$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F21589FF449CC6950642FB6826CF5416005D740C.cer File: F21589FF449CC6950642FB6826CF5416005D740C.cer (raw, json) Hash identifier: Y3O0ymeQbHEI630kX42MuERXPpC2DnDQwNNnkuQPayw= Subject key identifier: F2:15:89:FF:44:9C:C6:95:06:42:FB:68:26:CF:54:16:00:5D:74:0C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A55F9AF611E9735588A8D5CEEBFEC59F7BEB66C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/506b1bc7-c65a-4a11-9273-814c460b6cba/0/F21589FF449CC6950642FB6826CF5416005D740C.mft caRepository: rsync://repo-rpki.idnic.net/repo/506b1bc7-c65a-4a11-9273-814c460b6cba/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 08 Oct 2024 12:43:57 +0000 Certificate not after: Tue 07 Oct 2025 12:48:57 +0000 Subordinate resources: IP: 115.84.175.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:55:f9:af:61:1e:97:35:58:8a:8d:5c:ee:bf:ec:59:f7:be:b6:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 8 12:43:57 2024 GMT Not After : Oct 7 12:48:57 2025 GMT Subject: CN=F21589FF449CC6950642FB6826CF5416005D740C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:b2:8b:03:21:bc:cb:c6:26:09:da:f5:5d:dd: 23:51:b6:69:8d:4f:e4:02:71:91:98:15:95:c7:7f: 28:02:99:98:d8:fc:06:e4:d1:56:64:d4:13:bf:10: 32:f2:73:c5:06:3f:4a:64:7a:bf:9c:2c:74:69:1a: 34:9a:e5:14:d2:53:44:b3:48:46:03:f3:51:2a:04: 5c:ad:3f:5e:d9:e1:26:47:5a:81:95:98:ec:b2:59: 25:03:db:36:b0:3c:09:24:c8:9a:74:b3:76:00:1d: 9d:98:8f:cd:36:b8:f1:1f:d0:06:6e:27:d0:77:33: 8c:24:64:21:71:28:2b:66:69:e7:67:fe:9b:97:73: b6:f0:da:c9:74:68:3c:14:ec:81:af:bc:87:74:92: 95:82:d4:d1:40:b2:50:e2:48:18:b9:3d:20:3c:89: c3:cd:4f:bb:40:53:83:71:92:30:f7:28:7e:aa:9e: 57:d1:65:ef:00:9f:4d:8a:52:2a:6e:56:b1:f0:5a: 89:6b:e8:d4:0a:bf:57:90:b3:a3:6d:c3:3a:05:19: e8:e9:d9:5f:0e:20:3f:ff:da:a6:72:ec:fb:2c:cb: 48:d8:9c:d3:d5:8c:23:28:68:8c:3b:16:5f:6f:21: e1:02:f1:28:13:c1:86:86:a9:30:3c:2b:25:8a:57: f9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F2:15:89:FF:44:9C:C6:95:06:42:FB:68:26:CF:54:16:00:5D:74:0C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/506b1bc7-c65a-4a11-9273-814c460b6cba/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/506b1bc7-c65a-4a11-9273-814c460b6cba/0/F21589FF449CC6950642FB6826CF5416005D740C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.84.175.0/24 Signature Algorithm: sha256WithRSAEncryption 88:2c:9f:73:5d:1c:d6:2c:d5:51:47:bc:f9:ea:d1:b8:76:2d: 98:1a:34:36:12:5d:88:49:32:de:b2:5d:9e:0a:1e:6d:54:91: 97:75:cb:32:53:c5:d5:08:30:13:09:8a:36:37:07:4d:68:5f: 66:85:b4:b6:87:ca:a7:1a:8a:22:b2:62:79:4e:bd:84:b4:84: 35:d2:d7:85:6d:ea:23:2f:4e:ac:b7:08:07:95:3b:f3:44:31: 96:21:13:1a:36:9a:31:46:ac:47:67:19:99:d8:dc:c1:cc:ba: 6f:b4:e4:6b:bd:da:f2:2d:8f:44:a7:74:3b:1a:f7:6c:10:49: fa:f7:15:cb:6f:4d:1a:56:1a:36:26:f8:00:c3:5c:6d:81:cf: d7:09:fd:3b:94:6f:47:d4:28:b1:0b:04:2f:8d:d0:29:b6:ee: 3b:95:26:f2:22:0a:ca:1c:7b:60:b3:37:60:fe:32:51:8e:bd: 32:88:6e:38:ab:b3:d8:c4:88:b7:5f:4b:83:6a:20:09:13:0e: ae:4f:cb:32:c1:5c:c5:39:0b:0e:ad:7b:10:1e:18:60:17:49: ef:2d:fa:2a:97:05:0c:07:b1:20:f6:82:ec:15:4b:e6:da:0c: 2e:1b:6e:b3:77:d0:22:f0:5e:48:12:1a:1b:1c:c0:ae:d6:cc: cc:11:c1:62 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGlX5r2EelzVYio1c7r/sWfe+tmwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAwODEyNDM1N1oX DTI1MTAwNzEyNDg1N1owMzExMC8GA1UEAxMoRjIxNTg5RkY0NDlDQzY5NTA2NDJG QjY4MjZDRjU0MTYwMDVENzQwQzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMyyiwMhvMvGJgna9V3dI1G2aY1P5AJxkZgVlcd/KAKZmNj8BuTRVmTUE78Q MvJzxQY/SmR6v5wsdGkaNJrlFNJTRLNIRgPzUSoEXK0/XtnhJkdagZWY7LJZJQPb NrA8CSTImnSzdgAdnZiPzTa48R/QBm4n0HczjCRkIXEoK2Zp52f+m5dztvDayXRo PBTsga+8h3SSlYLU0UCyUOJIGLk9IDyJw81Pu0BTg3GSMPcofqqeV9Fl7wCfTYpS Km5WsfBaiWvo1Aq/V5Czo23DOgUZ6OnZXw4gP//apnLs+yzLSNic09WMIyhojDsW X28h4QLxKBPBhoapMDwrJYpX+d8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPIVif9EnMaVBkL7aCbPVBYAXXQMMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81MDZiMWJjNy1jNjVhLTRhMTEtOTI3My04MTRjNDYwYjZjYmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzUwNmIxYmM3 LWM2NWEtNGExMS05MjczLTgxNGM0NjBiNmNiYS8wL0YyMTU4OUZGNDQ5Q0M2OTUw NjQyRkI2ODI2Q0Y1NDE2MDA1RDc0MEMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABzVK8wDQYJKoZIhvcNAQELBQADggEBAIgsn3NdHNYs1VFHvPnq0bh2LZgaNDYS XYhJMt6yXZ4KHm1UkZd1yzJTxdUIMBMJijY3B01oX2aFtLaHyqcaiiKyYnlOvYS0 hDXS14Vt6iMvTqy3CAeVO/NEMZYhExo2mjFGrEdnGZnY3MHMum+05Gu92vItj0Sn dDsa92wQSfr3FctvTRpWGjYm+ADDXG2Bz9cJ/TuUb0fUKLELBC+N0Cm27juVJvIi Csoce2CzN2D+MlGOvTKIbjirs9jEiLdfS4NqIAkTDq5PyzLBXMU5Cw6texAeGGAX Se8t+iqXBQwHsSD2guwVS+baDC4bbrN30CLwXkgSGhscwK7WzMwRwWI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org