$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E64D2B2A02A172B64A71F75C753571C841216A21.cer File: E64D2B2A02A172B64A71F75C753571C841216A21.cer (raw, json) Hash identifier: gSWYXFwu97bkmf9lPhyhypueDRqPiIPFXqsE6o0EiVk= Subject key identifier: E6:4D:2B:2A:02:A1:72:B6:4A:71:F7:5C:75:35:71:C8:41:21:6A:21 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 17610A9BEBD52DCE10FF3B0B06A1E870061B4861 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0/E64D2B2A02A172B64A71F75C753571C841216A21.mft caRepository: rsync://repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 16 Aug 2024 08:45:39 +0000 Certificate not after: Fri 15 Aug 2025 08:50:39 +0000 Subordinate resources: IP: 103.177.56.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:61:0a:9b:eb:d5:2d:ce:10:ff:3b:0b:06:a1:e8:70:06:1b:48:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 16 08:45:39 2024 GMT Not After : Aug 15 08:50:39 2025 GMT Subject: CN=E64D2B2A02A172B64A71F75C753571C841216A21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d3:f2:95:90:94:11:5c:a2:66:67:87:ce:20: d3:9d:bf:a0:41:5e:04:10:4a:ae:ff:67:b3:d6:3b: 19:a0:97:ec:cc:d0:a4:91:c2:78:ad:18:6f:2d:cd: 04:3f:00:9d:77:5f:8c:76:64:f1:20:1a:b9:e5:58: 3a:1d:78:73:47:16:1a:c2:e1:fc:2b:f1:ed:a6:c3: a3:33:02:b6:5a:9f:da:56:7f:26:19:91:74:2c:50: 57:7c:7c:1c:f9:f3:d9:45:8c:07:ea:11:52:7c:a4: 31:58:d3:56:90:a8:32:8e:26:5d:be:a6:72:18:8f: 86:67:f9:23:ce:86:47:1d:9e:a1:ec:40:29:2d:a0: 82:7c:03:fc:a2:48:3c:51:43:a4:53:e4:bb:e7:cc: c6:f3:4d:2f:32:ea:58:d2:22:54:55:ed:4a:7d:d9: 81:b5:ba:23:5a:1e:56:3d:e1:df:9f:d5:b6:fb:15: 22:64:dc:c2:68:e3:4d:dc:a0:2c:4f:7e:d2:b4:4f: 9e:53:ba:f0:8e:59:41:c7:16:97:1d:f2:66:c2:98: 6e:e7:af:0c:25:9f:b8:9e:35:f3:ba:0a:1a:8e:f7: 17:a5:8f:bf:90:d4:3a:ae:35:25:6b:26:f7:7b:69: 1d:b5:0b:f4:33:3d:fd:c2:8c:23:8d:8f:52:fe:49: e7:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E6:4D:2B:2A:02:A1:72:B6:4A:71:F7:5C:75:35:71:C8:41:21:6A:21 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/96750bf9-9f58-428a-8952-8b5555ef7ca7/0/E64D2B2A02A172B64A71F75C753571C841216A21.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.56.0/23 Signature Algorithm: sha256WithRSAEncryption 78:05:55:20:26:34:2d:6e:24:37:60:c7:ed:fc:40:12:93:1e: ab:1e:bc:9c:d5:86:41:c5:94:db:b9:58:4d:00:36:59:00:35: 4e:ea:6f:d8:36:99:db:a0:fc:0d:59:c1:08:fc:08:37:5d:a4: 8e:ab:2c:fa:1b:2a:eb:80:28:8c:c9:79:d5:c3:a8:21:e0:89: c1:01:ed:41:04:ea:ac:71:6d:eb:12:d8:3f:d1:52:08:e6:58: 84:e0:77:5f:e4:18:23:1d:d7:11:b4:3c:4d:0f:81:17:74:a1: 82:f1:37:96:f8:0e:e1:81:08:f7:cc:50:72:03:3d:e3:52:97: 6e:c9:9f:3e:a4:d7:d7:70:e2:e0:bc:4e:5b:88:4e:86:23:92: 3a:47:a5:64:a6:ce:30:10:6b:57:ff:2f:6c:d0:7e:b6:7c:0f: c8:e1:1b:85:3c:b6:97:3d:55:97:7d:27:fe:bc:39:51:57:be: a6:4a:20:65:50:c7:f3:c2:4d:d6:5c:13:0c:f5:f0:0d:7b:d2: 69:2c:2b:40:ec:f5:ac:4a:7f:09:35:99:f1:f9:20:a3:6c:fc: 01:49:a0:b7:cb:9f:b3:c1:6d:3a:38:a6:bf:4e:09:e2:c8:f7: dd:df:af:8c:a7:d7:88:82:31:2d:c4:87:ef:62:b5:e9:f9:20: 87:d6:7a:2e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUF2EKm+vVLc4Q/zsLBqHocAYbSGEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxNjA4NDUzOVoX DTI1MDgxNTA4NTAzOVowMzExMC8GA1UEAxMoRTY0RDJCMkEwMkExNzJCNjRBNzFG NzVDNzUzNTcxQzg0MTIxNkEyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMjT8pWQlBFcomZnh84g052/oEFeBBBKrv9ns9Y7GaCX7MzQpJHCeK0Yby3N BD8AnXdfjHZk8SAaueVYOh14c0cWGsLh/Cvx7abDozMCtlqf2lZ/JhmRdCxQV3x8 HPnz2UWMB+oRUnykMVjTVpCoMo4mXb6mchiPhmf5I86GRx2eoexAKS2ggnwD/KJI PFFDpFPku+fMxvNNLzLqWNIiVFXtSn3ZgbW6I1oeVj3h35/VtvsVImTcwmjjTdyg LE9+0rRPnlO68I5ZQccWlx3yZsKYbuevDCWfuJ4187oKGo73F6WPv5DUOq41JWsm 93tpHbUL9DM9/cKMI42PUv5J57sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOZNKyoCoXK2SnH3XHU1cchBIWohMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85Njc1MGJmOS05ZjU4LTQyOGEtODk1Mi04YjU1NTVlZjdjYTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk2NzUwYmY5 LTlmNTgtNDI4YS04OTUyLThiNTU1NWVmN2NhNy8wL0U2NEQyQjJBMDJBMTcyQjY0 QTcxRjc1Qzc1MzU3MUM4NDEyMTZBMjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsTgwDQYJKoZIhvcNAQELBQADggEBAHgFVSAmNC1uJDdgx+38QBKTHqsevJzV hkHFlNu5WE0ANlkANU7qb9g2mdug/A1ZwQj8CDddpI6rLPobKuuAKIzJedXDqCHg icEB7UEE6qxxbesS2D/RUgjmWITgd1/kGCMd1xG0PE0PgRd0oYLxN5b4DuGBCPfM UHIDPeNSl27Jnz6k19dw4uC8TluIToYjkjpHpWSmzjAQa1f/L2zQfrZ8D8jhG4U8 tpc9VZd9J/68OVFXvqZKIGVQx/PCTdZcEwz18A170mksK0Ds9axKfwk1mfH5IKNs /AFJoLfLn7PBbTo4pr9OCeLI993fr4yn14iCMS3Eh+9iten5IIfWei4= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:32 2024 by rpki-client on console-fra.rpki-client.org