$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer File: 20ABF702057AD5F01207F6C578160654EB44C914.cer (raw, json) Hash identifier: ZElKF0MyoupqIXPPDVW2HetYTJ7To15k3WNlGYuHcl0= Subject key identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1249A6A37F6E8C7EA11D9D6447A2FD0A8E93A1F5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft caRepository: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 13 Sep 2024 13:05:43 +0000 Certificate not after: Fri 12 Sep 2025 13:10:43 +0000 Subordinate resources: IP: 103.164.80.0/24 IP: 103.209.1.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:49:a6:a3:7f:6e:8c:7e:a1:1d:9d:64:47:a2:fd:0a:8e:93:a1:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 13 13:05:43 2024 GMT Not After : Sep 12 13:10:43 2025 GMT Subject: CN=20ABF702057AD5F01207F6C578160654EB44C914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6f:ed:03:62:d0:34:5c:13:a1:dd:c1:bb:4f: bf:e6:dc:d1:7a:93:b0:5e:2a:97:67:ee:df:94:87: 5a:f7:89:3b:df:97:df:e6:e0:2b:09:ce:11:45:82: e9:e5:4a:6d:53:0b:f0:d4:0e:7b:b6:ad:af:30:0b: 6d:bc:a8:de:1d:8c:3b:95:7f:50:19:5a:70:4b:c4: 12:11:9d:78:cc:5e:08:1a:98:8f:18:de:19:fc:84: 42:6b:dd:c7:7e:32:7b:df:c5:2b:e8:14:df:86:42: cd:9e:d0:28:5f:16:cf:f5:f5:78:02:9a:30:0d:4e: 23:49:96:f9:5d:1a:60:7e:da:a6:f7:30:f4:f1:5f: a1:24:aa:1d:d9:9a:6a:f5:08:2d:86:9a:de:a9:ce: 87:f2:c1:a9:b4:50:c9:bc:bd:28:cb:f5:68:ed:13: 0b:ba:26:a6:31:17:e5:bf:09:9f:ec:4e:bf:a7:4c: 89:de:c1:32:5f:ef:a3:09:8c:53:40:97:85:5e:d7: 76:9e:8d:69:10:95:65:36:57:7d:2f:ac:6c:11:fc: 5b:01:03:70:a4:47:10:29:41:c1:dc:62:e6:ff:8b: 84:32:91:9b:34:6e:20:dd:cf:c8:fd:2e:d5:e7:26: e9:12:2c:8f:37:34:ad:73:7d:a1:27:0c:0a:e4:6c: 6a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.80.0/24 103.209.1.0/24 Signature Algorithm: sha256WithRSAEncryption 15:a3:e6:e5:df:48:49:9b:56:35:59:3f:43:67:d4:a9:ff:99: c5:dc:b6:43:1f:17:c0:2e:b7:34:24:6f:34:0b:b4:6a:8b:3d: 46:d1:cd:c0:10:65:ad:bc:e1:b5:78:27:b4:81:84:48:39:ed: e3:83:ad:c2:66:18:11:3c:55:91:11:57:28:f8:03:9d:fc:3c: 42:aa:ec:02:97:f7:87:9d:2d:2d:2e:50:f5:2a:04:59:3c:f0: 82:58:81:c5:0b:a9:eb:69:59:06:5c:25:7e:e7:5a:a7:51:e1: 55:e5:f6:eb:dd:7b:07:51:02:40:87:98:b9:4e:f5:f9:5b:12: 54:5e:5d:c5:6b:e6:bc:cf:f8:fa:0c:d8:68:69:d1:5d:64:a6: a4:fe:28:81:6c:96:1f:ed:9b:0b:4a:0b:f1:2a:0f:87:8a:2d: b3:f5:dd:f3:2d:92:30:74:72:3d:8b:d0:09:aa:6c:47:3c:a9: 45:01:cf:ac:20:24:38:98:5f:e0:e5:8c:d6:c8:9d:74:43:f6: 10:99:8e:29:a0:a3:be:16:50:f0:f4:83:d4:ea:ce:ba:a8:df: bc:82:f1:60:5b:71:31:3b:a6:1a:fb:a4:84:a1:fb:79:e8:54: 7d:28:37:b2:0f:56:93:49:52:96:d5:e6:29:41:16:ac:ff:e5: 76:64:8c:c8 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUEkmmo39ujH6hHZ1kR6L9Co6TofUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxMzEzMDU0M1oX DTI1MDkxMjEzMTA0M1owMzExMC8GA1UEAxMoMjBBQkY3MDIwNTdBRDVGMDEyMDdG NkM1NzgxNjA2NTRFQjQ0QzkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdv7QNi0DRcE6HdwbtPv+bc0XqTsF4ql2fu35SHWveJO9+X3+bgKwnOEUWC 6eVKbVML8NQOe7atrzALbbyo3h2MO5V/UBlacEvEEhGdeMxeCBqYjxjeGfyEQmvd x34ye9/FK+gU34ZCzZ7QKF8Wz/X1eAKaMA1OI0mW+V0aYH7apvcw9PFfoSSqHdma avUILYaa3qnOh/LBqbRQyby9KMv1aO0TC7ompjEX5b8Jn+xOv6dMid7BMl/vowmM U0CXhV7Xdp6NaRCVZTZXfS+sbBH8WwEDcKRHEClBwdxi5v+LhDKRmzRuIN3PyP0u 1ecm6RIsjzc0rXN9oScMCuRsaiMCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCCr9wIFetXwEgf2xXgWBlTrRMkUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82N2RiMjNiNy05MTU5LTQ2YzctODg1My0wNjY1NGFlNDdhZWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3ZGIyM2I3 LTkxNTktNDZjNy04ODUzLTA2NjU0YWU0N2FlZC8wLzIwQUJGNzAyMDU3QUQ1RjAx MjA3RjZDNTc4MTYwNjU0RUI0NEM5MTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BABnpFADBABn0QEwDQYJKoZIhvcNAQELBQADggEBABWj5uXfSEmbVjVZP0Nn1Kn/ mcXctkMfF8AutzQkbzQLtGqLPUbRzcAQZa284bV4J7SBhEg57eODrcJmGBE8VZER Vyj4A538PEKq7AKX94edLS0uUPUqBFk88IJYgcULqetpWQZcJX7nWqdR4VXl9uvd ewdRAkCHmLlO9flbElReXcVr5rzP+PoM2Ghp0V1kpqT+KIFslh/tmwtKC/EqD4eK LbP13fMtkjB0cj2L0AmqbEc8qUUBz6wgJDiYX+DljNbInXRD9hCZjimgo74WUPD0 g9Tqzrqo37yC8WBbcTE7phr7pISh+3noVH0oN7IPVpNJUpbV5ilBFqz/5XZkjMg= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:39 2024 by rpki-client on console-ams.rpki-client.org