$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/31BD46BE7D53E57838D5FD894590B8AFF16D366C.cer File: 31BD46BE7D53E57838D5FD894590B8AFF16D366C.cer (raw, json) Hash identifier: zMk/1H8+mMWYH+KfOtEvV4RdEtSwgrF5ZThHcxB23CI= Subject key identifier: 31:BD:46:BE:7D:53:E5:78:38:D5:FD:89:45:90:B8:AF:F1:6D:36:6C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A23462D3684AF81C5E2F820F74CA1E6862D3DFC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/66ad09f3-0023-4445-8416-5cbde13fdd40/0/31BD46BE7D53E57838D5FD894590B8AFF16D366C.mft caRepository: rsync://repo-rpki.idnic.net/repo/66ad09f3-0023-4445-8416-5cbde13fdd40/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 17 Aug 2024 08:07:47 +0000 Certificate not after: Sat 16 Aug 2025 08:12:47 +0000 Subordinate resources: IP: 103.104.12.0/22 IP: 2401:fcc0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:23:46:2d:36:84:af:81:c5:e2:f8:20:f7:4c:a1:e6:86:2d:3d:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 17 08:07:47 2024 GMT Not After : Aug 16 08:12:47 2025 GMT Subject: CN=31BD46BE7D53E57838D5FD894590B8AFF16D366C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:48:8e:a8:32:dc:8e:0c:eb:a0:a3:08:84:6d: 43:e6:d0:25:3a:f1:a2:d1:17:b2:8e:8b:24:20:3f: bf:72:dd:5f:52:3a:bd:5c:95:6c:63:9c:ef:22:11: ce:f0:be:03:56:2d:45:dd:c3:1e:d5:d9:2b:db:92: 37:0c:88:b8:06:1c:27:f9:67:65:b4:a5:d8:f1:db: 48:c2:23:b5:fe:91:b5:5f:34:38:17:18:e9:7b:8e: 29:8d:0a:5f:32:37:da:12:0c:91:98:d8:9e:eb:03: b5:c3:c9:e3:c3:db:f3:03:f2:93:29:34:25:12:ea: c0:80:12:cc:3a:05:5e:df:02:e4:24:4c:6c:1d:65: d4:19:16:c6:65:e0:75:1e:13:7c:3b:f3:19:a7:35: ca:c8:c7:e9:78:dd:60:1f:ac:90:f7:aa:cd:a6:01: 47:ac:bd:43:51:5f:42:72:d9:72:e7:b5:6a:13:ae: 30:e9:16:50:19:da:bb:b2:be:bd:b7:ce:89:81:db: 13:37:bc:42:0b:d0:6f:38:4f:20:c0:4f:91:1f:e5: 18:95:e5:e1:c5:b2:d9:46:69:e8:8a:ca:e3:06:35: 96:59:91:8c:3e:a7:4a:a6:12:d1:0f:a1:68:6b:97: 92:30:37:b3:01:10:d6:90:91:b5:34:30:d3:f8:3e: 70:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 31:BD:46:BE:7D:53:E5:78:38:D5:FD:89:45:90:B8:AF:F1:6D:36:6C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/66ad09f3-0023-4445-8416-5cbde13fdd40/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/66ad09f3-0023-4445-8416-5cbde13fdd40/0/31BD46BE7D53E57838D5FD894590B8AFF16D366C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.104.12.0/22 IPv6: 2401:fcc0::/32 Signature