$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer File: 5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer (raw, json) Hash identifier: Jp0lQJylI2AAbOhUueYyL4qh3CCN5dMtaQ6C0GDN9rQ= Subject key identifier: 57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41035D6857036BCB2CD9CE7D7BFB871431D94019 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.mft caRepository: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 26 Jul 2024 12:31:59 +0000 Certificate not after: Fri 25 Jul 2025 12:36:59 +0000 Subordinate resources: IP: 103.102.250.0/24 IP: 2001:df2:f100::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:03:5d:68:57:03:6b:cb:2c:d9:ce:7d:7b:fb:87:14:31:d9:40:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 26 12:31:59 2024 GMT Not After : Jul 25 12:36:59 2025 GMT Subject: CN=5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:03:ae:84:f4:27:5b:76:5b:8a:0f:c8:0d:e8: 7f:60:07:8c:fd:a8:81:9b:54:66:c1:ae:25:57:5f: ef:d9:2b:3f:38:a0:a1:2f:b1:16:e8:18:f8:e6:d2: 02:65:7f:82:34:1c:0d:11:80:55:2c:f5:1c:59:1b: cb:4d:2c:7b:63:68:17:44:8b:19:6f:62:69:1e:84: 7c:27:f9:3b:6f:cb:b9:3d:b8:8a:8b:48:2b:7f:38: a0:a8:e1:4f:e9:33:06:ac:58:23:0f:98:fa:58:47: 4c:9f:af:64:74:cf:2d:5f:f8:a5:5a:48:36:53:2a: 4d:42:48:da:f1:77:a6:c2:f8:e1:52:7d:e5:89:01: bd:27:ca:a3:f6:99:a3:9a:ec:ca:86:4c:1b:62:4c: 37:60:61:66:e3:e5:82:c7:e4:0c:e7:58:72:3c:41: 64:d5:25:d0:7c:ca:47:b3:f2:b1:e7:e4:44:f0:20: 42:4c:33:35:6c:c9:2b:44:f8:90:60:74:ca:46:13: 0a:34:b2:c0:20:ce:c4:2d:88:80:df:55:aa:b5:89: 56:7c:94:20:cc:02:b3:c4:0f:26:81:dd:8a:7a:93: 35:47:27:e3:38:fb:10:31:ff:bf:53:1e:49:71:4e: e4:4e:dd:c2:56:dc:08:fe:34:b3:f8:d2:63:40:fb: da:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.250.0/24 IPv6: 2001:df2:f100::/48 Signature Algorithm: sha256WithRSAEncryption 11:e7:5b:e0:7a:fa:1a:ae:ba:21:9b:fc:9d:f6:ba:85:b3:50: e3:fd:15:c7:bd:08:1b:78:60:a6:a6:15:65:84:88:19:d1:44: f2:d9:22:0a:76:f7:5e:99:f3:8d:75:19:e4:25:52:cb:86:cd: bf:e2:d4:a0:45:05:00:b5:d3:d1:0d:4f:b9:78:9c:64:a8:0b: 61:c7:41:c0:88:30:0a:65:79:10:39:5f:45:ff:08:e6:f0:3b: b1:66:57:2c:87:97:eb:86:06:c9:c7:ce:4f:40:d2:89:f2:7d: 74:9b:e3:68:7e:97:1a:b7:9a:57:ec:47:1b:27:9d:07:bc:ed: 46:25:08:43:1d:8b:8a:c9:47:bc:04:92:a7:13:84:ef:af:da: 34:42:5d:9a:62:11:f0:23:79:2f:69:f4:6b:c2:5c:0b:22:95: 6f:98:c1:04:95:bc:a0:d9:9b:9a:5e:c4:2f:24:df:ef:c0:a1: c3:0d:89:93:48:03:bf:a9:ec:00:44:55:9d:a0:53:17:b2:45: cf:91:84:e5:40:6a:67:c6:53:5a:3c:a1:37:77:8c:09:61:f6: 61:dd:72:e0:59:e7:c6:bf:2e:e1:1b:88:24:68:76:d3:cc:db: af:47:4d:c8:35:58:a4:c3:19:5b:b3:fc:e8:2b:90:52:fc:b8: 3e:9c:43:99 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUQQNdaFcDa8ss2c59e/uHFDHZQBkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcyNjEyMzE1OVoX DTI1MDcyNTEyMzY1OVowMzExMC8GA1UEAxMoNTc4N0FENjY1OUVBOEE1RTQwMTg4 NzZGNUY5REJEOUFBQUY5Q0ExRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOADroT0J1t2W4oPyA3of2AHjP2ogZtUZsGuJVdf79krPzigoS+xFugY+ObS AmV/gjQcDRGAVSz1HFkby00se2NoF0SLGW9iaR6EfCf5O2/LuT24iotIK384oKjh T+kzBqxYIw+Y+lhHTJ+vZHTPLV/4pVpINlMqTUJI2vF3psL44VJ95YkBvSfKo/aZ o5rsyoZMG2JMN2BhZuPlgsfkDOdYcjxBZNUl0HzKR7PysefkRPAgQkwzNWzJK0T4 kGB0ykYTCjSywCDOxC2IgN9VqrWJVnyUIMwCs8QPJoHdinqTNUcn4zj7EDH/v1Me SXFO5E7dwlbcCP40s/jSY0D72ksCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFeHrWZZ6opeQBiHb1+dvZqq+codMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNWI4ZTc3NC0xNjgzLTQ1NmQtYmJjMC0zNDMyMjVmMTdmNGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YjhlNzc0 LTE2ODMtNDU2ZC1iYmMwLTM0MzIyNWYxN2Y0Yy8wLzU3ODdBRDY2NTlFQThBNUU0 MDE4ODc2RjVGOURCRDlBQUFGOUNBMUQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnZvowDwQCAAIwCQMHACABDfLxADANBgkqhkiG9w0BAQsFAAOCAQEAEedb4Hr6 Gq66IZv8nfa6hbNQ4/0Vx70IG3hgpqYVZYSIGdFE8tkiCnb3XpnzjXUZ5CVSy4bN v+LUoEUFALXT0Q1PuXicZKgLYcdBwIgwCmV5EDlfRf8I5vA7sWZXLIeX64YGycfO T0DSifJ9dJvjaH6XGreaV+xHGyedB7ztRiUIQx2LislHvASSpxOE76/aNEJdmmIR 8CN5L2n0a8JcCyKVb5jBBJW8oNmbml7ELyTf78Chww2Jk0gDv6nsAERVnaBTF7JF z5GE5UBqZ8ZTWjyhN3eMCWH2Yd1y4Fnnxr8u4RuIJGh208zbr0dNyDVYpMMZW7P8 6CuQUvy4PpxDmQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:17 2024 by rpki-client on console-fra.rpki-client.org