$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer File: 1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.cer (raw, json) Hash identifier: UHlxAXsCfovxfC2nfjU47nz0w04geBEsdXe5v9w1pSA= Subject key identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 261796F13F477E9CE9B64BA068C16CE774EFEB66 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft caRepository: rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 02 Sep 2023 13:29:15 +0000 Certificate not after: Sat 31 Aug 2024 13:34:15 +0000 Subordinate resources: IP: 103.156.14.0/23 IP: 2406:7b40::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:17:96:f1:3f:47:7e:9c:e9:b6:4b:a0:68:c1:6c:e7:74:ef:eb:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 2 13:29:15 2023 GMT Not After : Aug 31 13:34:15 2024 GMT Subject: CN=1D8D9CBC52934EF02BCD1D478AEBA6A368F80419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:da:69:e8:fb:d0:22:93:f3:92:50:b4:32:b7: 24:5f:28:56:75:ad:d5:2e:92:bc:dc:ae:76:77:24: d2:bf:79:60:9d:7a:90:3a:68:13:fa:4c:74:a8:c6: c4:f3:97:b4:4c:eb:58:fe:10:89:28:98:c6:07:d5: 5c:fd:fc:05:dc:71:59:dd:b2:c4:80:6c:d5:df:6e: 07:ad:64:04:d1:98:e2:60:1b:2b:c0:46:04:6b:b6: 9f:05:1c:3b:7b:de:2b:04:05:5c:7d:42:da:7a:04: aa:eb:c3:b3:c9:e0:6f:23:21:ea:8f:60:fe:17:8f: 9f:39:8f:fb:c7:45:c0:97:62:c0:f8:65:dc:33:45: 48:6a:80:0d:f8:42:62:28:25:f8:9d:57:dd:61:eb: 9d:b6:43:5a:c1:f2:bc:24:8f:61:1e:2f:7f:4d:fc: e1:1a:13:8c:30:b4:7a:1b:d1:c1:be:32:b0:9d:bc: fb:5f:75:e9:3d:05:c2:dd:58:ac:4b:2b:37:f4:d2: 7f:84:0f:a2:51:a7:68:72:f0:57:c8:43:d6:04:4c: e9:a6:8a:0c:b8:75:0b:34:c3:c2:3f:51:cf:6c:9e: 6d:d8:38:b9:93:87:a8:bb:8f:5f:99:41:7d:20:f6: 50:3d:74:4a:48:04:f2:f2:90:03:99:2d:df:b8:e8: 95:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1D:8D:9C:BC:52:93:4E:F0:2B:CD:1D:47:8A:EB:A6:A3:68:F8:04:19 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ce1ea513-ac6e-4a5f-b3eb-d5352caf486b/0/1D8D9CBC52934EF02BCD1D478AEBA6A368F80419.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.14.0/23 IPv6: 2406:7b40::/32 Signature Algorithm: sha256WithRSAEncryption 00:7a:8f:28:3d:c5:e6:12:b2:3a:4d:2a:83:95:f5:24:e3:d3: 95:45:9a:03:5c:c7:7c:4b:29:b6:de:f8:2d:cc:83:d0:fe:5a: fb:77:01:38:be:e5:c2:a8:34:9e:ca:f8:72:0a:64:e2:ad:43: 54:2f:12:11:87:36:01:fb:bd:58:93:2b:9e:64:5c:58:09:e5: 62:c2:c4:72:e8:06:d9:a8:2a:9f:bb:05:3e:a6:15:98:ee:6a: 4d:2d:a9:70:f9:cf:89:03:02:81:39:30:42:4a:61:3f:11:ec: 32:05:49:d6:0c:7c:51:f5:d0:9f:5f:1f:db:60:b5:a1:d5:49: 14:09:89:b1:b3:1e:88:4b:09:f2:cf:5b:d8:06:eb:80:2d:86: d5:6d:0e:01:4c:5a:69:71:75:56:88:b5:65:63:19:e2:bd:c2: a3:46:52:5b:11:14:90:2b:6a:c7:5b:d4:d9:c7:1b:56:5a:85: 57:72:95:06:2e:85:43:b2:b6:62:01:b8:1b:3a:70:22:56:a5: ce:ae:45:8f:bf:ee:34:45:a8:20:05:71:49:d2:e1:f2:2a:dd: fd:84:bc:c8:f0:c5:0c:be:be:f8:f2:c4:92:1b:f7:d0:90:3f: 91:fa:0e:a0:26:de:d3:cd:3b:7e:89:28:21:b5:03:4e:a7:ee: 5e:5a:78:64 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUJheW8T9HfpzptkugaMFs53Tv62YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwMjEzMjkxNVoX DTI0MDgzMTEzMzQxNVowMzExMC8GA1UEAxMoMUQ4RDlDQkM1MjkzNEVGMDJCQ0Qx RDQ3OEFFQkE2QTM2OEY4MDQxOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMLaaej70CKT85JQtDK3JF8oVnWt1S6SvNyudnck0r95YJ16kDpoE/pMdKjG xPOXtEzrWP4QiSiYxgfVXP38BdxxWd2yxIBs1d9uB61kBNGY4mAbK8BGBGu2nwUc O3veKwQFXH1C2noEquvDs8ngbyMh6o9g/hePnzmP+8dFwJdiwPhl3DNFSGqADfhC Yigl+J1X3WHrnbZDWsHyvCSPYR4vf0384RoTjDC0ehvRwb4ysJ28+1916T0Fwt1Y rEsrN/TSf4QPolGnaHLwV8hD1gRM6aaKDLh1CzTDwj9Rz2yebdg4uZOHqLuPX5lB fSD2UD10SkgE8vKQA5kt37jolYcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFB2NnLxSk07wK80dR4rrpqNo+AQZMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZTFlYTUxMy1hYzZlLTRhNWYtYjNlYi1kNTM1MmNhZjQ4NmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlMWVhNTEz LWFjNmUtNGE1Zi1iM2ViLWQ1MzUyY2FmNDg2Yi8wLzFEOEQ5Q0JDNTI5MzRFRjAy QkNEMUQ0NzhBRUJBNkEzNjhGODA0MTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnA4wDQQCAAIwBwMFACQGe0AwDQYJKoZIhvcNAQELBQADggEBAAB6jyg9xeYS sjpNKoOV9STj05VFmgNcx3xLKbbe+C3Mg9D+Wvt3ATi+5cKoNJ7K+HIKZOKtQ1Qv EhGHNgH7vViTK55kXFgJ5WLCxHLoBtmoKp+7BT6mFZjuak0tqXD5z4kDAoE5MEJK YT8R7DIFSdYMfFH10J9fH9tgtaHVSRQJibGzHohLCfLPW9gG64AthtVtDgFMWmlx dVaItWVjGeK9wqNGUlsRFJArasdb1NnHG1ZahVdylQYuhUOytmIBuBs6cCJWpc6u RY+/7jRFqCAFcUnS4fIq3f2EvMjwxQy+vvjyxJIb99CQP5H6DqAm3tPNO36JKCG1 A06n7l5aeGQ= -----END CERTIFICATE-----Generated at Tue May 7 16:42:33 2024 by rpki-client on console-ams.rpki-client.org