$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer File: F490341241E1B1C7D170AB872CA39A68309B3F3B.cer (raw, json) Hash identifier: oqqajEdX5fj07XRRu9nqdbdobhznkiWG9QsWr/0JWHw= Subject key identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2D37EC0C4A14E676A77F71FFC508BECCE549EB36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.mft caRepository: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Jul 2024 04:12:16 +0000 Certificate not after: Tue 01 Jul 2025 04:17:16 +0000 Subordinate resources: IP: 182.255.0.0/21 IP: 2001:df0:b5::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:37:ec:0c:4a:14:e6:76:a7:7f:71:ff:c5:08:be:cc:e5:49:eb:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 04:12:16 2024 GMT Not After : Jul 1 04:17:16 2025 GMT Subject: CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:67:11:a1:fa:80:54:51:a5:06:ef:89:22:c4: 8d:2a:7e:62:7b:62:28:36:63:2e:a2:2d:d3:6f:b9: 91:f2:ec:1d:48:b1:33:c2:e0:33:88:44:ba:49:de: e8:2f:6b:61:0c:d8:d6:0a:50:9c:81:80:2c:59:4f: 3f:d6:cb:38:29:e7:a2:0e:ea:74:60:84:d7:0b:41: bd:23:73:f6:cb:83:a9:df:0a:9b:8c:b7:37:2f:d9: 06:76:e9:09:3e:19:82:06:7d:2b:b7:bb:65:59:54: f2:9b:a5:16:a7:a7:9d:39:dd:ec:4d:b4:25:74:89: fd:52:e4:35:0e:d3:ee:97:9f:29:10:8f:71:07:8a: 7d:b4:20:85:f6:2d:a8:5a:fb:38:ad:5f:e1:45:80: ba:b7:56:1d:52:30:01:48:42:e1:a7:f2:42:6d:7e: 16:34:e0:76:ea:cb:90:85:67:8e:fa:c2:65:cb:8a: ee:86:b5:35:66:95:27:47:63:99:e4:45:78:41:52: 71:6c:a0:61:88:6f:b0:0b:ba:ad:ea:d2:bb:64:76: 2b:62:bf:6f:49:6d:08:d0:5c:0a:52:c5:69:7a:c9: 49:71:e1:3a:3f:b1:69:45:33:61:9c:3f:fb:bf:2d: f6:0a:4d:78:8d:db:ab:b0:a4:49:6d:c8:ec:af:75: 82:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.255.0.0/21 IPv6: 2001:df0:b5::/48 Signature Algorithm: sha256WithRSAEncryption 44:9f:75:10:0c:8f:f2:d2:78:4f:18:d1:e7:9a:01:02:d4:22: 3e:41:3f:77:74:83:9e:13:1f:56:a5:8d:3f:86:01:c0:97:6e: 1b:3a:32:b9:87:ff:57:94:7c:e5:55:b6:5c:36:7c:13:24:c5: 59:ee:99:ec:d2:5f:f5:d1:9d:9b:b0:57:f8:7b:ed:7e:14:b7: 7a:70:c1:b1:43:08:81:7a:ce:a8:53:a2:2a:6c:91:0f:5b:87: b0:14:f5:03:03:f5:fc:6c:40:85:ca:f6:fe:f4:ba:cd:74:66: d4:7e:ee:67:59:a1:8a:fd:9a:fb:c9:be:c9:d8:25:23:ba:7b: 4d:b7:cc:99:0e:df:11:17:72:cc:f4:8d:9d:22:d3:66:86:79: d4:91:43:f9:bd:3f:32:ab:31:a9:0c:22:65:d6:fe:f5:b7:cb: bf:68:b6:cd:93:ba:de:c1:04:b2:2d:2c:a9:35:b9:ad:b5:e1: d0:39:27:f6:ce:4d:f7:9a:77:3a:11:41:4c:9f:9b:db:f2:d2: c6:e9:83:ff:75:52:24:63:a3:98:02:fd:b1:81:96:04:b9:7c: b6:13:33:66:aa:6b:4e:1e:31:aa:49:2e:80:8f:71:b6:0d:20: c7:26:29:26:2d:14:55:ca:24:c6:50:35:99:18:76:44:db:2e: 3b:b6:e9:46 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIULTfsDEoU5nanf3H/xQi+zOVJ6zYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjA0MTIxNloX DTI1MDcwMTA0MTcxNlowMzExMC8GA1UEAxMoRjQ5MDM0MTI0MUUxQjFDN0QxNzBB Qjg3MkNBMzlBNjgzMDlCM0YzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJtnEaH6gFRRpQbviSLEjSp+YntiKDZjLqIt02+5kfLsHUixM8LgM4hEukne 6C9rYQzY1gpQnIGALFlPP9bLOCnnog7qdGCE1wtBvSNz9suDqd8Km4y3Ny/ZBnbp CT4ZggZ9K7e7ZVlU8pulFqennTnd7E20JXSJ/VLkNQ7T7pefKRCPcQeKfbQghfYt qFr7OK1f4UWAurdWHVIwAUhC4afyQm1+FjTgdurLkIVnjvrCZcuK7oa1NWaVJ0dj meRFeEFScWygYYhvsAu6rerSu2R2K2K/b0ltCNBcClLFaXrJSXHhOj+xaUUzYZw/ +78t9gpNeI3bq7CkSW3I7K91gqcCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPSQNBJB4bHH0XCrhyyjmmgwmz87MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZTg2YjA5Mi01MjdkLTQ4OGYtYTlmNy0yNDc5N2Q5Nzc0Y2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODZiMDky LTUyN2QtNDg4Zi1hOWY3LTI0Nzk3ZDk3NzRjYi8wL0Y0OTAzNDEyNDFFMUIxQzdE MTcwQUI4NzJDQTM5QTY4MzA5QjNGM0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAO2/wAwDwQCAAIwCQMHACABDfAAtTANBgkqhkiG9w0BAQsFAAOCAQEARJ91EAyP 8tJ4TxjR55oBAtQiPkE/d3SDnhMfVqWNP4YBwJduGzoyuYf/V5R85VW2XDZ8EyTF We6Z7NJf9dGdm7BX+HvtfhS3enDBsUMIgXrOqFOiKmyRD1uHsBT1AwP1/GxAhcr2 /vS6zXRm1H7uZ1mhiv2a+8m+ydglI7p7TbfMmQ7fERdyzPSNnSLTZoZ51JFD+b0/ MqsxqQwiZdb+9bfLv2i2zZO63sEEsi0sqTW5rbXh0Dkn9s5N95p3OhFBTJ+b2/LS xumD/3VSJGOjmAL9sYGWBLl8thMzZqprTh4xqkkugI9xtg0gxyYpJi0UVcokxlA1 mRh2RNsuO7bpRg== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:35 2024 by rpki-client on console-ams.rpki-client.org