$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.cer File: E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.cer (raw, json) Hash identifier: ajyfBHVp6a6sehlvRauAWaOagelMfhozhgyWEN0qI1k= Subject key identifier: E1:B0:3F:9E:EA:71:C0:0F:69:D8:38:BC:1D:AA:D1:13:A8:BD:F6:DF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 8605C618E2156788144035FC4E6A8E3C1E44A5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0/E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.mft caRepository: rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 31 May 2024 18:13:45 +0000 Certificate not after: Fri 30 May 2025 18:18:45 +0000 Subordinate resources: IP: 103.152.94.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 86:05:c6:18:e2:15:67:88:14:40:35:fc:4e:6a:8e:3c:1e:44:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 31 18:13:45 2024 GMT Not After : May 30 18:18:45 2025 GMT Subject: CN=E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:59:06:12:24:1c:d6:09:34:27:7f:a4:10:4c: 56:90:41:36:82:4d:9a:89:ac:72:f2:a8:74:8d:15: 5e:07:21:6b:9d:af:70:bb:79:8d:9f:3d:66:da:d9: 52:22:ff:6a:c1:fd:51:39:f4:e8:d4:d1:1e:21:87: 4b:02:bf:82:42:80:b3:88:a7:ca:ca:7f:af:58:37: 52:f0:93:ae:e8:dc:ce:32:15:ac:de:05:ae:b8:ed: 6f:7c:53:69:89:08:86:b4:4d:94:67:d3:23:f4:bc: a5:65:52:fd:6b:01:6e:fc:a4:75:49:02:ff:55:80: 44:0d:31:9e:69:c6:4a:53:b3:23:e8:38:05:41:6f: bd:8a:58:95:a0:b6:03:3a:ec:40:48:f4:5e:ab:4f: 2f:d3:d2:86:ca:4f:e0:5a:07:88:79:ba:1f:d9:54: 2d:84:91:dd:cc:ce:4c:5e:08:a9:02:3e:56:43:9f: de:0e:8a:57:5f:a8:85:7c:6b:f9:38:05:ad:08:09: 55:15:86:c4:bd:82:6e:f0:63:a0:e8:85:78:85:49: 72:7f:ba:a7:ee:12:3e:63:b9:00:46:06:eb:24:6a: 34:d6:8c:ea:72:1c:5f:30:e7:41:29:67:f4:1c:ca: 0e:77:3e:2b:bc:9c:dd:9e:e7:79:9b:45:01:ab:9b: c1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E1:B0:3F:9E:EA:71:C0:0F:69:D8:38:BC:1D:AA:D1:13:A8:BD:F6:DF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1b3d14cb-ccc2-46d2-8e31-16f5bec0acd8/0/E1B03F9EEA71C00F69D838BC1DAAD113A8BDF6DF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.94.0/23 Signature Algorithm: sha256WithRSAEncryption 46:44:48:bb:58:5e:b3:80:89:58:5e:bd:9d:94:ff:cd:bd:fb: 94:ed:b2:8a:79:7a:90:4b:07:ca:cf:5c:a9:c2:ae:b7:fb:10: 13:b6:11:e9:33:1b:e4:ca:d7:98:ad:d2:84:40:5e:3b:c0:36: 16:a3:36:af:31:24:0a:64:ed:bb:d3:78:9c:26:04:97:d9:8d: 6b:f8:67:d5:18:a3:da:45:fe:8f:31:46:7b:eb:d3:36:b2:eb: 1c:9c:8a:de:40:ee:44:0c:87:a4:3c:c7:78:9d:67:7b:ee:a1: 21:0b:4d:e0:ee:cf:9b:1d:05:09:ab:b0:7d:89:a9:60:1e:fd: ef:d1:41:3b:c1:26:3c:f5:b3:80:1d:07:8f:f5:3b:62:75:83: a6:b3:49:5e:1d:01:57:77:0b:d5:32:72:d9:4e:a6:b0:55:cc: e0:b6:ac:a2:29:82:59:b7:3c:88:fd:76:fc:73:93:35:6c:67: 37:ad:b5:e0:36:d8:4d:87:ad:34:ce:bd:78:60:17:88:6b:2a: f5:a3:5e:58:3b:e4:4a:e5:e0:c1:f3:87:91:5c:57:37:78:44: d3:4a:c5:8d:5e:97:db:73:f1:2b:fb:bc:e1:d2:22:a4:92:42: 7a:cd:a1:7c:10:68:54:41:d8:b1:99:aa:d9:49:71:1c:68:12: 60:8f:92:29 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAIYFxhjiFWeIFEA1/E5qjjweRKUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUzMTE4MTM0NVoX DTI1MDUzMDE4MTg0NVowMzExMC8GA1UEAxMoRTFCMDNGOUVFQTcxQzAwRjY5RDgz OEJDMURBQUQxMTNBOEJERjZERjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpZBhIkHNYJNCd/pBBMVpBBNoJNmomscvKodI0VXgcha52vcLt5jZ89ZtrZ UiL/asH9UTn06NTRHiGHSwK/gkKAs4inysp/r1g3UvCTrujczjIVrN4Frrjtb3xT aYkIhrRNlGfTI/S8pWVS/WsBbvykdUkC/1WARA0xnmnGSlOzI+g4BUFvvYpYlaC2 AzrsQEj0XqtPL9PShspP4FoHiHm6H9lULYSR3czOTF4IqQI+VkOf3g6KV1+ohXxr +TgFrQgJVRWGxL2CbvBjoOiFeIVJcn+6p+4SPmO5AEYG6yRqNNaM6nIcXzDnQSln 9BzKDnc+K7yc3Z7neZtFAaubwWkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOGwP57qccAPadg4vB2q0ROovfbfMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xYjNkMTRjYi1jY2MyLTQ2ZDItOGUzMS0xNmY1YmVjMGFjZDgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiM2QxNGNi LWNjYzItNDZkMi04ZTMxLTE2ZjViZWMwYWNkOC8wL0UxQjAzRjlFRUE3MUMwMEY2 OUQ4MzhCQzFEQUFEMTEzQThCREY2REYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnmF4wDQYJKoZIhvcNAQELBQADggEBAEZESLtYXrOAiVhevZ2U/829+5Ttsop5 epBLB8rPXKnCrrf7EBO2EekzG+TK15it0oRAXjvANhajNq8xJApk7bvTeJwmBJfZ jWv4Z9UYo9pF/o8xRnvr0zay6xycit5A7kQMh6Q8x3idZ3vuoSELTeDuz5sdBQmr sH2JqWAe/e/RQTvBJjz1s4AdB4/1O2J1g6azSV4dAVd3C9UyctlOprBVzOC2rKIp glm3PIj9dvxzkzVsZzetteA22E2HrTTOvXhgF4hrKvWjXlg75Erl4MHzh5FcVzd4 RNNKxY1el9tz8Sv7vOHSIqSSQnrNoXwQaFRB2LGZqtlJcRxoEmCPkik= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:32 2024 by rpki-client on console-fra.rpki-client.org