$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F42062F52121FB3EF6D96AC88F6B88347E4607E7.cer File: F42062F52121FB3EF6D96AC88F6B88347E4607E7.cer (raw, json) Hash identifier: hm8Ged/hDjOrC2LdKChU5h2neJta/zWSWfI6+LewlbM= Subject key identifier: F4:20:62:F5:21:21:FB:3E:F6:D9:6A:C8:8F:6B:88:34:7E:46:07:E7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6E104D5DA8BED44B7378ECC59CDB3CEDC451C06D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/37b33412-be5b-463e-8233-9eab848a5976/0/F42062F52121FB3EF6D96AC88F6B88347E4607E7.mft caRepository: rsync://repo-rpki.idnic.net/repo/37b33412-be5b-463e-8233-9eab848a5976/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 18 Aug 2024 17:07:51 +0000 Certificate not after: Sun 17 Aug 2025 17:12:51 +0000 Subordinate resources: IP: 45.121.216.0/22 IP: 103.56.232.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:10:4d:5d:a8:be:d4:4b:73:78:ec:c5:9c:db:3c:ed:c4:51:c0:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 18 17:07:51 2024 GMT Not After : Aug 17 17:12:51 2025 GMT Subject: CN=F42062F52121FB3EF6D96AC88F6B88347E4607E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:08:d6:69:78:21:60:8b:46:55:2f:cc:4e:2a: 95:d5:18:14:1b:7b:ce:42:4a:24:d5:d2:18:89:be: 25:10:74:c2:07:98:33:b0:fd:62:8b:4d:a4:e8:47: a2:c4:2d:47:db:f4:a8:19:d3:c3:b9:86:90:45:ac: 99:95:30:99:be:af:da:ef:bc:bc:ca:37:1f:95:5a: 46:8e:b7:b5:9b:fa:31:20:46:bd:c4:f9:52:11:e1: 5c:63:dc:f5:d2:3d:30:c3:2c:23:f3:58:48:51:b7: 04:47:60:21:ba:97:c8:ef:b1:ad:ce:c7:53:97:aa: 1c:de:ff:9b:32:e9:fc:67:28:79:28:dc:f8:37:99: be:a7:e8:37:8c:cb:72:b0:2c:b9:8d:43:48:2f:c0: e2:0e:ab:42:c8:c5:c2:30:f1:2d:34:14:9f:9a:5d: d3:ed:85:b9:20:7a:61:e9:d6:90:ac:38:44:c7:dc: cb:35:f3:4a:1b:37:f6:1c:3d:b1:e2:28:df:0e:b9: 98:33:d0:3b:4d:25:c9:b3:cf:87:6d:c7:72:6f:75: e2:61:4e:39:16:c5:e2:81:16:73:b2:c9:b6:33:53: 7a:06:f2:ab:f8:cd:d1:0c:56:30:61:f1:f0:58:4e: e3:d0:fa:6c:9a:f2:e0:fd:3f:fe:e3:46:68:f6:af: 15:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F4:20:62:F5:21:21:FB:3E:F6:D9:6A:C8:8F:6B:88:34:7E:46:07:E7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/37b33412-be5b-463e-8233-9eab848a5976/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/37b33412-be5b-463e-8233-9eab848a5976/0/F42062F52121FB3EF6D96AC88F6B88347E4607E7.