$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer File: 00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.cer (raw, json) Hash identifier: cYWz+mfd8wAQWEJBNeXiBt5S0qlJ2OaTSas+G5CP+K0= Subject key identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 12A8881F7BC058521E955A83553F62E577A71805 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft caRepository: rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Jul 2024 04:13:05 +0000 Certificate not after: Tue 01 Jul 2025 04:18:05 +0000 Subordinate resources: IP: 103.119.116.0/22 IP: 2403:4340::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:a8:88:1f:7b:c0:58:52:1e:95:5a:83:55:3f:62:e5:77:a7:18:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 2 04:13:05 2024 GMT Not After : Jul 1 04:18:05 2025 GMT Subject: CN=00AC65E61E4913268C5D0B8AFE8C7D913B686D9F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:95:c3:f8:9d:8a:06:32:f4:06:74:e7:1e:4d: 28:94:f3:bd:77:86:cf:4d:7b:c2:5b:32:25:08:d8: 95:2f:71:57:83:b0:ee:d1:39:c9:1a:d6:df:4b:13: 2c:0c:69:75:7e:68:53:59:86:41:4d:65:4d:cd:25: 38:d8:e8:60:49:be:1b:c0:5f:a0:e7:85:a1:ec:0b: 41:f0:5e:68:e6:9e:39:ca:48:bb:7e:76:1f:dc:42: 50:78:e7:b3:24:c3:2d:04:42:d4:93:a3:56:15:db: 4b:5a:65:b1:24:b7:1e:2a:ec:b2:ae:c5:dd:0e:66: fe:ff:47:34:78:85:a0:f6:5c:3e:e4:4c:95:40:63: 78:da:73:fa:bd:0e:62:a6:f0:87:76:6f:1a:1a:6d: 9a:a3:4a:cb:92:df:3c:df:da:21:5d:75:64:09:a7: dd:24:a7:04:fe:b5:d8:3c:20:f4:14:8c:ca:3c:20: c2:5f:f4:d2:89:49:39:cc:d5:e4:79:ff:66:5b:6e: 98:ee:6c:03:a2:85:61:0e:2a:9c:e6:e0:4a:82:b5: e3:5d:bb:7f:ac:9f:46:8b:ff:e5:6a:eb:15:e9:64: 71:5b:36:f4:be:3b:3e:a1:4f:80:8f:f6:5f:69:57: b8:cc:16:12:a2:72:43:1f:06:8a:1f:f6:ff:e7:e6: 76:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 00:AC:65:E6:1E:49:13:26:8C:5D:0B:8A:FE:8C:7D:91:3B:68:6D:9F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3e8950f0-3b14-4a6d-b30f-75379cb2ebce/0/00AC65E61E4913268C5D0B8AFE8C7D913B686D9F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.119.116.0/22 IPv6: 2403:4340::/32 Signature Algorithm: sha256WithRSAEncryption 17:0b:c4:bc:fa:b4:46:08:d7:f7:53:db:27:a0:0c:38:be:05: ee:95:bb:df:e4:d6:60:b5:7a:75:1b:be:2a:a8:ab:97:1c:cb: 7d:5f:16:b9:07:62:a6:dd:fc:80:d8:4d:29:c8:b8:26:50:2d: 18:9a:a8:4a:c7:af:40:62:4d:9f:53:13:74:7d:92:66:76:01: af:31:0d:8e:e0:2a:67:67:2e:f1:9f:9f:00:d0:bd:7e:15:e2: 13:27:17:50:48:e9:d7:f2:4d:14:8f:4b:bb:6e:f1:71:c6:4f: b2:31:87:45:ab:14:3b:89:ef:ee:05:52:0e:68:ba:ef:84:ba: 99:c8:41:7e:f3:e0:60:ad:6d:aa:9d:51:a0:8d:25:6c:71:90: a1:ec:29:ab:02:5a:65:ea:b2:e1:45:4d:c0:8f:34:4c:1e:0f: 02:83:7e:ef:22:67:09:02:be:43:d8:c4:d4:c6:89:b0:67:69: 11:ad:fc:47:f1:0a:b8:6e:39:5a:ca:e4:c9:ba:65:c1:c2:3d: 10:56:ff:ac:8c:bb:1c:2d:d5:3b:d5:02:b0:40:d7:3f:d9:65: 88:55:36:02:26:de:1b:43:4e:7b:8e:2a:28:65:1c:57:b0:c9: 9e:27:f6:b1:84:26:ec:b8:08:13:4e:e0:59:6c:ad:1b:c0:42: ba:53:fc:dc -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUEqiIH3vAWFIelVqDVT9i5XenGAUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjA0MTMwNVoX DTI1MDcwMTA0MTgwNVowMzExMC8GA1UEAxMoMDBBQzY1RTYxRTQ5MTMyNjhDNUQw QjhBRkU4QzdEOTEzQjY4NkQ5RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL6Vw/idigYy9AZ05x5NKJTzvXeGz017wlsyJQjYlS9xV4Ow7tE5yRrW30sT LAxpdX5oU1mGQU1lTc0lONjoYEm+G8BfoOeFoewLQfBeaOaeOcpIu352H9xCUHjn syTDLQRC1JOjVhXbS1plsSS3Hirssq7F3Q5m/v9HNHiFoPZcPuRMlUBjeNpz+r0O Yqbwh3ZvGhptmqNKy5LfPN/aIV11ZAmn3SSnBP612Dwg9BSMyjwgwl/00olJOczV 5Hn/ZltumO5sA6KFYQ4qnObgSoK14127f6yfRov/5WrrFelkcVs29L47PqFPgI/2 X2lXuMwWEqJyQx8Gih/2/+fmdjcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFACsZeYeSRMmjF0Liv6MfZE7aG2fMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zZTg5NTBmMC0zYjE0LTRhNmQtYjMwZi03NTM3OWNiMmViY2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlODk1MGYw LTNiMTQtNGE2ZC1iMzBmLTc1Mzc5Y2IyZWJjZS8wLzAwQUM2NUU2MUU0OTEzMjY4 QzVEMEI4QUZFOEM3RDkxM0I2ODZEOUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnd3QwDQQCAAIwBwMFACQDQ0AwDQYJKoZIhvcNAQELBQADggEBABcLxLz6tEYI 1/dT2yegDDi+Be6Vu9/k1mC1enUbviqoq5ccy31fFrkHYqbd/IDYTSnIuCZQLRia qErHr0BiTZ9TE3R9kmZ2Aa8xDY7gKmdnLvGfnwDQvX4V4hMnF1BI6dfyTRSPS7tu 8XHGT7Ixh0WrFDuJ7+4FUg5ouu+EupnIQX7z4GCtbaqdUaCNJWxxkKHsKasCWmXq suFFTcCPNEweDwKDfu8iZwkCvkPYxNTGibBnaRGt/EfxCrhuOVrK5Mm6ZcHCPRBW /6yMuxwt1TvVArBA1z/ZZYhVNgIm3htDTnuOKihlHFewyZ4n9rGEJuy4CBNO4Fls rRvAQrpT/Nw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:38 2024 by rpki-client on console-ams.rpki-client.org