$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/27114CFC585C5DB2E0AC5DA74F04C66C319492F1.cer File: 27114CFC585C5DB2E0AC5DA74F04C66C319492F1.cer (raw, json) Hash identifier: JbUwfqfRNNR7Wr59pmrFKcy/R7GzTtDt6etl4JA7w0k= Subject key identifier: 27:11:4C:FC:58:5C:5D:B2:E0:AC:5D:A7:4F:04:C6:6C:31:94:92:F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7D51EF827A3FF4630EBC1A0FE2E6926927C754C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/27114CFC585C5DB2E0AC5DA74F04C66C319492F1.mft caRepository: rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 04 Jan 2024 10:27:41 +0000 Certificate not after: Thu 02 Jan 2025 10:32:41 +0000 Subordinate resources: IP: 103.79.128.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:51:ef:82:7a:3f:f4:63:0e:bc:1a:0f:e2:e6:92:69:27:c7:54:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 4 10:27:41 2024 GMT Not After : Jan 2 10:32:41 2025 GMT Subject: CN=27114CFC585C5DB2E0AC5DA74F04C66C319492F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:32:18:00:66:67:fa:d8:65:1b:d0:4d:dd:e5: d2:25:68:86:60:0a:93:f2:1c:d2:a0:46:cb:8a:b2: bf:70:10:71:ae:3d:ff:72:95:7b:73:50:3e:fd:7c: dd:df:19:44:84:2c:8b:b8:dc:9c:3d:25:61:97:77: 97:d0:d4:4f:08:db:14:cb:51:21:d0:7c:a7:f8:55: 28:b2:df:61:65:e7:02:f9:d2:93:b3:52:7b:e8:88: c9:82:1d:00:5f:1e:82:e7:11:5b:2b:06:5d:f0:72: 11:68:77:cc:dd:e9:43:78:72:fe:84:4f:fb:a5:cb: c1:f0:b7:7d:4f:9a:74:ce:b6:56:c1:b3:fc:ea:21: 2f:01:38:7a:fd:07:90:f5:93:28:87:a0:d5:d7:a3: 45:ac:e1:16:72:e0:33:3a:3c:6a:6a:a7:a9:c2:bf: dd:82:2f:10:55:7b:fa:e7:9d:09:dc:35:10:a1:73: 82:cb:8d:d0:80:43:72:24:be:33:29:fb:04:95:f5: e6:cc:9d:10:85:4b:c8:85:a6:3f:bf:7d:59:91:d1: 70:f5:cc:27:11:db:ef:d5:c1:fa:38:50:fb:42:3a: 92:db:59:c4:7f:19:cc:2d:c0:9e:b7:95:6d:4d:e1: 23:7d:e2:81:a6:ba:77:63:f3:2f:b6:42:35:b1:70: 4e:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 27:11:4C:FC:58:5C:5D:B2:E0:AC:5D:A7:4F:04:C6:6C:31:94:92:F1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e5c8b9e3-b44f-490b-bf51-99f2dd2a1364/0/27114CFC585C5DB2E0AC5DA74F04C66C319492F1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.128.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:fb:19:d7:87:af:08:a4:02:73:d3:9c:64:5b:8d:91:1f:68: bc:26:5f:ae:83:fd:43:7c:ef:ca:05:c1:95:34:1f:99:79:24: fa:40:49:12:a1:bb:7e:b7:ea:36:ed:1d:89:e7:fa:77:bc:30: 05:54:24:60:d4:37:62:59:1e:c1:70:4a:c2:90:f7:38:1e:f9: 3c:10:dc:31:2d:ff:e7:ec:63:74:bf:74:f5:de:0a:8a:92:05: f7:6b:28:10:f5:4b:f0:de:3e:dd:20:6c:dd:18:49:f0:0e:a2: ef:49:54:dd:ac:53:1f:cb:48:0a:80:b6:14:d2:1c:f6:a3:be: 1b:58:56:6b:f6:a3:20:0b:61:6f:64:78:47:ad:73:a3:03:c9: f9:2c:89:0b:45:1d:d7:18:50:f1:2e:e3:40:e5:15:96:b8:ce: 3b:97:8f:b7:3d:34:a3:27:3e:5a:59:54:35:40:78:91:83:74: 40:a4:18:29:02:ed:5c:54:4f:70:88:d3:94:fe:a4:45:5f:d8: 60:73:59:a0:81:34:a3:58:8c:8b:af:38:67:70:67:88:c5:45: b3:c1:4e:33:be:19:67:9e:c9:d4:5e:a6:5a:0b:7f:d0:a6:61: 34:4f:38:12:cd:d1:5f:f8:2b:3c:74:50:e6:72:fd:d4:22:4e: 4d:87:77:5f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUfVHvgno/9GMOvBoP4uaSaSfHVMEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwNDEwMjc0MVoX DTI1MDEwMjEwMzI0MVowMzExMC8GA1UEAxMoMjcxMTRDRkM1ODVDNURCMkUwQUM1 REE3NEYwNEM2NkMzMTk0OTJGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKEyGABmZ/rYZRvQTd3l0iVohmAKk/Ic0qBGy4qyv3AQca49/3KVe3NQPv18 3d8ZRIQsi7jcnD0lYZd3l9DUTwjbFMtRIdB8p/hVKLLfYWXnAvnSk7NSe+iIyYId AF8egucRWysGXfByEWh3zN3pQ3hy/oRP+6XLwfC3fU+adM62VsGz/OohLwE4ev0H kPWTKIeg1dejRazhFnLgMzo8amqnqcK/3YIvEFV7+uedCdw1EKFzgsuN0IBDciS+ Myn7BJX15sydEIVLyIWmP799WZHRcPXMJxHb79XB+jhQ+0I6kttZxH8ZzC3AnreV bU3hI33igaa6d2PzL7ZCNbFwTm8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCcRTPxYXF2y4Kxdp08ExmwxlJLxMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNWM4YjllMy1iNDRmLTQ5MGItYmY1MS05OWYyZGQyYTEzNjQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1YzhiOWUz LWI0NGYtNDkwYi1iZjUxLTk5ZjJkZDJhMTM2NC8wLzI3MTE0Q0ZDNTg1QzVEQjJF MEFDNURBNzRGMDRDNjZDMzE5NDkyRjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnT4AwDQYJKoZIhvcNAQELBQADggEBAAv7GdeHrwikAnPTnGRbjZEfaLwmX66D /UN878oFwZU0H5l5JPpASRKhu3636jbtHYnn+ne8MAVUJGDUN2JZHsFwSsKQ9zge +TwQ3DEt/+fsY3S/dPXeCoqSBfdrKBD1S/DePt0gbN0YSfAOou9JVN2sUx/LSAqA thTSHPajvhtYVmv2oyALYW9keEetc6MDyfksiQtFHdcYUPEu40DlFZa4zjuXj7c9 NKMnPlpZVDVAeJGDdECkGCkC7VxUT3CI05T+pEVf2GBzWaCBNKNYjIuvOGdwZ4jF RbPBTjO+GWeeydReploLf9CmYTRPOBLN0V/4Kzx0UOZy/dQiTk2Hd18= -----END CERTIFICATE-----Generated at Wed May 8 10:06:46 2024 by rpki-client on console-ams.rpki-client.org