$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer File: E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer (raw, json) Hash identifier: HReSN1ryguuADkhNbOsEQ+l8FaVX76bHgq7//IVWIsY= Subject key identifier: E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0C51B037C9152CA9E68408C57677A72C257AE9EE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.mft caRepository: rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 23:05:10 +0000 Certificate not after: Mon 30 Jun 2025 23:10:10 +0000 Subordinate resources: IP: 103.108.156.0/22 IP: 2402:6ac0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:51:b0:37:c9:15:2c:a9:e6:84:08:c5:76:77:a7:2c:25:7a:e9:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 23:05:10 2024 GMT Not After : Jun 30 23:10:10 2025 GMT Subject: CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:db:b1:71:38:aa:e3:e7:aa:f8:05:dc:49:63: b9:b3:16:f3:d4:5e:2e:4c:50:d4:31:62:fe:ea:a8: 47:3b:35:b4:02:c0:1e:d5:ca:1a:db:d5:61:b5:9c: 2c:1c:4e:34:08:0d:ff:6f:52:09:b6:47:49:12:b5: 8f:7a:28:f5:86:a3:c6:63:13:a5:72:a3:ca:60:3b: 7f:ae:8e:26:38:32:46:e3:54:9b:52:92:30:fc:83: e8:11:47:0f:aa:1e:20:f3:9e:a7:34:96:cb:f1:02: 6b:10:48:1b:cd:36:f6:4d:86:24:80:5a:97:75:52: c3:65:6e:2a:b4:7a:58:8a:14:8d:61:7b:b4:bd:3a: e4:a1:3f:f7:9b:ac:bb:26:21:bd:67:86:2f:4c:0d: 8c:22:74:8f:29:95:15:d6:cf:a1:5e:f3:e8:fe:8f: 98:e0:80:99:1d:fb:48:b3:37:64:2c:37:d0:ba:b3: 31:7e:30:0b:ec:91:a7:b1:c1:ca:d2:38:40:a1:9c: 5b:b9:f8:eb:0d:a8:52:40:22:2b:cf:a8:f7:ba:0f: 6a:11:f7:c1:97:c9:07:61:00:ca:f3:e9:31:d1:3f: 12:91:d2:e0:13:42:10:35:0a:f4:bd:0a:aa:53:ac: aa:4f:70:04:6c:35:b3:ff:a2:c0:30:05:1c:14:21: e1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.156.0/22 IPv6: 2402:6ac0::/32 Signature Algorithm: sha256WithRSAEncryption 3d:30:67:c0:bd:90:d5:ad:02:9a:2b:d5:f0:5b:7b:7b:8b:d9: 90:e4:e6:49:3e:ae:ec:6b:b6:7d:4f:fe:e1:82:e6:34:1e:7d: 06:a4:bb:60:0c:fa:04:74:ca:22:4a:0c:d2:48:d5:2c:c7:03: a2:fa:8a:f4:d9:b0:24:c3:fe:00:94:4c:3c:c1:1b:f6:e8:2e: e1:97:ab:fc:28:b2:18:2a:ba:43:c6:e7:74:e4:85:1a:50:6d: 32:1e:89:bf:67:0f:b9:c1:b2:38:8a:e9:0f:4f:1d:a5:dc:4d: 0c:89:01:83:c9:66:63:52:f9:27:9a:03:87:e6:27:6b:3a:3a: 50:66:2e:4a:0c:7e:9f:43:f9:86:40:41:e9:d2:3c:be:bd:01: 6d:f9:12:2f:e5:0d:42:08:b6:ce:28:6f:0a:13:c9:8a:96:e1: 43:d3:08:08:ec:d1:4d:c4:f8:82:72:41:0a:a6:ed:66:8a:f9: 28:86:5f:b6:a0:fa:77:3a:c8:68:ec:62:6b:69:0b:d7:9b:dc: 79:d0:92:eb:83:96:4e:7a:46:ee:1b:7e:77:e4:5b:51:6f:ef: e2:1a:a9:b6:20:3f:08:8f:88:6f:e2:5e:50:ec:49:24:ab:9c: 36:09:11:18:ab:04:c5:55:9f:f8:3c:1c:69:93:01:fb:cc:1b: c1:f5:83:7d -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUDFGwN8kVLKnmhAjFdnenLCV66e4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTIzMDUxMFoX DTI1MDYzMDIzMTAxMFowMzExMC8GA1UEAxMoRTcyNjIyQUUwRjY5QjRDREFCQzlD RDIyM0IzRTA2QzdEQzVFMTAxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPbsXE4quPnqvgF3EljubMW89ReLkxQ1DFi/uqoRzs1tALAHtXKGtvVYbWc LBxONAgN/29SCbZHSRK1j3oo9YajxmMTpXKjymA7f66OJjgyRuNUm1KSMPyD6BFH D6oeIPOepzSWy/ECaxBIG8029k2GJIBal3VSw2VuKrR6WIoUjWF7tL065KE/95us uyYhvWeGL0wNjCJ0jymVFdbPoV7z6P6PmOCAmR37SLM3ZCw30LqzMX4wC+yRp7HB ytI4QKGcW7n46w2oUkAiK8+o97oPahH3wZfJB2EAyvPpMdE/EpHS4BNCEDUK9L0K qlOsqk9wBGw1s/+iwDAFHBQh4Q8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOcmIq4PabTNq8nNIjs+BsfcXhAUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZDM1YmY3OS1lODRhLTQwZTAtOGZkNC1mMTY5YzE4NmJlOGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMzViZjc5 LWU4NGEtNDBlMC04ZmQ0LWYxNjljMTg2YmU4Zi8wL0U3MjYyMkFFMEY2OUI0Q0RB QkM5Q0QyMjNCM0UwNkM3REM1RTEwMTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnbJwwDQQCAAIwBwMFACQCasAwDQYJKoZIhvcNAQELBQADggEBAD0wZ8C9kNWt Apor1fBbe3uL2ZDk5kk+ruxrtn1P/uGC5jQefQaku2AM+gR0yiJKDNJI1SzHA6L6 ivTZsCTD/gCUTDzBG/boLuGXq/woshgqukPG53TkhRpQbTIeib9nD7nBsjiK6Q9P HaXcTQyJAYPJZmNS+SeaA4fmJ2s6OlBmLkoMfp9D+YZAQenSPL69AW35Ei/lDUII ts4obwoTyYqW4UPTCAjs0U3E+IJyQQqm7WaK+SiGX7ag+nc6yGjsYmtpC9eb3HnQ kuuDlk56Ru4bfnfkW1Fv7+IaqbYgPwiPiG/iXlDsSSSrnDYJERirBMVVn/g8HGmT AfvMG8H1g30= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:32 2024 by rpki-client on console-fra.rpki-client.org