$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F9CF581400AB7EE53AB913B25561ED007481F16F.cer File: F9CF581400AB7EE53AB913B25561ED007481F16F.cer (raw, json) Hash identifier: KSted9z6KDJIAsY9YFFsUhQUxDUUY9zR0iibLG8qWHU= Subject key identifier: F9:CF:58:14:00:AB:7E:E5:3A:B9:13:B2:55:61:ED:00:74:81:F1:6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6A3D3EDC78F3A998247EC23565A7F92CFBC37375 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/360b9a87-8058-466f-b4a9-a777b4681ae1/0/F9CF581400AB7EE53AB913B25561ED007481F16F.mft caRepository: rsync://repo-rpki.idnic.net/repo/360b9a87-8058-466f-b4a9-a777b4681ae1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 03 Sep 2024 12:50:10 +0000 Certificate not after: Tue 02 Sep 2025 12:55:10 +0000 Subordinate resources: IP: 103.18.114.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:3d:3e:dc:78:f3:a9:98:24:7e:c2:35:65:a7:f9:2c:fb:c3:73:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 3 12:50:10 2024 GMT Not After : Sep 2 12:55:10 2025 GMT Subject: CN=F9CF581400AB7EE53AB913B25561ED007481F16F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:a6:f0:d6:9a:0a:da:22:be:be:23:63:0a:5c: e3:2a:c4:85:8d:da:aa:59:b0:6b:37:15:ee:a2:cf: 67:b4:10:db:99:03:4d:5d:42:ae:2b:25:db:a7:f5: a7:ed:d4:e0:3a:35:5e:c6:8b:36:ad:32:e6:08:e9: 49:fd:b4:88:0c:a5:7b:8f:3c:90:af:1f:a6:eb:07: 74:25:ef:1b:32:ff:4a:c3:d2:e8:03:f4:54:05:af: d6:f1:74:54:1f:29:22:4c:5c:42:0c:cb:de:f4:b2: 42:e5:db:03:b4:aa:64:8b:9f:9e:af:f6:68:bb:03: cf:09:8f:9f:38:e0:64:46:85:b0:2a:ba:0d:ac:d7: 44:f9:1d:5c:93:56:4c:a0:27:18:00:c6:b0:a1:1a: f1:31:f1:d3:94:c7:ed:8b:61:49:5b:da:f6:1a:25: 5d:52:ed:99:9e:13:75:a3:cc:1f:3e:53:5b:b1:76: f0:52:d0:55:b2:26:f2:e0:ce:25:58:68:7f:a7:28: fb:26:64:81:12:1c:03:6d:2e:ea:4f:6b:be:13:fa: f5:ba:7b:bf:e6:fe:b8:94:05:e2:ac:67:e8:d5:3d: 93:53:ac:89:52:50:65:f3:7f:e3:a1:a0:b7:76:ec: fb:68:08:1f:49:1b:35:7d:f2:db:c3:97:e8:a2:d2: 7e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F9:CF:58:14:00:AB:7E:E5:3A:B9:13:B2:55:61:ED:00:74:81:F1:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/360b9a87-8058-466f-b4a9-a777b4681ae1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/360b9a87-8058-466f-b4a9-a777b4681ae1/0/F9CF581400AB7EE53AB913B25561ED007481F16F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.18.114.0/23 Signature Algorithm: sha256WithRSAEncryption 90:8a:c6:db:8a:b5:12:ff:96:ee:5b:95:51:94:41:1f:2a:7f: 83:56:b3:7e:0f:12:11:cd:63:8b:c7:69:8f:c5:6b:1a:52:b1: 67:a0:15:66:ce:a1:95:7b:16:3e:00:91:9b:ea:13:30:4b:c4: 57:23:eb:dd:aa:19:89:fd:07:37:42:e1:af:26:a4:02:d6:6f: 08:00:19:59:05:2d:c7:1f:71:c7:00:b9:6c:6a:94:12:6f:89: e4:c4:ef:f2:b4:9d:2d:cf:e7:3e:67:09:ca:0b:ce:b6:03:68: ab:43:db:66:75:40:11:9b:a7:6c:f6:ef:12:65:a7:86:9b:79: 03:04:98:f2:05:b4:58:0d:66:70:87:25:ef:ba:4e:55:84:ee: 48:a1:eb:96:df:e3:3b:7d:5c:90:1a:d0:e7:b9:b6:32:b1:65: ef:78:d1:8a:1b:97:99:96:cd:b5:1f:18:42:f4:e2:07:e0:44: 7b:81:67:72:51:6c:9d:d0:4e:44:be:94:c0:5f:15:c1:ef:08: 56:89:d6:4f:c4:4b:dd:53:a5:81:67:6c:11:07:3e:a7:5f:16: 5b:79:d9:06:72:fa:31:9e:0f:0d:f8:b8:5a:74:a8:6a:62:f8: a3:52:c5:d3:58:ae:b7:5a:7a:24:cb:0a:24:96:29:24:3a:0c: 36:26:1d:39 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUaj0+3HjzqZgkfsI1Zaf5LPvDc3UwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwMzEyNTAxMFoX DTI1MDkwMjEyNTUxMFowMzExMC8GA1UEAxMoRjlDRjU4MTQwMEFCN0VFNTNBQjkx M0IyNTU2MUVEMDA3NDgxRjE2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANSm8NaaCtoivr4jYwpc4yrEhY3aqlmwazcV7qLPZ7QQ25kDTV1Crisl26f1 p+3U4Do1XsaLNq0y5gjpSf20iAyle488kK8fpusHdCXvGzL/SsPS6AP0VAWv1vF0 VB8pIkxcQgzL3vSyQuXbA7SqZIufnq/2aLsDzwmPnzjgZEaFsCq6DazXRPkdXJNW TKAnGADGsKEa8THx05TH7YthSVva9holXVLtmZ4TdaPMHz5TW7F28FLQVbIm8uDO JVhof6co+yZkgRIcA20u6k9rvhP69bp7v+b+uJQF4qxn6NU9k1OsiVJQZfN/46Gg t3bs+2gIH0kbNX3y28OX6KLSfoMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPnPWBQAq37lOrkTslVh7QB0gfFvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zNjBiOWE4Ny04MDU4LTQ2NmYtYjRhOS1hNzc3YjQ2ODFhZTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2MGI5YTg3 LTgwNTgtNDY2Zi1iNGE5LWE3NzdiNDY4MWFlMS8wL0Y5Q0Y1ODE0MDBBQjdFRTUz QUI5MTNCMjU1NjFFRDAwNzQ4MUYxNkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnEnIwDQYJKoZIhvcNAQELBQADggEBAJCKxtuKtRL/lu5blVGUQR8qf4NWs34P EhHNY4vHaY/FaxpSsWegFWbOoZV7Fj4AkZvqEzBLxFcj692qGYn9BzdC4a8mpALW bwgAGVkFLccfcccAuWxqlBJvieTE7/K0nS3P5z5nCcoLzrYDaKtD22Z1QBGbp2z2 7xJlp4abeQMEmPIFtFgNZnCHJe+6TlWE7kih65bf4zt9XJAa0Oe5tjKxZe940Yob l5mWzbUfGEL04gfgRHuBZ3JRbJ3QTkS+lMBfFcHvCFaJ1k/ES91TpYFnbBEHPqdf Flt52QZy+jGeDw34uFp0qGpi+KNSxdNYrrdaeiTLCiSWKSQ6DDYmHTk= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org