$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer File: 5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer (raw, json) Hash identifier: 9J04UWEDUxWnLAmjvXuTSfCGOX0REPIZ+smxET0PvZ4= Subject key identifier: 5B:8C:3A:29:E9:0C:25:CB:F4:61:51:24:B1:17:BE:7F:C0:13:C6:1E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6ED3DE113327FFAA907976673B78F8850D4C4D03 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.mft caRepository: rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 15 Oct 2024 23:19:38 +0000 Certificate not after: Tue 14 Oct 2025 23:24:38 +0000 Subordinate resources: IP: 103.90.66.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:d3:de:11:33:27:ff:aa:90:79:76:67:3b:78:f8:85:0d:4c:4d:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 15 23:19:38 2024 GMT Not After : Oct 14 23:24:38 2025 GMT Subject: CN=5B8C3A29E90C25CBF4615124B117BE7FC013C61E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:11:e8:99:4b:c2:44:47:52:3a:9d:a6:b2:4d: ed:58:4b:70:f9:1a:af:d7:dc:45:3e:ef:32:08:13: 6d:1d:19:bd:f1:97:93:ca:ca:27:28:f2:76:f6:c1: 18:8e:0f:e9:1d:42:8a:2b:6b:c0:cf:46:f2:89:9b: 1b:18:d8:5f:45:92:67:54:fe:83:da:fc:4b:61:d7: 47:65:58:c1:c7:2c:26:33:67:05:a2:97:f3:7f:6f: 46:fa:37:be:a9:f2:1b:6a:7d:ab:89:a1:72:2f:e1: 40:b7:e7:aa:c9:88:57:53:bb:ce:b9:ca:8a:4c:70: 85:b2:47:b2:74:67:43:c1:69:21:9f:54:15:4f:98: d3:54:95:95:1d:9a:14:4e:b0:2d:84:98:b8:60:ae: 99:bd:33:fb:50:fe:fb:14:54:43:df:b4:e1:3c:2a: 63:f7:43:19:34:37:dc:df:0f:c8:1a:be:db:12:fb: 02:44:b5:58:5f:9b:6d:9a:27:32:ad:4d:bb:a0:80: 12:9e:4e:b8:f4:d1:b0:56:4b:74:7a:97:35:ba:b3: 97:01:8e:ef:6c:67:cb:b2:79:f5:f2:e2:d4:f2:cd: 54:44:d9:aa:b0:cb:f3:e5:6a:47:74:3e:08:b0:8e: fb:69:9d:a5:fb:58:c9:07:24:06:c3:b1:2d:89:3e: 65:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5B:8C:3A:29:E9:0C:25:CB:F4:61:51:24:B1:17:BE:7F:C0:13:C6:1E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.66.0/23 Signature Algorithm: sha256WithRSAEncryption 75:28:57:51:99:00:44:b4:5a:6e:10:82:bb:d5:84:20:30:ab: 3e:7a:79:b4:b7:15:ff:46:77:51:1e:b6:62:f7:6b:eb:81:13: 75:48:69:ea:94:7b:36:1f:9c:76:5b:12:9e:5f:74:8d:0f:49: 8f:38:f1:76:33:79:e6:b2:f6:76:62:2d:2c:32:c0:6b:ec:d2: c7:91:1b:88:26:c1:69:b9:b1:89:89:d6:d6:38:95:a7:cc:70: ab:0b:7a:d5:98:be:0d:36:73:d3:60:62:cf:d0:a5:54:5b:c3: 6e:03:b2:0d:65:a4:93:4a:71:08:d8:0a:3e:3e:90:75:13:f5: 1d:ee:c5:2c:2c:0f:2e:a3:e3:9c:7c:22:ae:f3:87:63:2f:e8: 21:77:2a:1e:1d:f5:4f:9e:49:74:f0:76:39:7e:8c:22:c2:f6: 6a:38:1b:fb:73:76:02:67:f4:46:f0:12:3b:6d:54:3a:84:b8: f0:31:5d:a4:34:c0:04:7a:b2:1e:a8:92:0b:ee:16:79:67:34: 65:93:16:1e:01:55:8d:a2:fb:3c:31:61:a5:c8:af:6a:52:2c: 4c:d1:62:fe:24:c2:29:7d:29:76:7a:18:7c:05:83:40:f6:34: 55:49:d4:c1:77:cc:24:3b:b1:d7:bd:b6:4f:fc:f3:a3:6e:44: b4:94:4d:fa -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbtPeETMn/6qQeXZnO3j4hQ1MTQMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxNTIzMTkzOFoX DTI1MTAxNDIzMjQzOFowMzExMC8GA1UEAxMoNUI4QzNBMjlFOTBDMjVDQkY0NjE1 MTI0QjExN0JFN0ZDMDEzQzYxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0R6JlLwkRHUjqdprJN7VhLcPkar9fcRT7vMggTbR0ZvfGXk8rKJyjydvbB GI4P6R1CiitrwM9G8ombGxjYX0WSZ1T+g9r8S2HXR2VYwccsJjNnBaKX839vRvo3 vqnyG2p9q4mhci/hQLfnqsmIV1O7zrnKikxwhbJHsnRnQ8FpIZ9UFU+Y01SVlR2a FE6wLYSYuGCumb0z+1D++xRUQ9+04TwqY/dDGTQ33N8PyBq+2xL7AkS1WF+bbZon Mq1Nu6CAEp5OuPTRsFZLdHqXNbqzlwGO72xny7J59fLi1PLNVETZqrDL8+VqR3Q+ CLCO+2mdpftYyQckBsOxLYk+ZSsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFuMOinpDCXL9GFRJLEXvn/AE8YeMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jOWYzYzc2OS1jZmIxLTQyMDYtOWY1NC1jMDU4N2U2M2JhNWIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5ZjNjNzY5 LWNmYjEtNDIwNi05ZjU0LWMwNTg3ZTYzYmE1Yi8wLzVCOEMzQTI5RTkwQzI1Q0JG NDYxNTEyNEIxMTdCRTdGQzAxM0M2MUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnWkIwDQYJKoZIhvcNAQELBQADggEBAHUoV1GZAES0Wm4QgrvVhCAwqz56ebS3 Ff9Gd1EetmL3a+uBE3VIaeqUezYfnHZbEp5fdI0PSY848XYzeeay9nZiLSwywGvs 0seRG4gmwWm5sYmJ1tY4lafMcKsLetWYvg02c9NgYs/QpVRbw24Dsg1lpJNKcQjY Cj4+kHUT9R3uxSwsDy6j45x8Iq7zh2Mv6CF3Kh4d9U+eSXTwdjl+jCLC9mo4G/tz dgJn9EbwEjttVDqEuPAxXaQ0wAR6sh6okgvuFnlnNGWTFh4BVY2i+zwxYaXIr2pS LEzRYv4kwil9KXZ6GHwFg0D2NFVJ1MF3zCQ7sde9tk/886NuRLSUTfo= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:21 2024 by rpki-client on console-ams.rpki-client.org