$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.cer File: F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.cer (raw, json) Hash identifier: U/OjCCRRkv8brFOnBU+zrN0/hg955M2pPlUPIbgj35M= Subject key identifier: F3:81:08:E7:3D:42:C7:F2:0A:64:8C:A9:19:3F:BF:B8:EF:E0:EC:27 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 113BB461F4511F75CA5D67ECCEBEC5F6C282BE12 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.mft caRepository: rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 10 Oct 2024 11:13:42 +0000 Certificate not after: Thu 09 Oct 2025 11:18:42 +0000 Subordinate resources: IP: 103.97.231.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:3b:b4:61:f4:51:1f:75:ca:5d:67:ec:ce:be:c5:f6:c2:82:be:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 10 11:13:42 2024 GMT Not After : Oct 9 11:18:42 2025 GMT Subject: CN=F38108E73D42C7F20A648CA9193FBFB8EFE0EC27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6f:83:c6:04:65:56:f2:b8:95:f1:23:74:fd: e7:b4:0e:12:4e:e5:bb:6f:42:4b:48:5a:04:1d:dc: 34:0b:5b:08:08:6c:78:87:21:c1:c1:8e:38:ed:0f: 71:18:1c:56:69:d9:c4:11:a3:94:2b:20:fa:6c:e6: 30:0e:22:b6:60:44:15:44:c2:71:57:c0:e3:5a:35: 19:bb:8f:0d:7b:d0:da:60:14:8d:52:3a:04:25:d7: 4d:38:5c:ab:f6:4c:6d:82:0d:e3:7f:44:33:a4:6e: d5:f9:ea:af:45:d3:c4:a4:bf:1b:84:2a:cd:b3:2c: 11:13:bb:e1:e5:83:f1:a4:65:b7:4b:7a:8f:0e:37: 2d:5e:9c:f5:0e:09:47:3b:9a:8d:3b:7c:2b:92:2e: dc:76:f1:67:3e:b1:d2:1a:a4:8e:12:75:0f:ce:b8: 8a:0e:9b:6a:13:58:74:a0:5a:e6:91:06:fc:3d:55: 4e:8c:ad:d7:f4:17:fb:f5:b7:3b:b6:ab:8a:59:f4: 7b:de:f5:8e:41:9f:94:1e:74:87:44:15:e5:2c:56: e2:10:7c:9e:55:a6:b6:48:58:e3:d1:64:96:b9:dc: f6:a4:61:35:05:95:44:4d:8d:71:ee:02:f2:2d:a3: a4:6e:46:b7:cd:f5:23:4e:50:d4:79:d8:5c:92:f7: 0e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F3:81:08:E7:3D:42:C7:F2:0A:64:8C:A9:19:3F:BF:B8:EF:E0:EC:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f239fdcb-c417-4f3f-b1c9-7e369cde21fd/0/F38108E73D42C7F20A648CA9193FBFB8EFE0EC27.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.97.231.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:e3:f3:84:78:ae:4a:f3:47:d0:60:a8:41:55:6c:d6:ae:80: d7:6f:a7:c9:6b:2c:b1:47:ba:7e:0a:40:bc:df:7e:c8:7a:77: a0:42:bb:91:28:e3:d3:74:5a:17:f7:56:6d:7f:19:04:63:97: 5c:27:41:5f:8b:d7:ad:f1:fb:71:da:4e:fa:f2:5a:26:10:35: 13:6e:e7:5d:3a:ee:d0:78:1c:ff:9f:b0:b4:38:c3:8d:93:b4: e0:f7:78:b4:b9:71:9c:f8:b4:e8:87:fe:0d:12:3c:8d:36:45: 55:4a:1e:30:0d:1a:de:06:d8:c2:d4:24:7a:b5:d0:b6:f5:e5: 6d:f9:cc:b6:ca:cd:3c:b0:33:a2:7b:f0:54:62:de:79:e4:5b: 6b:86:10:29:23:34:cb:0e:72:79:0b:c9:ee:7d:c9:28:c2:a2: 77:03:cd:aa:3b:e6:29:fc:9a:71:c0:55:5d:50:fe:d8:a5:3e: c0:af:45:63:d2:0d:2a:25:d2:d3:aa:e8:fc:51:f5:08:59:84: 84:9a:e2:19:c9:6f:ac:a5:ea:43:85:66:1b:28:2a:12:74:61: b7:85:61:e1:e3:2d:7d:ae:6d:bf:a0:8e:f7:8f:ee:4c:71:9d: 5d:08:bb:5b:78:64:a4:f6:37:b9:7e:09:3e:61:dd:08:41:9b: cd:59:69:cd -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUETu0YfRRH3XKXWfszr7F9sKCvhIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxMDExMTM0MloX DTI1MTAwOTExMTg0MlowMzExMC8GA1UEAxMoRjM4MTA4RTczRDQyQzdGMjBBNjQ4 Q0E5MTkzRkJGQjhFRkUwRUMyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK9vg8YEZVbyuJXxI3T957QOEk7lu29CS0haBB3cNAtbCAhseIchwcGOOO0P cRgcVmnZxBGjlCsg+mzmMA4itmBEFUTCcVfA41o1GbuPDXvQ2mAUjVI6BCXXTThc q/ZMbYIN439EM6Ru1fnqr0XTxKS/G4QqzbMsERO74eWD8aRlt0t6jw43LV6c9Q4J RzuajTt8K5Iu3HbxZz6x0hqkjhJ1D864ig6bahNYdKBa5pEG/D1VToyt1/QX+/W3 O7ariln0e971jkGflB50h0QV5SxW4hB8nlWmtkhY49Fklrnc9qRhNQWVRE2Nce4C 8i2jpG5Gt831I05Q1HnYXJL3DvcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPOBCOc9QsfyCmSMqRk/v7jv4OwnMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMjM5ZmRjYi1jNDE3LTRmM2YtYjFjOS03ZTM2OWNkZTIxZmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyMzlmZGNi LWM0MTctNGYzZi1iMWM5LTdlMzY5Y2RlMjFmZC8wL0YzODEwOEU3M0Q0MkM3RjIw QTY0OENBOTE5M0ZCRkI4RUZFMEVDMjcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnYecwDQYJKoZIhvcNAQELBQADggEBADrj84R4rkrzR9BgqEFVbNaugNdvp8lr LLFHun4KQLzffsh6d6BCu5Eo49N0Whf3Vm1/GQRjl1wnQV+L163x+3HaTvryWiYQ NRNu51067tB4HP+fsLQ4w42TtOD3eLS5cZz4tOiH/g0SPI02RVVKHjANGt4G2MLU JHq10Lb15W35zLbKzTywM6J78FRi3nnkW2uGECkjNMsOcnkLye59ySjConcDzao7 5in8mnHAVV1Q/tilPsCvRWPSDSol0tOq6PxR9QhZhISa4hnJb6yl6kOFZhsoKhJ0 YbeFYeHjLX2ubb+gjveP7kxxnV0Iu1t4ZKT2N7l+CT5h3QhBm81Zac0= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:35 2024 by rpki-client on console-ams.rpki-client.org