$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F389B5570A768F4811B6377427EE5A9710A3078F.cer File: F389B5570A768F4811B6377427EE5A9710A3078F.cer (raw, json) Hash identifier: +myXErxpDjVi3Xqt7zSjs6ZeX0rDUbxHFntGT5yJFcs= Subject key identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 31843F17900F36CC10C964CBF16068AD9247D0E9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 31 May 2024 03:14:18 +0000 Certificate not after: Fri 30 May 2025 03:19:18 +0000 Subordinate resources: IP: 202.93.24.0/21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:84:3f:17:90:0f:36:cc:10:c9:64:cb:f1:60:68:ad:92:47:d0:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 31 03:14:18 2024 GMT Not After : May 30 03:19:18 2025 GMT Subject: CN=F389B5570A768F4811B6377427EE5A9710A3078F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:02:3c:86:2f:3f:4b:e3:a4:27:f7:48:76:02: 7e:5a:e9:49:3d:24:cb:3e:aa:ee:a3:04:ef:56:7c: 65:a1:42:40:7a:87:06:b7:7c:f8:56:d6:ca:92:53: 3c:4b:10:81:00:36:95:81:17:84:d4:2f:8d:47:44: 57:a4:4c:0a:c3:85:90:53:20:3b:f4:2f:99:de:63: ca:24:5b:6e:ce:59:32:f2:be:5f:5c:cf:fc:a5:fe: 35:81:80:db:b5:31:b4:e8:92:6a:68:f3:6b:19:03: 51:7b:5f:98:63:d1:ac:19:68:1d:87:d2:c8:93:c9: 0e:10:6e:d6:dc:a5:42:94:8f:ea:2e:20:7b:dd:42: 13:ef:27:a0:01:ab:0b:b4:ef:22:e8:7a:84:12:2a: 50:cc:6c:a0:b0:31:bf:13:a1:50:e0:87:05:69:56: 83:cc:ec:07:10:4a:f9:ef:89:79:d5:2b:7b:62:36: 28:e2:d8:ab:56:c6:17:a5:81:56:19:e0:2d:19:06: 85:f4:b3:5e:ae:ad:a4:87:23:ff:5f:b5:1a:22:41: 15:a7:3d:bf:79:4e:f5:e1:2b:ed:d0:24:d4:40:1e: 37:4f:8a:64:0e:b8:f2:07:95:47:00:ff:8e:e8:4f: aa:fb:22:d2:9d:41:02:bf:42:91:a4:37:7d:aa:fe: da:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F3:89:B5:57:0A:76:8F:48:11:B6:37:74:27:EE:5A:97:10:A3:07:8F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c8ab3e0-ca68-42f6-98f6-654a252a8648/0/F389B5570A768F4811B6377427EE5A9710A3078F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.93.24.0/21 Signature Algorithm: sha256WithRSAEncryption 08:2f:70:22:f0:a4:81:74:b0:bb:68:18:33:61:19:58:b3:28: 66:c2:c0:24:4d:0a:bb:07:d7:06:01:ce:93:cf:4e:5a:c3:72: e0:67:9e:f5:19:d6:4b:a7:63:b9:d6:35:f5:a6:4f:c9:2d:43: 4c:ac:da:95:d9:2d:59:81:d2:c1:1b:e6:49:e9:eb:b7:02:7d: f5:30:a0:2c:da:ea:22:5c:77:54:d9:cd:49:a8:ed:21:e2:dd: 96:86:67:5c:a2:3c:00:87:c2:47:6b:9b:1c:6f:73:6d:c3:ff: d9:25:9d:fe:e9:7d:b6:5b:4b:be:4a:68:dd:c4:ac:de:a1:70: 74:4a:f2:d7:e1:ed:fe:fe:ac:e2:39:68:bb:59:83:16:20:24: ea:e5:70:0a:a4:df:5d:aa:a1:e1:07:36:ae:56:a6:32:08:f0: 03:dd:2d:2f:16:99:ca:96:0f:ec:66:24:24:58:6f:c5:3a:95: 49:46:47:8c:ce:0f:b0:70:9d:c7:bd:40:94:7f:d8:73:4c:ab: 79:bf:2b:d6:80:95:e9:9e:97:96:b5:dc:f5:0d:dd:3e:70:54: 06:16:29:92:bf:2c:73:32:f6:25:94:4e:a7:ad:e2:c9:0c:e2: b6:7f:b5:d5:bd:3a:41:3c:45:9d:6a:72:22:67:44:83:2e:0c: fb:09:f4:9f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUMYQ/F5APNswQyWTL8WBorZJH0OkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUzMTAzMTQxOFoX DTI1MDUzMDAzMTkxOFowMzExMC8GA1UEAxMoRjM4OUI1NTcwQTc2OEY0ODExQjYz Nzc0MjdFRTVBOTcxMEEzMDc4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYCPIYvP0vjpCf3SHYCflrpST0kyz6q7qME71Z8ZaFCQHqHBrd8+FbWypJT PEsQgQA2lYEXhNQvjUdEV6RMCsOFkFMgO/Qvmd5jyiRbbs5ZMvK+X1zP/KX+NYGA 27UxtOiSamjzaxkDUXtfmGPRrBloHYfSyJPJDhBu1tylQpSP6i4ge91CE+8noAGr C7TvIuh6hBIqUMxsoLAxvxOhUOCHBWlWg8zsBxBK+e+JedUre2I2KOLYq1bGF6WB VhngLRkGhfSzXq6tpIcj/1+1GiJBFac9v3lO9eEr7dAk1EAeN0+KZA648geVRwD/ juhPqvsi0p1BAr9CkaQ3far+2mECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPOJtVcKdo9IEbY3dCfuWpcQowePMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzhhYjNlMC1jYTY4LTQyZjYtOThmNi02NTRhMjUyYTg2NDgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjOGFiM2Uw LWNhNjgtNDJmNi05OGY2LTY1NGEyNTJhODY0OC8wL0YzODlCNTU3MEE3NjhGNDgx MUI2Mzc3NDI3RUU1QTk3MTBBMzA3OEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAPKXRgwDQYJKoZIhvcNAQELBQADggEBAAgvcCLwpIF0sLtoGDNhGVizKGbCwCRN CrsH1wYBzpPPTlrDcuBnnvUZ1kunY7nWNfWmT8ktQ0ys2pXZLVmB0sEb5knp67cC ffUwoCza6iJcd1TZzUmo7SHi3ZaGZ1yiPACHwkdrmxxvc23D/9klnf7pfbZbS75K aN3ErN6hcHRK8tfh7f7+rOI5aLtZgxYgJOrlcAqk312qoeEHNq5WpjII8APdLS8W mcqWD+xmJCRYb8U6lUlGR4zOD7Bwnce9QJR/2HNMq3m/K9aAlemel5a13PUN3T5w VAYWKZK/LHMy9iWUTqet4skM4rZ/tdW9OkE8RZ1qciJnRIMuDPsJ9J8= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:32 2024 by rpki-client on console-fra.rpki-client.org