f1:82:a7:16:9c:af:0c:f5:92:d0:43:6e:c8: 96:49:80:50:23:0d:c6:72:f4:86:67:1e:b8:3a:b6:6f:4f:dc: 00:71:a1:14:89:e6:3e:3e:29:29:fb:56:14:77:79:a6:88:a3: fb:a0:2e:9c:02:43:25:55:dd:d2:83:da:9d:1e:ce:4a:4b:80: db:96:69:e3:1d:89:19:48:97:71:a1:17:b9:a3:c4:73:03:ec: da:d6:c9:24:cb:47:89:dc:0d:b3:b1:36:b6:ec:19:1b:83:fa: 8c:5d:db:5c:21:22:38:0a:5c:78:b7:e5:d7:a6:80:85:1f:ea: 10:f4:8e:82:99:e4:1c:10:97:6b:f7:6e:52:69:b7:f0:4e:c3: 10:95:52:6b:7e:fc:c2:88:69:a7:f9:a1:bb:da:02:d8:7b:0a: f1:2a:26:1d:58:12:d0:1e:a1:0e:a5:92:74:80:2f:70:95:21: ef:db:93:26:d0:a8:74:89:47:df:4d:43:8e:cf:03:b7:d1:4f: a9:6d:ed:5f:e6:41:2d:55:3a:d2:6a:84:d8:c5:98:76:80:86: db:1f:cc:95:30:be:59:e9:aa:bb:f6:3e:ad:0b:7e:c6:52:db: c5:5b:be:4d -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUe+mM5cnb2qzpTofxqU6Ieg73KswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyODA3MzA1N1oX DTI1MDUyNzA3MzU1N1owMzExMC8GA1UEAxMoRTAyNUVCNTM1NEFEQjU3M0I0NTFE MDI4MjBFQTY4RkQ0Q0FFOTIwQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALLi4eQEbb+xB39KV8iVJ8YtpwBSfO6/1ZuY6v7bsUJDZ7Ji0GBsCvWVyx2q JA4UJolanma70ELkrOLCAi2DGA06oseqfbDGzDHq5RE1ZTkYjYBGy/wynDYaNclv R/FNXFuJGUvkPwqCscl5G3qWMYC0NQ5yk0GVwew0ZZcrPVguJ25zZQIjEd/EYktL BMopUk081VIGg6UMbzPyFcktAQSGXyQxlzusR7UMQjkmv7WiXSk9aWiNLpcg52hQ tLvFoAYmIOUH9adfEL3KbEUCl20/b45FTcNn8kbBsJ0ZrHa5nGmMaVuDpQa2rdqU sCyliaA1xvbSB7/ZgQYM+SItEzUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOAl61NUrbVztFHQKCDqaP1MrpIKMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kMTRhMmE0MS0yODM4LTQzNjktOTk3Yi00Mjk5ZjE3ZWVlOTAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxNGEyYTQx LTI4MzgtNDM2OS05OTdiLTQyOTlmMTdlZWU5MC8wL0UwMjVFQjUzNTRBREI1NzNC NDUxRDAyODIwRUE2OEZENENBRTkyMEEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn5lEwDQYJKoZIhvcNAQELBQADggEBAFYxjO9/rosvjvKYrHIjSlDaWXCOLsjz 8YKnFpyvDPWS0ENuyJZJgFAjDcZy9IZnHrg6tm9P3ABxoRSJ5j4+KSn7VhR3eaaI o/ugLpwCQyVV3dKD2p0ezkpLgNuWaeMdiRlIl3GhF7mjxHMD7NrWySTLR4ncDbOx NrbsGRuD+oxd21whIjgKXHi35demgIUf6hD0joKZ5BwQl2v3blJpt/BOwxCVUmt+ /MKIaaf5obvaAth7CvEqJh1YEtAeoQ6lknSAL3CVIe/bkybQqHSJR99NQ47PA7fR T6lt7V/mQS1VOtJqhNjFmHaAhtsfzJUwvlnpqrv2Pq0LfsZS28Vbvk0= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:31 2024 by rpki-client on console-fra.rpki-client.org