$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.cer File: F2441731A38F6F03ED8BFDB14F3CF89CED26A880.cer (raw, json) Hash identifier: 5/fvaL8zbRQ5gNT8DBjyXQGE9KHc99z7V0T/fVY4kPA= Subject key identifier: F2:44:17:31:A3:8F:6F:03:ED:8B:FD:B1:4F:3C:F8:9C:ED:26:A8:80 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 44470EB4BC3B45F9FD0D2363102347C2FC1AF0A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.mft caRepository: rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 08 Apr 2024 07:18:56 +0000 Certificate not after: Mon 07 Apr 2025 07:23:56 +0000 Subordinate resources: IP: 202.94.83.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:47:0e:b4:bc:3b:45:f9:fd:0d:23:63:10:23:47:c2:fc:1a:f0:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 8 07:18:56 2024 GMT Not After : Apr 7 07:23:56 2025 GMT Subject: CN=F2441731A38F6F03ED8BFDB14F3CF89CED26A880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:69:41:94:12:4c:27:52:9e:c1:cb:e7:36:f0: ab:0a:64:ab:19:84:61:93:e6:96:a6:d7:92:0d:41: 6c:38:8e:ae:ce:56:f8:a8:3f:5c:79:d6:e9:86:d3: 7c:af:d4:08:f8:06:b7:af:3b:24:e1:1c:2d:b2:03: 0b:f3:27:18:1a:b5:70:8c:9a:ba:7f:d7:87:87:3c: f9:c2:d9:95:37:df:16:70:69:74:4e:fc:43:30:8c: 2e:12:d6:4d:8e:9f:ad:82:56:f4:e4:79:a7:05:91: 5b:61:67:67:1a:1f:5c:c5:6c:83:d1:86:11:a3:8f: 8a:b1:ea:0f:af:3e:99:6d:70:ea:59:67:26:2b:d4: d9:2b:e0:5c:4f:5a:68:cf:5b:24:a3:db:0e:57:70: ae:e1:54:c9:08:99:29:81:da:9f:61:3f:c9:23:85: 56:11:31:62:fe:2f:c1:d5:68:08:d5:dc:ea:36:98: b7:5d:38:49:5d:40:4d:90:2d:48:c8:07:91:2f:d0: d0:aa:a7:e7:dd:db:1b:15:26:e4:42:db:13:30:df: d5:8f:67:04:20:13:2d:13:9c:78:1c:e9:bd:d9:c3: 7e:cc:db:ef:a3:c9:e0:c5:b6:a7:b5:28:44:ce:03: 59:94:5d:27:11:97:59:ab:7c:df:1f:cf:c0:aa:59: 37:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F2:44:17:31:A3:8F:6F:03:ED:8B:FD:B1:4F:3C:F8:9C:ED:26:A8:80 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b8b441ad-f1aa-48d3-9edb-b9a5d5ce9ba8/0/F2441731A38F6F03ED8BFDB14F3CF89CED26A880.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.94.83.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:5f:6c:ab:8d:6d:2b:8c:89:3b:bb:d8:37:f0:7d:b0:e0:1b: dc:48:8f:f0:bf:62:08:be:d3:44:04:2d:1e:2e:9a:5b:aa:28: e2:99:e5:af:e4:29:b4:05:28:c5:42:1f:92:4c:d6:a0:79:9d: 7b:28:4a:a6:41:d3:39:70:b8:12:f0:ca:b7:4c:85:0a:a3:48: da:6b:cd:a8:07:46:0e:69:25:fd:45:87:9f:70:55:3a:db:79: ec:52:da:31:dd:59:0e:96:b6:dd:73:4b:7c:cc:77:d7:73:98: 82:04:23:07:89:af:1a:81:80:2f:6f:78:4b:39:c7:9e:20:71: 63:9f:eb:7c:a7:dd:a3:78:f7:aa:55:77:c7:69:62:9f:dc:67: 6c:19:35:5c:55:1d:f1:b9:ac:db:09:92:67:07:af:10:89:ea: 86:17:13:f5:6f:e4:2d:db:37:33:f4:77:ea:c4:31:e3:b7:03: 17:f9:7a:ba:be:40:2e:34:c4:41:0b:10:84:90:f8:fd:cc:37: 9b:ce:1a:78:e3:8c:ac:5d:e5:78:5f:ba:b0:31:77:65:e4:71: 4f:6b:77:80:bc:e3:c8:ea:0c:31:7d:2d:30:91:b9:97:de:3e: 73:cd:f3:ea:f5:2c:6c:51:c9:d9:be:30:7f:66:d8:d1:37:ab: 7e:62:86:fc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUREcOtLw7Rfn9DSNjECNHwvwa8KEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQwODA3MTg1NloX DTI1MDQwNzA3MjM1NlowMzExMC8GA1UEAxMoRjI0NDE3MzFBMzhGNkYwM0VEOEJG REIxNEYzQ0Y4OUNFRDI2QTg4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVpQZQSTCdSnsHL5zbwqwpkqxmEYZPmlqbXkg1BbDiOrs5W+Kg/XHnW6YbT fK/UCPgGt687JOEcLbIDC/MnGBq1cIyaun/Xh4c8+cLZlTffFnBpdE78QzCMLhLW TY6frYJW9OR5pwWRW2FnZxofXMVsg9GGEaOPirHqD68+mW1w6llnJivU2SvgXE9a aM9bJKPbDldwruFUyQiZKYHan2E/ySOFVhExYv4vwdVoCNXc6jaYt104SV1ATZAt SMgHkS/Q0Kqn593bGxUm5ELbEzDf1Y9nBCATLROceBzpvdnDfszb76PJ4MW2p7Uo RM4DWZRdJxGXWat83x/PwKpZN70CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPJEFzGjj28D7Yv9sU88+JztJqiAMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iOGI0NDFhZC1mMWFhLTQ4ZDMtOWVkYi1iOWE1ZDVjZTliYTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4YjQ0MWFk LWYxYWEtNDhkMy05ZWRiLWI5YTVkNWNlOWJhOC8wL0YyNDQxNzMxQTM4RjZGMDNF RDhCRkRCMTRGM0NGODlDRUQyNkE4ODAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BADKXlMwDQYJKoZIhvcNAQELBQADggEBAB9fbKuNbSuMiTu72DfwfbDgG9xIj/C/ Ygi+00QELR4umluqKOKZ5a/kKbQFKMVCH5JM1qB5nXsoSqZB0zlwuBLwyrdMhQqj SNprzagHRg5pJf1Fh59wVTrbeexS2jHdWQ6Wtt1zS3zMd9dzmIIEIweJrxqBgC9v eEs5x54gcWOf63yn3aN496pVd8dpYp/cZ2wZNVxVHfG5rNsJkmcHrxCJ6oYXE/Vv 5C3bNzP0d+rEMeO3Axf5erq+QC40xEELEISQ+P3MN5vOGnjjjKxd5XhfurAxd2Xk cU9rd4C848jqDDF9LTCRuZfePnPN8+r1LGxRydm+MH9m2NE3q35ihvw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org