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.121.216.0/22 103.56.232.0/22 Signature Algorithm: sha256WithRSAEncryption 3d:35:b6:3d:de:2c:60:66:65:a2:a6:b7:31:df:92:a3:af:bc: d5:91:4f:7a:00:1c:8e:6b:df:53:c1:e5:bd:5d:b3:3a:7f:c9: 1c:e3:d3:15:63:38:76:1c:81:4b:9c:9b:7b:fd:3e:ed:ea:e7: d5:7e:f4:d6:46:06:58:f7:5d:e4:b7:2e:8e:50:bf:fe:eb:4e: 67:fd:73:b5:17:f8:18:13:35:3a:88:34:4d:e4:c7:f5:bc:82: 5e:b3:e7:0d:92:3e:90:81:8d:8f:dc:0a:8c:b5:b4:a3:e1:a4: 9b:d5:ec:1d:82:6e:a4:4f:12:6f:13:c8:65:b1:39:30:e5:ef: f9:8a:40:d5:0a:75:dd:d8:af:19:fe:ef:dc:69:e3:44:d0:7f: 61:4f:e4:f2:22:e5:d2:b1:7f:43:a0:8c:ca:c6:1e:11:e2:cd: 4b:10:40:ad:53:05:36:2d:78:9e:73:b0:eb:30:00:57:57:4f: 97:68:ad:3d:b3:fb:88:7b:7d:f3:2e:30:0b:74:d7:05:c9:f0: b4:a0:c3:1a:f2:c4:5e:72:5f:dc:c6:49:be:fd:33:40:f1:bd: 8b:2f:8f:66:2d:5d:62:25:a4:df:ca:bc:a2:4b:e4:4e:d9:e6: ea:72:b3:a7:0f:eb:78:92:1f:ba:98:dc:2e:c5:44:3b:b4:40: 26:9c:d6:50 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUbhBNXai+1EtzeOzFnNs87cRRwG0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxODE3MDc1MVoX DTI1MDgxNzE3MTI1MVowMzExMC8GA1UEAxMoRjQyMDYyRjUyMTIxRkIzRUY2RDk2 QUM4OEY2Qjg4MzQ3RTQ2MDdFNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKMI1ml4IWCLRlUvzE4qldUYFBt7zkJKJNXSGIm+JRB0wgeYM7D9YotNpOhH osQtR9v0qBnTw7mGkEWsmZUwmb6v2u+8vMo3H5VaRo63tZv6MSBGvcT5UhHhXGPc 9dI9MMMsI/NYSFG3BEdgIbqXyO+xrc7HU5eqHN7/mzLp/GcoeSjc+DeZvqfoN4zL crAsuY1DSC/A4g6rQsjFwjDxLTQUn5pd0+2FuSB6YenWkKw4RMfcyzXzShs39hw9 seIo3w65mDPQO00lybPPh23Hcm914mFOORbF4oEWc7LJtjNTegbyq/jN0QxWMGHx 8FhO49D6bJry4P0//uNGaPavFTcCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPQgYvUhIfs+9tlqyI9riDR+RgfnMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zN2IzMzQxMi1iZTViLTQ2M2UtODIzMy05ZWFiODQ4YTU5NzYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM3YjMzNDEy LWJlNWItNDYzZS04MjMzLTllYWI4NDhhNTk3Ni8wL0Y0MjA2MkY1MjEyMUZCM0VG NkQ5NkFDODhGNkI4ODM0N0U0NjA3RTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAItedgDBAJnOOgwDQYJKoZIhvcNAQELBQADggEBAD01tj3eLGBmZaKmtzHfkqOv vNWRT3oAHI5r31PB5b1dszp/yRzj0xVjOHYcgUucm3v9Pu3q59V+9NZGBlj3XeS3 Lo5Qv/7rTmf9c7UX+BgTNTqINE3kx/W8gl6z5w2SPpCBjY/cCoy1tKPhpJvV7B2C bqRPEm8TyGWxOTDl7/mKQNUKdd3Yrxn+79xp40TQf2FP5PIi5dKxf0OgjMrGHhHi zUsQQK1TBTYteJ5zsOswAFdXT5dorT2z+4h7ffMuMAt01wXJ8LSgwxryxF5yX9zG Sb79M0DxvYsvj2YtXWIlpN/KvKJL5E7Z5upys6cP63iSH7qY3C7FRDu0QCac1lA= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:32 2024 by rpki-client on console-fra.rpki-client.org