$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.cer File: EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.cer (raw, json) Hash identifier: n2IMHHGfoR5KiyWA1Mr6QVhR9j7+ViqzN/HvE6/90Jk= Subject key identifier: EA:5E:33:0B:F8:DC:FF:6D:09:DF:49:07:4B:46:B2:2E:BD:FB:D4:54 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 65705AF81B81885396CC599F1DBD39A072001D1F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.mft caRepository: rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 25 Oct 2024 04:30:49 +0000 Certificate not after: Fri 24 Oct 2025 04:35:49 +0000 Subordinate resources: IP: 202.47.92.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:70:5a:f8:1b:81:88:53:96:cc:59:9f:1d:bd:39:a0:72:00:1d:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 25 04:30:49 2024 GMT Not After : Oct 24 04:35:49 2025 GMT Subject: CN=EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:87:a7:52:8d:be:43:cd:34:8b:54:64:db:82: b1:57:a7:0a:9b:93:9c:02:dc:4e:b5:17:aa:b0:d4: 68:ca:25:60:62:8f:8e:12:0c:eb:d9:7d:bc:ec:84: 56:cc:d6:50:4a:70:64:22:57:fa:8f:e1:72:70:68: 82:68:ab:96:b8:ab:c4:a5:af:bc:58:57:c5:d7:90: b8:1e:5a:cf:86:30:0a:3b:9a:b1:4f:a6:b7:ec:01: e9:e4:a6:f4:f6:28:1b:6f:b4:e7:01:b6:7d:15:7f: fb:9a:bb:8c:5d:72:93:ce:39:7d:77:e4:e5:2a:98: 92:ea:f9:dc:de:1a:48:23:06:7f:d9:d7:6c:5b:e9: 4f:2f:bd:c5:24:bd:3c:72:d6:a9:6f:58:70:ca:0a: f0:d9:1e:e8:83:3e:74:93:de:0e:bd:c3:3d:07:eb: 07:b9:79:b5:6e:01:03:b4:c2:e8:f8:d1:01:93:4d: af:70:c0:d9:63:62:3f:7e:76:2b:30:b9:f0:5b:5b: 2d:4d:9d:7e:87:ac:a0:07:96:b7:cb:bb:fa:5f:6b: 3c:5a:d7:5c:aa:f7:ba:60:ab:30:80:42:45:91:02: ba:06:3f:62:c1:5c:b3:2d:13:43:85:0c:93:ff:ef: 40:be:41:d0:c9:90:7b:72:19:31:24:34:6b:f9:80: 97:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: EA:5E:33:0B:F8:DC:FF:6D:09:DF:49:07:4B:46:B2:2E:BD:FB:D4:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a371db9b-7c40-4966-991b-5138b3693246/0/EA5E330BF8DCFF6D09DF49074B46B22EBDFBD454.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.47.92.0/23 Signature Algorithm: sha256WithRSAEncryption 80:8f:49:10:7a:55:97:87:15:3f:bc:e5:6f:b7:96:4c:1d:1a: a2:17:aa:ee:35:0a:1a:24:ab:87:41:85:f4:ee:6d:4c:66:ed: 33:b3:00:85:a4:7b:f3:15:f7:70:d5:ae:b4:ed:28:9a:69:74: d5:60:2f:c4:32:e1:fb:c7:a0:09:55:88:ce:58:49:b1:3a:f6: 12:b8:1a:33:d7:13:18:d2:86:53:fb:3b:bb:bc:f4:da:d2:b6: 8a:fa:55:fe:54:05:8b:84:b7:9a:43:f5:f3:63:c8:ae:5e:5d: 1a:90:e5:83:82:48:a0:cf:a4:c5:04:a3:f2:94:f9:3c:8f:bc: 9d:12:66:3e:f5:4b:7d:53:1c:d8:fd:6a:12:91:07:e4:30:9a: 4f:ab:6e:07:8e:fd:25:c9:1b:45:49:91:f7:27:74:8c:11:55: 8e:73:ad:19:2b:03:55:e7:d5:29:be:c9:ee:5d:c1:44:c3:c6: 8d:2a:4c:59:28:2e:48:11:d6:43:4d:8f:c7:f7:55:9e:c8:6c: bd:fc:d5:8a:9b:6c:4d:92:61:a0:8d:3c:52:f4:9e:56:23:d8: c3:36:41:23:ea:8b:7b:49:8f:53:a7:d1:07:67:b7:7c:c6:e8: 1a:2b:4f:40:8b:e2:8d:28:d4:b8:2e:39:51:23:02:45:a7:ba: 88:03:33:c7 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZXBa+BuBiFOWzFmfHb05oHIAHR8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyNTA0MzA0OVoX DTI1MTAyNDA0MzU0OVowMzExMC8GA1UEAxMoRUE1RTMzMEJGOERDRkY2RDA5REY0 OTA3NEI0NkIyMkVCREZCRDQ1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKiHp1KNvkPNNItUZNuCsVenCpuTnALcTrUXqrDUaMolYGKPjhIM69l9vOyE VszWUEpwZCJX+o/hcnBogmirlrirxKWvvFhXxdeQuB5az4YwCjuasU+mt+wB6eSm 9PYoG2+05wG2fRV/+5q7jF1yk845fXfk5SqYkur53N4aSCMGf9nXbFvpTy+9xSS9 PHLWqW9YcMoK8Nke6IM+dJPeDr3DPQfrB7l5tW4BA7TC6PjRAZNNr3DA2WNiP352 KzC58FtbLU2dfoesoAeWt8u7+l9rPFrXXKr3umCrMIBCRZECugY/YsFcsy0TQ4UM k//vQL5B0MmQe3IZMSQ0a/mAlzMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOpeMwv43P9tCd9JB0tGsi69+9RUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hMzcxZGI5Yi03YzQwLTQ5NjYtOTkxYi01MTM4YjM2OTMyNDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2EzNzFkYjli LTdjNDAtNDk2Ni05OTFiLTUxMzhiMzY5MzI0Ni8wL0VBNUUzMzBCRjhEQ0ZGNkQw OURGNDkwNzRCNDZCMjJFQkRGQkQ0NTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHKL1wwDQYJKoZIhvcNAQELBQADggEBAICPSRB6VZeHFT+85W+3lkwdGqIXqu41 Chokq4dBhfTubUxm7TOzAIWke/MV93DVrrTtKJppdNVgL8Qy4fvHoAlViM5YSbE6 9hK4GjPXExjShlP7O7u89NrStor6Vf5UBYuEt5pD9fNjyK5eXRqQ5YOCSKDPpMUE o/KU+TyPvJ0SZj71S31THNj9ahKRB+Qwmk+rbgeO/SXJG0VJkfcndIwRVY5zrRkr A1Xn1Sm+ye5dwUTDxo0qTFkoLkgR1kNNj8f3VZ7IbL381YqbbE2SYaCNPFL0nlYj 2MM2QSPqi3tJj1On0Qdnt3zG6BorT0CL4o0o1LguOVEjAkWnuogDM8c= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:52 2024 by rpki-client on console-ams.rpki-client.org