$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E4C33FFA425046D044E7F503AC8065468BAF739E.cer File: E4C33FFA425046D044E7F503AC8065468BAF739E.cer (raw, json) Hash identifier: uF/tW2Hz9QQ/5MRCNFGNuZz7/rNqRhTAH3LnO+Z/4iY= Subject key identifier: E4:C3:3F:FA:42:50:46:D0:44:E7:F5:03:AC:80:65:46:8B:AF:73:9E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 8280D8EDC8D10E1F70FA862873495878B2A980 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f0976e26-9513-48ff-9f7f-ea3fdcf3e2e8/0/E4C33FFA425046D044E7F503AC8065468BAF739E.mft caRepository: rsync://repo-rpki.idnic.net/repo/f0976e26-9513-48ff-9f7f-ea3fdcf3e2e8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 15 Oct 2024 19:37:52 +0000 Certificate not after: Tue 14 Oct 2025 19:42:52 +0000 Subordinate resources: IP: 103.99.27.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 82:80:d8:ed:c8:d1:0e:1f:70:fa:86:28:73:49:58:78:b2:a9:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 15 19:37:52 2024 GMT Not After : Oct 14 19:42:52 2025 GMT Subject: CN=E4C33FFA425046D044E7F503AC8065468BAF739E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e3:40:38:2d:46:8e:68:58:32:f3:cb:dc:bb: 7c:45:cf:53:71:9b:e3:29:47:27:1f:58:9a:26:7f: 2d:b8:4d:dd:98:20:ac:b0:6d:88:02:43:26:ec:36: 4f:81:1d:17:30:22:f9:a6:6f:56:71:7c:39:77:88: 1d:3f:4a:5f:68:60:74:86:2a:f5:e9:c7:df:78:04: 31:da:c3:54:24:46:7b:5c:69:e2:05:ab:6b:5e:dd: 6f:d0:67:35:45:31:9c:6f:be:72:a2:1f:45:7d:de: 2c:2b:1b:f7:9c:fd:2c:c1:ce:8f:c0:0e:7d:ef:3b: e5:07:5a:47:63:4b:57:b2:1d:64:61:6c:16:4f:4e: cf:7b:1c:3f:cd:cf:66:56:87:1d:c2:b1:33:2f:09: f9:90:21:a8:6a:85:ec:3b:70:59:db:4d:fb:2b:02: 81:1e:6d:99:8a:16:94:5c:b0:1b:36:18:ea:ba:7e: a8:5c:27:6c:9d:e3:4b:fe:ea:cd:7d:7d:0c:3f:79: ab:e7:6f:6a:c8:40:01:cc:f5:7c:8c:eb:0d:94:14: f0:c5:32:73:7f:95:e9:a1:ce:35:fb:22:32:61:c0: 77:51:c5:de:1f:e4:eb:b1:50:81:87:df:a3:ec:c6: dc:0c:e7:ca:80:1b:2a:47:e0:21:9d:b2:60:3b:04: 06:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E4:C3:3F:FA:42:50:46:D0:44:E7:F5:03:AC:80:65:46:8B:AF:73:9E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f0976e26-9513-48ff-9f7f-ea3fdcf3e2e8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f0976e26-9513-48ff-9f7f-ea3fdcf3e2e8/0/E4C33FFA425046D044E7F503AC8065468BAF739E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.99.27.0/24 Signature Algorithm: sha256WithRSAEncryption 75:89:3d:fa:30:70:49:6a:75:97:53:1a:3d:bd:6d:de:ed:4a: 27:6c:a3:c2:22:25:f8:4d:5c:78:39:73:c5:eb:65:02:22:fc: bb:af:0d:64:5e:d3:e1:ad:82:be:04:82:ac:1f:69:69:fc:95: 03:24:78:09:48:c5:e3:2d:be:ac:f1:74:00:52:25:f7:ae:1a: 6c:6e:90:ff:3a:f8:6e:40:de:7d:e2:fe:aa:75:2b:f5:43:d0: fd:c0:90:dd:cb:f5:64:47:6e:d4:73:cc:47:e1:26:d3:e1:7c: cf:79:e3:86:12:c4:cf:27:b9:ad:7d:ad:60:2d:4f:ff:5a:cd: 35:23:25:b0:b4:c4:6a:2f:dd:6f:0c:5f:35:b7:51:eb:20:19: bf:85:cd:d5:83:a1:c2:38:e2:a8:61:0a:e7:a8:8b:8c:5f:1e: 02:30:e3:89:b0:c3:eb:bd:3e:ec:0c:fe:40:a5:d7:ba:56:8f: ab:21:b4:64:0a:77:08:86:98:09:0f:8d:2d:d9:5b:aa:47:7a: 73:44:a6:4a:e3:da:02:22:e6:5d:b3:35:e9:0d:37:f3:b3:25: dc:5d:0f:79:90:36:43:82:57:29:84:09:d2:2d:9e:03:db:1f: 4d:37:d3:80:dd:a5:ce:a0:f7:76:de:89:3b:5a:6e:b5:5b:62: 7d:3c:c2:c6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUAIKA2O3I0Q4fcPqGKHNJWHiyqYAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNTE5Mzc1MloX DTI1MTAxNDE5NDI1MlowMzExMC8GA1UEAxMoRTRDMzNGRkE0MjUwNDZEMDQ0RTdG NTAzQUM4MDY1NDY4QkFGNzM5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTjQDgtRo5oWDLzy9y7fEXPU3Gb4ylHJx9YmiZ/LbhN3ZggrLBtiAJDJuw2 T4EdFzAi+aZvVnF8OXeIHT9KX2hgdIYq9enH33gEMdrDVCRGe1xp4gWra17db9Bn NUUxnG++cqIfRX3eLCsb95z9LMHOj8AOfe875QdaR2NLV7IdZGFsFk9Oz3scP83P ZlaHHcKxMy8J+ZAhqGqF7DtwWdtN+ysCgR5tmYoWlFywGzYY6rp+qFwnbJ3jS/7q zX19DD95q+dvashAAcz1fIzrDZQU8MUyc3+V6aHONfsiMmHAd1HF3h/k67FQgYff o+zG3AznyoAbKkfgIZ2yYDsEBk8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOTDP/pCUEbQROf1A6yAZUaLr3OeMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMDk3NmUyNi05NTEzLTQ4ZmYtOWY3Zi1lYTNmZGNmM2UyZTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YwOTc2ZTI2 LTk1MTMtNDhmZi05ZjdmLWVhM2ZkY2YzZTJlOC8wL0U0QzMzRkZBNDI1MDQ2RDA0 NEU3RjUwM0FDODA2NTQ2OEJBRjczOUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnYxswDQYJKoZIhvcNAQELBQADggEBAHWJPfowcElqdZdTGj29bd7tSidso8Ii JfhNXHg5c8XrZQIi/LuvDWRe0+Gtgr4EgqwfaWn8lQMkeAlIxeMtvqzxdABSJfeu GmxukP86+G5A3n3i/qp1K/VD0P3AkN3L9WRHbtRzzEfhJtPhfM9544YSxM8nua19 rWAtT/9azTUjJbC0xGov3W8MXzW3UesgGb+FzdWDocI44qhhCueoi4xfHgIw44mw w+u9PuwM/kCl17pWj6shtGQKdwiGmAkPjS3ZW6pHenNEpkrj2gIi5l2zNekNN/Oz JdxdD3mQNkOCVymECdItngPbH00304Ddpc6g93beiTtabrVbYn08wsY= -----END CERTIFICATE-----Generated at Mon Nov 25 13:02:01 2024 by rpki-client on console-fra.rpki-client.org