$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F95ABFECD1F2CDA83B975C1651646721A611A82E.cer File: F95ABFECD1F2CDA83B975C1651646721A611A82E.cer (raw, json) Hash identifier: Jq2jiMnSW4KjNobZbBz3Bazl8TDT8zfzusiIY0I+9T0= Subject key identifier: F9:5A:BF:EC:D1:F2:CD:A8:3B:97:5C:16:51:64:67:21:A6:11:A8:2E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6733CB68A6DC6B9459EF5EFD9A55A2EE2CC5EDE3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/F95ABFECD1F2CDA83B975C1651646721A611A82E.mft caRepository: rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 30 Jan 2024 15:51:23 +0000 Certificate not after: Tue 28 Jan 2025 15:56:23 +0000 Subordinate resources: IP: 103.127.154.0/24 IP: 2001:df2:c40::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:33:cb:68:a6:dc:6b:94:59:ef:5e:fd:9a:55:a2:ee:2c:c5:ed:e3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 30 15:51:23 2024 GMT Not After : Jan 28 15:56:23 2025 GMT Subject: CN=F95ABFECD1F2CDA83B975C1651646721A611A82E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:39:d4:5e:19:b3:d5:91:3c:7a:5b:4d:71:0d: 88:71:76:b9:39:f5:b4:36:2b:c8:73:94:c4:90:e1: fa:3f:c3:92:1f:29:50:cf:a2:da:94:52:ec:6c:25: 8a:fc:e4:45:77:63:3c:53:3a:57:35:3a:7f:d5:a3: f9:90:5e:33:31:97:81:07:af:17:89:7d:d1:f6:89: 52:3d:09:74:d0:c2:11:99:1c:7b:57:2b:98:80:e2: c0:0c:f3:35:9e:03:57:d5:52:97:24:37:78:34:87: 21:5b:3d:d6:86:08:86:f2:b2:eb:83:a1:b4:77:51: ed:26:c6:b1:6f:3c:3e:d0:77:8e:bb:42:39:1d:5d: 41:8b:4c:30:eb:4b:de:2e:f7:db:12:fd:1c:d3:a6: 97:10:48:1b:d4:f3:61:7c:06:ae:7d:20:06:6b:24: b8:f8:b1:39:e6:e1:a4:43:0d:b8:78:2a:f7:82:b4: 44:c3:f6:50:c2:e6:7d:8d:69:90:3c:96:43:1b:01: e0:a8:5f:87:3e:d7:08:3f:f3:15:3a:66:ab:23:40: 78:31:e2:1f:82:21:89:f1:02:87:8c:be:d6:f8:e5: a7:af:a4:c8:f1:50:4a:e8:ce:ce:fd:f4:12:5c:09: 23:c1:ad:58:12:58:2d:7f:11:40:18:20:ed:37:5f: 88:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F9:5A:BF:EC:D1:F2:CD:A8:3B:97:5C:16:51:64:67:21:A6:11:A8:2E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fcde1cfd-cbbc-4f08-89cb-435a5911f2c2/0/F95ABFECD1F2CDA83B975C1651646721A611A82E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.127.154.0/24 IPv6: 2001:df2:c40::/48 Signature Algorithm: sha256WithRSAEncryption 6a:4c:9f:ed:88:7b:13:71:48:23:5b:96:f1:84:53:71:e1:11: db:42:fb:68:cf:8b:4b:cc:43:5a:63:3c:d7:0b:89:a1:63:67: 64:bc:cb:32:74:e1:1f:7c:f6:b1:b5:75:d2:aa:5e:9c:61:e1: f5:b6:d4:71:63:26:cf:e6:e1:44:d7:c7:c0:af:f8:8e:f7:c4: 94:b2:52:94:05:60:02:4c:05:4e:a4:ea:9c:d2:b5:28:9e:e5: 68:f1:c4:d7:61:6a:ad:9c:2b:24:ed:c7:74:0d:d3:11:53:2e: a5:af:c5:a3:88:a5:63:c6:7f:09:81:5e:de:40:88:b0:1c:5c: 70:08:f7:2a:47:0c:36:b8:27:f0:df:91:e5:f9:01:55:8a:8d: b1:02:23:28:ad:72:ea:b7:92:00:41:00:00:8c:97:5e:e8:9b: c4:4a:59:ba:92:3f:9f:38:d2:5a:2c:bd:ea:16:c1:c6:4a:29: f7:fc:90:62:53:4c:98:2c:d8:51:99:e7:81:dd:f8:39:75:66: 50:ce:42:7f:14:2e:41:2d:13:42:c9:95:44:a6:3f:6d:7a:78: a7:c6:01:f3:b8:7e:3e:74:9b:26:4a:c5:3b:e3:21:7a:90:5c: 08:82:62:f5:e4:e9:34:99:a2:e1:e9:64:04:62:c8:c1:e1:c7: 2a:96:94:cb -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUZzPLaKbca5RZ7179mlWi7izF7eMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEzMDE1NTEyM1oX DTI1MDEyODE1NTYyM1owMzExMC8GA1UEAxMoRjk1QUJGRUNEMUYyQ0RBODNCOTc1 QzE2NTE2NDY3MjFBNjExQTgyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN851F4Zs9WRPHpbTXENiHF2uTn1tDYryHOUxJDh+j/Dkh8pUM+i2pRS7Gwl ivzkRXdjPFM6VzU6f9Wj+ZBeMzGXgQevF4l90faJUj0JdNDCEZkce1crmIDiwAzz NZ4DV9VSlyQ3eDSHIVs91oYIhvKy64OhtHdR7SbGsW88PtB3jrtCOR1dQYtMMOtL 3i732xL9HNOmlxBIG9TzYXwGrn0gBmskuPixOebhpEMNuHgq94K0RMP2UMLmfY1p kDyWQxsB4Khfhz7XCD/zFTpmqyNAeDHiH4IhifECh4y+1vjlp6+kyPFQSujOzv30 ElwJI8GtWBJYLX8RQBgg7TdfiFMCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPlav+zR8s2oO5dcFlFkZyGmEaguMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mY2RlMWNmZC1jYmJjLTRmMDgtODljYi00MzVhNTkxMWYyYzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjZGUxY2Zk LWNiYmMtNGYwOC04OWNiLTQzNWE1OTExZjJjMi8wL0Y5NUFCRkVDRDFGMkNEQTgz Qjk3NUMxNjUxNjQ2NzIxQTYxMUE4MkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnf5owDwQCAAIwCQMHACABDfIMQDANBgkqhkiG9w0BAQsFAAOCAQEAakyf7Yh7 E3FII1uW8YRTceER20L7aM+LS8xDWmM81wuJoWNnZLzLMnThH3z2sbV10qpenGHh 9bbUcWMmz+bhRNfHwK/4jvfElLJSlAVgAkwFTqTqnNK1KJ7laPHE12FqrZwrJO3H dA3TEVMupa/Fo4ilY8Z/CYFe3kCIsBxccAj3KkcMNrgn8N+R5fkBVYqNsQIjKK1y 6reSAEEAAIyXXuibxEpZupI/nzjSWiy96hbBxkop9/yQYlNMmCzYUZnngd34OXVm UM5CfxQuQS0TQsmVRKY/bXp4p8YB87h+PnSbJkrFO+MhepBcCIJi9eTpNJmi4elk BGLIweHHKpaUyw== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:35 2024 by rpki-client on console-ams.rpki-client.org