$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.cer File: FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.cer (raw, json) Hash identifier: vg4Ot0txga1QDGG0CcqraZlqlY9FPHwKmtBPlb9/SUY= Subject key identifier: FC:9D:A1:A7:62:5B:27:FD:B4:66:B1:D8:A6:90:37:7E:4C:7B:CE:72 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3A61019317855E2E8508E93A9A225BA4D38C46FC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.mft caRepository: rsync://repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 09:32:45 +0000 Certificate not after: Mon 30 Jun 2025 09:37:45 +0000 Subordinate resources: IP: 103.31.109.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:61:01:93:17:85:5e:2e:85:08:e9:3a:9a:22:5b:a4:d3:8c:46:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 09:32:45 2024 GMT Not After : Jun 30 09:37:45 2025 GMT Subject: CN=FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9d:0c:a1:77:ac:49:79:c4:ae:65:0a:f5:f8: 2f:86:7e:3f:6b:73:e0:0e:18:30:6f:b4:dc:df:94: 1f:53:e0:35:ee:7d:6c:42:fb:b6:1d:a6:41:06:7a: 06:46:04:44:3d:90:af:2a:e3:3b:52:42:f6:b6:65: 6b:4e:1a:ac:c8:7c:88:e6:84:a4:e5:d5:85:a2:06: 95:aa:15:bf:b4:78:b9:a2:4a:a5:ff:c1:cb:28:09: fe:de:93:3e:49:c6:d6:3e:3a:26:94:cb:0c:23:34: 75:02:05:69:4c:c6:bb:4d:42:de:04:64:03:13:34: af:de:a7:bb:2a:73:49:91:9e:e4:6c:28:20:21:1e: fc:96:65:fe:f4:a7:3e:1c:d2:fa:11:bc:17:ae:8e: 55:3f:22:63:bd:54:72:b8:7e:7b:c7:28:d9:c1:73: d4:eb:a5:69:26:de:27:17:58:e4:f1:1d:29:cf:c8: dd:c6:b8:90:1f:7c:84:9a:45:a2:1d:65:8f:cd:69: b2:a2:49:33:c1:36:20:2f:18:b7:47:8b:eb:70:fd: 99:ac:8e:e4:6f:c8:ca:ad:2f:39:e3:82:2d:b0:b6: 4a:4d:45:46:c7:3a:9d:ff:03:57:23:c6:3e:41:03: 5b:a7:9d:9f:e4:9e:fe:7c:f3:2a:6d:c4:c3:13:c0: 25:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FC:9D:A1:A7:62:5B:27:FD:B4:66:B1:D8:A6:90:37:7E:4C:7B:CE:72 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4f6aa31a-dd0d-4c10-b5dd-b1a83fa57763/0/FC9DA1A7625B27FDB466B1D8A690377E4C7BCE72.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.109.0/24 Signature Algorithm: sha256WithRSAEncryption 83:e3:6d:b8:61:b3:75:27:fe:ee:90:fe:de:c2:64:e8:61:47: 90:99:e6:55:79:3b:9e:a8:09:5a:42:ad:e8:5e:0e:b0:49:e9: 7e:88:d1:b1:6c:05:3a:ed:79:39:bc:63:ac:38:5f:d4:18:a2: 8c:56:3d:c1:d1:a6:a2:99:35:5b:85:10:2a:1a:15:a0:99:ff: f3:c2:cf:54:22:8c:3b:7c:b7:05:8d:5e:09:2c:63:32:83:26: 4a:00:f0:b8:e5:ab:f3:a0:e3:9b:a3:7f:1e:39:a8:a7:06:1f: 2b:a5:3c:f0:40:0f:00:7e:3b:fa:45:fa:1c:3f:96:b0:86:e6: 78:41:bd:ff:26:40:6a:9d:12:8e:a3:f0:6d:47:d5:98:f8:10: 8a:dc:eb:02:ad:00:20:13:d7:d6:a5:e9:20:1c:73:27:51:9a: c0:73:06:07:50:e8:4c:2b:76:8a:88:2a:b4:c5:27:34:23:1d: 2e:f2:fc:ac:77:5a:80:40:19:e9:51:a3:ab:e9:75:b4:7e:c6: c8:a0:9e:73:ca:97:f0:ea:c0:02:9c:56:9d:42:ea:a6:58:2c: 2b:ba:6e:ce:5b:24:aa:a9:82:4f:fe:d7:77:bc:ba:9f:36:5f: 73:96:ac:f3:9d:a8:e1:01:dd:44:51:3e:f6:bc:dd:01:61:37: 25:f0:af:02 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUOmEBkxeFXi6FCOk6miJbpNOMRvwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTA5MzI0NVoX DTI1MDYzMDA5Mzc0NVowMzExMC8GA1UEAxMoRkM5REExQTc2MjVCMjdGREI0NjZC MUQ4QTY5MDM3N0U0QzdCQ0U3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKWdDKF3rEl5xK5lCvX4L4Z+P2tz4A4YMG+03N+UH1PgNe59bEL7th2mQQZ6 BkYERD2QryrjO1JC9rZla04arMh8iOaEpOXVhaIGlaoVv7R4uaJKpf/ByygJ/t6T PknG1j46JpTLDCM0dQIFaUzGu01C3gRkAxM0r96nuypzSZGe5GwoICEe/JZl/vSn PhzS+hG8F66OVT8iY71Ucrh+e8co2cFz1OulaSbeJxdY5PEdKc/I3ca4kB98hJpF oh1lj81psqJJM8E2IC8Yt0eL63D9mayO5G/Iyq0vOeOCLbC2Sk1FRsc6nf8DVyPG PkEDW6edn+Se/nzzKm3EwxPAJR8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPydoadiWyf9tGax2KaQN35Me85yMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZjZhYTMxYS1kZDBkLTRjMTAtYjVkZC1iMWE4M2ZhNTc3NjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmNmFhMzFh LWRkMGQtNGMxMC1iNWRkLWIxYTgzZmE1Nzc2My8wL0ZDOURBMUE3NjI1QjI3RkRC NDY2QjFEOEE2OTAzNzdFNEM3QkNFNzIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnH20wDQYJKoZIhvcNAQELBQADggEBAIPjbbhhs3Un/u6Q/t7CZOhhR5CZ5lV5 O56oCVpCreheDrBJ6X6I0bFsBTrteTm8Y6w4X9QYooxWPcHRpqKZNVuFECoaFaCZ //PCz1QijDt8twWNXgksYzKDJkoA8Ljlq/Og45ujfx45qKcGHyulPPBADwB+O/pF +hw/lrCG5nhBvf8mQGqdEo6j8G1H1Zj4EIrc6wKtACAT19al6SAccydRmsBzBgdQ 6EwrdoqIKrTFJzQjHS7y/Kx3WoBAGelRo6vpdbR+xsignnPKl/DqwAKcVp1C6qZY LCu6bs5bJKqpgk/+13e8up82X3OWrPOdqOEB3URRPva83QFhNyXwrwI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:33 2024 by rpki-client on console-fra.rpki-client.org