$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312.cer File: 9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312.cer (raw, json) Hash identifier: GdhbLxSYVZa2yTRbOy2kfZzO+g8uZuEbXiHwRPNuT30= Subject key identifier: 9F:5E:7C:D1:CF:2E:52:B2:82:C4:03:FC:C0:AF:8B:02:D0:E8:93:12 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 446582A3D8C72DAA13670F628F913D9E24106016 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/152226ea-5e26-4ea5-a689-4757ad05f952/0/9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312.mft caRepository: rsync://repo-rpki.idnic.net/repo/152226ea-5e26-4ea5-a689-4757ad05f952/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 30 Jul 2023 23:49:42 +0000 Certificate not after: Sun 28 Jul 2024 23:54:42 +0000 Subordinate resources: IP: 103.140.34.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 28 Apr 2024 20:55:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:65:82:a3:d8:c7:2d:aa:13:67:0f:62:8f:91:3d:9e:24:10:60:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 23:49:42 2023 GMT Not After : Jul 28 23:54:42 2024 GMT Subject: CN=9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:1d:a2:3a:22:67:7c:ea:45:f5:93:c6:4f:32: b3:db:77:04:be:c3:1a:38:5b:8c:11:1f:b1:7f:67: 45:9f:22:f4:13:b7:59:20:c2:88:7c:6b:73:ce:86: 26:5a:26:b7:98:0b:3e:86:40:81:f3:49:c7:cb:81: 43:39:5f:25:f5:f5:9b:f8:50:fa:71:99:15:70:a0: 3c:0a:02:8c:c2:53:41:91:45:16:75:f0:a8:81:25: 92:7d:47:d0:9d:97:94:c9:5e:8c:73:85:c1:93:3c: 1e:ba:c9:d5:f8:d0:22:69:33:1c:1d:b1:90:95:08: 78:06:31:29:f0:6b:bd:e4:55:e2:8d:81:8f:5c:f6: 68:f6:30:77:d9:0c:c5:b7:58:73:b3:e9:dd:22:45: f2:f5:d5:f9:92:1c:32:d3:ac:48:50:90:93:c6:eb: 77:42:ba:44:6f:25:6d:71:45:e3:80:31:16:9d:03: 44:c0:ff:f4:4a:74:4c:47:22:fb:b8:b1:07:07:d0: 0c:3a:3a:f8:53:17:33:c1:c0:86:48:f1:31:d0:ee: 57:8b:79:4d:b6:65:f7:bd:d6:79:30:24:e0:e8:f4: f1:3e:d2:75:02:82:aa:8d:10:9d:9b:d9:7f:44:e5: c6:6c:25:5b:b3:be:fb:d6:28:a5:69:7a:59:5d:a1: 36:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9F:5E:7C:D1:CF:2E:52:B2:82:C4:03:FC:C0:AF:8B:02:D0:E8:93:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/152226ea-5e26-4ea5-a689-4757ad05f952/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/152226ea-5e26-4ea5-a689-4757ad05f952/0/9F5E7CD1CF2E52B282C403FCC0AF8B02D0E89312.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.140.34.0/23 Signature Algorithm: sha256WithRSAEncryption 99:e0:81:da:03:a8:23:ef:45:de:67:9e:60:3c:ef:52:e6:c1: c7:8d:0f:ef:ec:b8:3e:76:d1:28:28:b4:61:f7:fa:77:5b:11: 36:fd:d5:d8:ac:28:86:93:92:3d:39:51:98:32:ea:ac:80:90: 9d:f0:39:b1:2a:12:e4:08:33:5a:38:d7:37:dc:b4:b4:48:bc: c7:dd:d7:dc:06:2c:4c:03:f6:e0:e6:60:6b:72:c6:5a:8e:72: f2:69:66:45:6f:08:a3:2f:d9:24:12:55:70:82:68:5c:aa:ee: 9c:8c:9e:76:82:64:4d:6c:19:15:35:55:13:b5:9d:59:62:d4: e9:ac:dd:8e:bd:1f:46:88:df:93:3c:35:63:bd:85:95:9b:1c: a2:5f:65:70:4d:c0:b2:90:10:d6:2d:b8:1b:4c:b4:a5:91:61: 44:14:77:24:85:7e:ed:16:73:d1:df:41:91:df:4e:8f:9c:c3: 2b:43:6e:c4:97:0c:9d:39:6f:2c:04:79:72:c6:8e:0e:94:44: 5c:ec:82:97:ca:4b:63:d8:48:00:24:7f:cd:5f:b3:79:b1:7b: e1:df:b9:45:3b:04:df:d9:8e:c2:5b:8a:40:95:0f:c9:59:59: 19:49:9d:ae:b6:6b:6a:12:fc:d3:15:67:12:5a:06:dc:89:89: cb:7f:4a:97 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURGWCo9jHLaoTZw9ij5E9niQQYBYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMDIzNDk0MloX DTI0MDcyODIzNTQ0MlowMzExMC8GA1UEAxMoOUY1RTdDRDFDRjJFNTJCMjgyQzQw M0ZDQzBBRjhCMDJEMEU4OTMxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO0dojoiZ3zqRfWTxk8ys9t3BL7DGjhbjBEfsX9nRZ8i9BO3WSDCiHxrc86G Jlomt5gLPoZAgfNJx8uBQzlfJfX1m/hQ+nGZFXCgPAoCjMJTQZFFFnXwqIElkn1H 0J2XlMlejHOFwZM8HrrJ1fjQImkzHB2xkJUIeAYxKfBrveRV4o2Bj1z2aPYwd9kM xbdYc7Pp3SJF8vXV+ZIcMtOsSFCQk8brd0K6RG8lbXFF44AxFp0DRMD/9Ep0TEci +7ixBwfQDDo6+FMXM8HAhkjxMdDuV4t5TbZl973WeTAk4Oj08T7SdQKCqo0QnZvZ f0TlxmwlW7O++9YopWl6WV2hNucCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ9efNHPLlKygsQD/MCviwLQ6JMSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xNTIyMjZlYS01ZTI2LTRlYTUtYTY4OS00NzU3YWQwNWY5NTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE1MjIyNmVh LTVlMjYtNGVhNS1hNjg5LTQ3NTdhZDA1Zjk1Mi8wLzlGNUU3Q0QxQ0YyRTUyQjI4 MkM0MDNGQ0MwQUY4QjAyRDBFODkzMTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnjCIwDQYJKoZIhvcNAQELBQADggEBAJnggdoDqCPvRd5nnmA871LmwceND+/s uD520SgotGH3+ndbETb91disKIaTkj05UZgy6qyAkJ3wObEqEuQIM1o41zfctLRI vMfd19wGLEwD9uDmYGtyxlqOcvJpZkVvCKMv2SQSVXCCaFyq7pyMnnaCZE1sGRU1 VRO1nVli1Oms3Y69H0aI35M8NWO9hZWbHKJfZXBNwLKQENYtuBtMtKWRYUQUdySF fu0Wc9HfQZHfTo+cwytDbsSXDJ05bywEeXLGjg6URFzsgpfKS2PYSAAkf81fs3mx e+HfuUU7BN/ZjsJbikCVD8lZWRlJna62a2oS/NMVZxJaBtyJict/Spc= -----END CERTIFICATE-----Generated at Fri Apr 26 00:39:37 2024 by rpki-client on console-fra.rpki-client.org