Algorithm: sha256WithRSAEncryption 54:cf:0d:97:73:20:cf:6e:e8:9c:45:83:a8:9b:1e:27:fa:53: d0:a8:2f:8c:d5:38:75:bb:c9:5b:db:f4:1d:4d:cf:8c:8a:ea: 9b:fc:cb:bf:9c:46:3e:d2:80:ff:7e:43:c1:b5:71:b3:77:e0: 9e:29:17:f7:fd:85:28:a0:de:ee:38:8f:81:3e:97:c2:b9:e7: 4b:f6:fb:95:aa:25:ee:34:dd:b6:82:c6:e2:68:11:72:87:27: 53:34:71:79:dd:80:40:38:23:9f:70:68:d7:cf:32:9b:70:8b: c8:62:f4:47:45:e1:c3:06:1b:fe:9f:d6:34:d7:31:c2:fc:b1: 29:44:c0:5d:08:63:44:cd:7b:63:2e:c8:24:f4:d2:6c:f0:9c: d7:c1:4d:f7:67:b2:d8:56:5f:ef:8b:1a:3b:6b:19:c4:77:6e: b5:28:d8:c4:bb:17:8a:bf:66:a9:f2:14:8f:88:30:bc:3a:1c: 5e:ca:3e:be:fd:71:11:6e:db:f3:e8:45:a1:be:2c:af:b4:8e: 0e:bf:24:cd:31:d5:7e:33:e1:af:4d:fd:ab:98:97:31:d9:8a: da:1e:ae:75:58:e1:50:a6:43:40:b6:4a:ba:56:a1:48:21:52: 33:a1:bd:17:0a:56:92:ef:03:35:30:4d:15:10:56:22:55:da: 63:e0:0d:5b -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUGiNGLTaEr4HF4vgg90yh5oYtPfwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxNzA4MDc0N1oX DTI1MDgxNjA4MTI0N1owMzExMC8GA1UEAxMoMzFCRDQ2QkU3RDUzRTU3ODM4RDVG RDg5NDU5MEI4QUZGMTZEMzY2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOhIjqgy3I4M66CjCIRtQ+bQJTrxotEXso6LJCA/v3LdX1I6vVyVbGOc7yIR zvC+A1YtRd3DHtXZK9uSNwyIuAYcJ/lnZbSl2PHbSMIjtf6RtV80OBcY6XuOKY0K XzI32hIMkZjYnusDtcPJ48Pb8wPykyk0JRLqwIASzDoFXt8C5CRMbB1l1BkWxmXg dR4TfDvzGac1ysjH6XjdYB+skPeqzaYBR6y9Q1FfQnLZcue1ahOuMOkWUBnau7K+ vbfOiYHbEze8QgvQbzhPIMBPkR/lGJXl4cWy2UZp6IrK4wY1llmRjD6nSqYS0Q+h aGuXkjA3swEQ1pCRtTQw0/g+cH0CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDG9Rr59U+V4ONX9iUWQuK/xbTZsMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82NmFkMDlmMy0wMDIzLTQ0NDUtODQxNi01Y2JkZTEzZmRkNDAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2YWQwOWYz LTAwMjMtNDQ0NS04NDE2LTVjYmRlMTNmZGQ0MC8wLzMxQkQ0NkJFN0Q1M0U1Nzgz OEQ1RkQ4OTQ1OTBCOEFGRjE2RDM2NkMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnaAwwDQQCAAIwBwMFACQB/MAwDQYJKoZIhvcNAQELBQADggEBAFTPDZdzIM9u 6JxFg6ibHif6U9CoL4zVOHW7yVvb9B1Nz4yK6pv8y7+cRj7SgP9+Q8G1cbN34J4p F/f9hSig3u44j4E+l8K550v2+5WqJe403baCxuJoEXKHJ1M0cXndgEA4I59waNfP Mptwi8hi9EdF4cMGG/6f1jTXMcL8sSlEwF0IY0TNe2MuyCT00mzwnNfBTfdnsthW X++LGjtrGcR3brUo2MS7F4q/ZqnyFI+IMLw6HF7KPr79cRFu2/PoRaG+LK+0jg6/ JM0x1X4z4a9N/auYlzHZitoernVY4VCmQ0C2SrpWoUghUjOhvRcKVpLvAzUwTRUQ ViJV2mPgDVs= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:40 2024 by rpki-client on console-ams.rpki-client.org