$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F2A96B013D78D9DD2AD046F90529AB07E832FD44.cer File: F2A96B013D78D9DD2AD046F90529AB07E832FD44.cer (raw, json) Hash identifier: QvKGUHclrbvHxjTFKCAexCwEb5uaDy7IOd6KA8k0RwY= Subject key identifier: F2:A9:6B:01:3D:78:D9:DD:2A:D0:46:F9:05:29:AB:07:E8:32:FD:44 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6EC7A0ECD8F00A82C0931E0945B14A073BD6AA30 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6c4e1669-68f7-4a39-acc0-57c7187b6cb7/0/F2A96B013D78D9DD2AD046F90529AB07E832FD44.mft caRepository: rsync://repo-rpki.idnic.net/repo/6c4e1669-68f7-4a39-acc0-57c7187b6cb7/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 01 Mar 2024 10:22:12 +0000 Certificate not after: Fri 28 Feb 2025 10:27:12 +0000 Subordinate resources: IP: 103.109.204.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:c7:a0:ec:d8:f0:0a:82:c0:93:1e:09:45:b1:4a:07:3b:d6:aa:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 1 10:22:12 2024 GMT Not After : Feb 28 10:27:12 2025 GMT Subject: CN=F2A96B013D78D9DD2AD046F90529AB07E832FD44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:cc:79:f7:29:2e:dd:e5:7f:83:f6:ac:90:14: ed:56:2e:a5:4e:d0:ed:9f:37:a0:90:5a:09:1f:2c: 49:07:1b:02:4c:22:63:34:45:4b:7a:bb:29:04:7d: d0:8a:cd:06:b5:e0:2a:34:b7:a2:b3:5e:14:ce:a0: bf:07:f8:c6:e3:af:a5:47:35:3c:08:e7:68:e4:f0: b7:a1:60:1a:9a:88:3e:97:f6:9a:5d:20:d9:f1:e7: 72:a0:9a:f1:96:db:06:ce:41:52:20:a0:d5:98:9e: 5f:2e:23:ed:64:da:3b:11:ad:7a:66:33:33:f9:a7: 0c:2b:af:12:2a:66:30:c0:de:2f:a1:dc:89:7b:7f: ac:ae:e3:2a:41:e3:7e:80:4f:03:2d:71:71:2a:97: 3c:d8:c8:c3:59:ec:2c:bf:79:d3:c8:da:81:26:53: 5c:dd:3a:59:88:df:d0:47:6b:05:86:c3:32:de:e6: 1f:cb:d2:4b:28:24:c9:1c:b9:48:63:ce:fe:d2:cd: 55:98:f6:e4:11:96:80:70:5f:ae:ed:d6:57:7c:62: fe:0f:f2:01:15:a7:fe:1c:b3:21:5a:5a:36:29:66: 83:0a:b6:9c:6f:ee:0a:d3:6f:13:e8:7e:e4:bd:81: ac:41:79:86:e8:25:b3:e1:bb:48:9e:c2:f9:97:0e: 6d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F2:A9:6B:01:3D:78:D9:DD:2A:D0:46:F9:05:29:AB:07:E8:32:FD:44 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6c4e1669-68f7-4a39-acc0-57c7187b6cb7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6c4e1669-68f7-4a39-acc0-57c7187b6cb7/0/F2A96B013D78D9DD2AD046F90529AB07E832FD44.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.109.204.0/23 Signature Algorithm: sha256WithRSAEncryption 70:93:20:e6:f5:33:9e:35:4f:e6:aa:49:63:ea:f5:21:a3:35: ec:0a:c0:af:a1:46:20:ad:d2:e9:3a:7a:9a:22:55:62:68:2e: 6a:8a:98:b1:83:58:71:86:8a:90:c0:08:73:3e:f5:b3:69:38: 79:d2:3d:6c:ae:35:5c:c4:44:6f:c1:1a:41:14:ea:24:47:5a: b5:22:c7:7d:a6:b6:20:6f:d2:60:d2:c3:c2:40:24:f1:f0:a1: b2:60:59:53:d6:9b:a9:b6:ed:90:5a:a8:77:4f:57:16:47:0b: 02:88:4f:23:f2:e3:d8:73:a2:3c:09:96:97:ba:62:84:3b:c0: f7:6e:76:64:81:c1:bc:fd:45:e5:aa:f2:3c:bb:29:8e:fd:26: c4:2b:c1:9e:6e:84:65:08:bf:11:69:30:68:9d:a3:09:8e:88: a7:ce:37:15:e6:83:d0:0c:6a:34:e8:c6:72:09:18:3b:fb:c4: c0:3c:34:18:7a:66:46:cc:38:9f:a8:c6:93:de:f8:4f:ca:4b: 13:86:27:9b:7c:c4:7b:3c:5e:48:3b:f7:df:29:f3:33:c1:4b: 42:af:8c:33:d0:a7:f6:c6:f7:e3:84:21:9a:93:30:52:e3:17: 6a:82:47:a3:0c:3f:24:13:59:71:98:7e:16:39:79:79:b5:e3: c5:df:a8:01 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbseg7NjwCoLAkx4JRbFKBzvWqjAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwMTEwMjIxMloX DTI1MDIyODEwMjcxMlowMzExMC8GA1UEAxMoRjJBOTZCMDEzRDc4RDlERDJBRDA0 NkY5MDUyOUFCMDdFODMyRkQ0NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJzMefcpLt3lf4P2rJAU7VYupU7Q7Z83oJBaCR8sSQcbAkwiYzRFS3q7KQR9 0IrNBrXgKjS3orNeFM6gvwf4xuOvpUc1PAjnaOTwt6FgGpqIPpf2ml0g2fHncqCa 8ZbbBs5BUiCg1ZieXy4j7WTaOxGtemYzM/mnDCuvEipmMMDeL6HciXt/rK7jKkHj foBPAy1xcSqXPNjIw1nsLL9508jagSZTXN06WYjf0EdrBYbDMt7mH8vSSygkyRy5 SGPO/tLNVZj25BGWgHBfru3WV3xi/g/yARWn/hyzIVpaNilmgwq2nG/uCtNvE+h+ 5L2BrEF5hugls+G7SJ7C+ZcObaECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPKpawE9eNndKtBG+QUpqwfoMv1EMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82YzRlMTY2OS02OGY3LTRhMzktYWNjMC01N2M3MTg3YjZjYjcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjNGUxNjY5 LTY4ZjctNGEzOS1hY2MwLTU3YzcxODdiNmNiNy8wL0YyQTk2QjAxM0Q3OEQ5REQy QUQwNDZGOTA1MjlBQjA3RTgzMkZENDQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnbcwwDQYJKoZIhvcNAQELBQADggEBAHCTIOb1M541T+aqSWPq9SGjNewKwK+h RiCt0uk6epoiVWJoLmqKmLGDWHGGipDACHM+9bNpOHnSPWyuNVzERG/BGkEU6iRH WrUix32mtiBv0mDSw8JAJPHwobJgWVPWm6m27ZBaqHdPVxZHCwKITyPy49hzojwJ lpe6YoQ7wPdudmSBwbz9ReWq8jy7KY79JsQrwZ5uhGUIvxFpMGidowmOiKfONxXm g9AMajToxnIJGDv7xMA8NBh6ZkbMOJ+oxpPe+E/KSxOGJ5t8xHs8Xkg7998p8zPB S0KvjDPQp/bG9+OEIZqTMFLjF2qCR6MMPyQTWXGYfhY5eXm148XfqAE= -----END CERTIFICATE-----Generated at Wed May 8 21:02:29 2024 by rpki-client on console-fra.rpki-client.org