$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer File: FC646066A689B77054AF95653FA324395357E6A3.cer (raw, json) Hash identifier: OVi4CRiPEzc+/Z9MuvlZUDnPBsO+sCF6kmJKdb9gF+E= Subject key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5981B9827889607B6EFA1352430AE7761D0BB5A6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft caRepository: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 25 Jul 2024 18:29:00 +0000 Certificate not after: Thu 24 Jul 2025 18:34:00 +0000 Subordinate resources: IP: 14.102.152.0/22 IP: 43.249.140.0/22 IP: 103.11.96.0/22 IP: 103.254.126.0/23 IP: 202.10.63.0/24 IP: 202.52.12.0/22 IP: 2402:c300::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:81:b9:82:78:89:60:7b:6e:fa:13:52:43:0a:e7:76:1d:0b:b5:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 25 18:29:00 2024 GMT Not After : Jul 24 18:34:00 2025 GMT Subject: CN=FC646066A689B77054AF95653FA324395357E6A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:82:bb:84:c8:86:ad:36:84:b1:1e:22:01: a1:ff:7e:3a:9e:c6:d8:ab:36:8e:c0:3b:48:1d:9f: b9:3f:87:f6:55:65:b7:6e:a5:f5:8d:03:6d:0b:fc: f7:40:8a:73:05:0f:00:f7:ad:84:f9:5d:49:08:da: fd:52:1b:98:94:3a:a2:dd:07:cd:07:a5:6c:6b:07: d0:88:0e:05:54:27:ee:66:aa:57:e2:1b:a5:46:c7: 25:fc:b0:dd:3d:2c:9c:0e:a8:5f:36:da:d1:3d:8b: 24:34:c0:e6:c1:7a:84:95:52:e1:38:10:a8:83:e1: f5:8b:58:13:f1:fb:65:3c:5d:fa:d3:40:78:a9:b6: 4d:cc:2b:08:2d:ee:45:39:86:cd:6e:f4:48:8d:99: e4:df:7a:6c:65:3c:5a:90:1e:ab:db:90:d7:a9:91: 09:f4:7b:a6:b7:c4:e2:54:ab:65:a7:86:27:19:95: fb:f8:7d:bd:25:32:41:b2:a8:38:9a:9d:e7:28:80: c1:11:5b:bd:41:b0:c2:14:ed:01:48:bb:ab:46:fb: 28:0d:07:98:56:fa:ca:51:b2:09:7c:99:31:1b:7b: 54:9c:ed:46:63:e2:47:9a:aa:35:d3:6a:02:bb:90: 68:83:33:e4:7c:33:b9:36:4e:cd:af:d8:d2:3c:cf: 00:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.102.152.0/22 43.249.140.0/22 103.11.96.0/22 103.254.126.0/23 202.10.63.0/24 202.52.12.0/22 IPv6: 2402:c300::/32 Signature Algorithm: sha256WithRSAEncryption 33:98:7c:f7:da:81:4f:53:ee:e2:2c:c0:45:f3:4b:88:a7:f2: a0:13:a0:50:b4:60:98:8e:54:37:ad:e0:5d:76:a2:dd:82:4e: 9e:4a:5a:e6:05:00:c1:54:3e:19:2a:01:76:55:7d:98:cb:8f: 5d:4b:52:b8:23:7a:9b:27:b4:a6:c0:fd:40:0c:5d:f0:49:a9: ae:d5:53:97:73:ee:48:95:92:b7:37:79:fc:e2:ff:2b:f2:f2: 4a:6b:7e:22:1f:97:ff:da:20:eb:3c:ec:5d:7a:47:24:a0:89: 6c:21:24:f7:cf:ce:ea:f4:32:ca:56:fc:23:9d:c4:b8:93:99: b0:0e:fc:d1:38:8d:eb:dc:c4:42:d4:d3:19:1e:1b:0e:56:1f: 35:2b:56:96:67:b3:0e:e0:00:a1:c2:57:b4:b5:95:a2:41:69: 13:51:ad:b2:61:c8:86:53:a3:f5:95:c3:36:fd:7e:41:b5:a2: 83:a3:85:1e:97:db:b5:a9:53:15:a1:17:c4:87:25:b0:0a:fb: 89:4a:7f:36:94:b1:9f:c0:b6:2d:7f:84:11:3e:00:06:4b:1e: ae:d5:c7:e6:47:39:19:af:d6:53:5a:0a:59:3d:1a:f6:8f:21: 4b:2f:c3:f4:c8:9f:65:55:bc:ad:ce:98:7d:19:c4:9b:03:0d: 92:c8:b7:f6 -----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgIUWYG5gniJYHtu+hNSQwrndh0LtaYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyNTE4MjkwMFoX DTI1MDcyNDE4MzQwMFowMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5 NTY1M0ZBMzI0Mzk1MzU3RTZBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvvgruEyIatNoSxHiIBof9+Op7G2Ks2jsA7SB2fuT+H9lVlt26l9Y0DbQv8 90CKcwUPAPethPldSQja/VIbmJQ6ot0HzQelbGsH0IgOBVQn7maqV+IbpUbHJfyw 3T0snA6oXzba0T2LJDTA5sF6hJVS4TgQqIPh9YtYE/H7ZTxd+tNAeKm2TcwrCC3u RTmGzW70SI2Z5N96bGU8WpAeq9uQ16mRCfR7prfE4lSrZaeGJxmV+/h9vSUyQbKo OJqd5yiAwRFbvUGwwhTtAUi7q0b7KA0HmFb6ylGyCXyZMRt7VJztRmPiR5qqNdNq AruQaIMz5HwzuTZOza/Y0jzPAMECAwEAAaOCAuUwggLhMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPxkYGamibdwVK+VZT+jJDlTV+ajMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jOTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUz LTc4YTAtNDk2NS1hZTE0LWU0Y2I0ZDBmYzE4NS8wL0ZDNjQ2MDY2QTY4OUI3NzA1 NEFGOTU2NTNGQTMyNDM5NTM1N0U2QTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwTAYIKwYBBQUHAQcBAf8EPTA7MCoEAgABMCQD BAIOZpgDBAIr+YwDBAJnC2ADBAFn/n4DBADKCj8DBALKNAwwDQQCAAIwBwMFACQC wwAwDQYJKoZIhvcNAQELBQADggEBADOYfPfagU9T7uIswEXzS4in8qAToFC0YJiO VDet4F12ot2CTp5KWuYFAMFUPhkqAXZVfZjLj11LUrgjepsntKbA/UAMXfBJqa7V U5dz7kiVkrc3efzi/yvy8kprfiIfl//aIOs87F16RySgiWwhJPfPzur0MspW/COd xLiTmbAO/NE4jevcxELU0xkeGw5WHzUrVpZnsw7gAKHCV7S1laJBaRNRrbJhyIZT o/WVwzb9fkG1ooOjhR6X27WpUxWhF8SHJbAK+4lKfzaUsZ/Ati1/hBE+AAZLHq7V x+ZHORmv1lNaClk9GvaPIUsvw/TIn2VVvK3OmH0ZxJsDDZLIt/Y= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org