$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/EFA4BF9A0D2DD57446126C57F39AF10838E0C675.cer File: EFA4BF9A0D2DD57446126C57F39AF10838E0C675.cer (raw, json) Hash identifier: QHyD9rrbhzH2Omzk+2ACaDCw4pQdpUck1duM6lUFmvo= Subject key identifier: EF:A4:BF:9A:0D:2D:D5:74:46:12:6C:57:F3:9A:F1:08:38:E0:C6:75 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 04D198F22AA7A5A5340D47DA4F9C2813F68A29CF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/EFA4BF9A0D2DD57446126C57F39AF10838E0C675.mft caRepository: rsync://repo-rpki.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 23 Apr 2024 17:31:56 +0000 Certificate not after: Tue 22 Apr 2025 17:36:56 +0000 Subordinate resources: IP: 103.253.127.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:d1:98:f2:2a:a7:a5:a5:34:0d:47:da:4f:9c:28:13:f6:8a:29:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 23 17:31:56 2024 GMT Not After : Apr 22 17:36:56 2025 GMT Subject: CN=EFA4BF9A0D2DD57446126C57F39AF10838E0C675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b7:17:82:ba:c8:20:74:57:c4:bb:0c:b7:4c: e3:af:c8:fe:2d:ed:3f:bd:e9:ff:53:32:e9:18:5a: c2:f5:8f:65:45:0e:2a:f0:8e:70:8d:70:88:9e:c7: 90:6b:59:53:ab:1f:6d:48:6b:d1:d8:11:58:39:f4: bb:4b:9d:0a:e5:e2:38:a3:75:6b:b2:f8:f5:19:85: 2d:f3:c0:95:28:22:76:c3:ae:1f:a9:1f:37:80:be: 9f:63:51:72:8d:1f:29:e2:5b:db:8b:b0:eb:81:19: 50:4a:68:f9:a8:b3:d5:64:6a:dc:ea:c3:54:f2:7d: 0b:20:72:36:fa:0b:01:08:26:da:0d:72:7c:96:43: b3:40:24:8d:4e:2d:bb:ba:18:5c:5b:9f:82:46:03: cd:bd:a1:fa:ed:86:c1:e1:8c:56:cb:b5:4b:a4:43: 55:24:ec:6d:9e:4e:37:6d:4a:aa:b5:73:e3:d5:b0: a9:5a:ac:3d:9b:d0:a4:0a:f1:67:36:3b:cd:2b:e5: 1e:22:b0:ef:c1:14:1c:a8:78:f9:7d:49:3d:46:f4: ce:b5:6f:11:73:49:78:78:c3:e9:0d:2b:06:be:63: e3:05:84:c5:23:75:d0:f9:0b:0a:ff:57:a2:27:93: b7:90:f8:ba:87:2a:a1:54:13:22:50:7b:ed:64:57: cd:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: EF:A4:BF:9A:0D:2D:D5:74:46:12:6C:57:F3:9A:F1:08:38:E0:C6:75 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d3e27da9-e6e6-44a5-98f4-590eb5a1bd65/0/EFA4BF9A0D2DD57446126C57F39AF10838E0C675.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.253.127.0/24 Signature Algorithm: sha256WithRSAEncryption 96:06:2c:01:bf:6f:b7:5e:e0:71:89:cb:3a:72:89:ad:0e:0b: 46:f1:5d:a6:26:69:54:72:06:5e:e6:44:fb:31:0d:b9:c1:01: 40:df:fd:50:f0:fc:ff:0e:9f:62:60:54:9d:29:83:b8:4d:3a: e0:1b:c9:f4:37:f3:81:8a:b2:8c:f7:a9:ba:f7:69:db:85:42: 5f:89:9c:c5:ce:08:02:5e:fb:95:99:4a:25:a4:13:4f:28:46: f6:4d:b7:7e:e1:59:e8:7a:43:f5:be:b5:62:da:1d:53:2d:5e: c3:d9:b9:8e:5c:47:bb:e7:69:59:8d:6d:fb:f1:58:6d:82:fa: a2:ef:cd:09:73:bb:f5:83:9e:50:31:a2:e2:a2:6d:67:99:f1: 1c:c8:c3:35:c9:a8:c4:53:4e:a3:b2:b9:79:ec:6d:9b:85:09: a6:e6:19:93:57:e5:5c:fe:63:84:88:b0:81:40:60:2e:c1:d1: 04:3d:91:ee:55:b0:fe:58:dc:17:2d:63:b5:52:66:fd:f3:c0: 6f:76:3e:09:ad:09:64:bf:ea:57:51:b6:54:d0:83:6d:ba:05: b3:6b:dd:80:f6:56:1b:2e:be:fb:ee:b4:08:78:88:84:26:07: 0e:f3:37:f1:93:f7:aa:96:cc:14:58:cb:6a:ac:cc:b8:66:c3: be:44:9a:bc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUBNGY8iqnpaU0DUfaT5woE/aKKc8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyMzE3MzE1NloX DTI1MDQyMjE3MzY1NlowMzExMC8GA1UEAxMoRUZBNEJGOUEwRDJERDU3NDQ2MTI2 QzU3RjM5QUYxMDgzOEUwQzY3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJi3F4K6yCB0V8S7DLdM46/I/i3tP73p/1My6RhawvWPZUUOKvCOcI1wiJ7H kGtZU6sfbUhr0dgRWDn0u0udCuXiOKN1a7L49RmFLfPAlSgidsOuH6kfN4C+n2NR co0fKeJb24uw64EZUEpo+aiz1WRq3OrDVPJ9CyByNvoLAQgm2g1yfJZDs0AkjU4t u7oYXFufgkYDzb2h+u2GweGMVsu1S6RDVSTsbZ5ON21KqrVz49WwqVqsPZvQpArx ZzY7zSvlHiKw78EUHKh4+X1JPUb0zrVvEXNJeHjD6Q0rBr5j4wWExSN10PkLCv9X oieTt5D4uocqoVQTIlB77WRXzfUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFO+kv5oNLdV0RhJsV/Oa8Qg44MZ1MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kM2UyN2RhOS1lNmU2LTQ0YTUtOThmNC01OTBlYjVhMWJkNjUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzZTI3ZGE5 LWU2ZTYtNDRhNS05OGY0LTU5MGViNWExYmQ2NS8wL0VGQTRCRjlBMEQyREQ1NzQ0 NjEyNkM1N0YzOUFGMTA4MzhFMEM2NzUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn/X8wDQYJKoZIhvcNAQELBQADggEBAJYGLAG/b7de4HGJyzpyia0OC0bxXaYm aVRyBl7mRPsxDbnBAUDf/VDw/P8On2JgVJ0pg7hNOuAbyfQ384GKsoz3qbr3aduF Ql+JnMXOCAJe+5WZSiWkE08oRvZNt37hWeh6Q/W+tWLaHVMtXsPZuY5cR7vnaVmN bfvxWG2C+qLvzQlzu/WDnlAxouKibWeZ8RzIwzXJqMRTTqOyuXnsbZuFCabmGZNX 5Vz+Y4SIsIFAYC7B0QQ9ke5VsP5Y3BctY7VSZv3zwG92PgmtCWS/6ldRtlTQg226 BbNr3YD2VhsuvvvutAh4iIQmBw7zN/GT96qWzBRYy2qszLhmw75Emrw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org