$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer (raw, json) Hash identifier: VrLZe20pIVu4M63FD8ApecjDqVGG3O92fbdSVHIdFio= Subject key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5313FD7B864F9BCC1864539A3C2509F7D2774865 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft caRepository: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 18 Oct 2024 14:29:23 +0000 Certificate not after: Fri 17 Oct 2025 14:34:23 +0000 Subordinate resources: IP: 103.179.66.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:13:fd:7b:86:4f:9b:cc:18:64:53:9a:3c:25:09:f7:d2:77:48:65 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 18 14:29:23 2024 GMT Not After : Oct 17 14:34:23 2025 GMT Subject: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:57:22:ed:e0:fe:04:e2:40:5d:22:29:b8:d5: 4e:0b:6c:65:f0:31:53:35:6b:f4:4a:c9:13:bb:d7: 04:23:58:ea:36:15:82:80:29:48:3a:2e:b8:11:56: 7b:79:89:7d:e6:d0:ef:68:d9:1b:87:37:b4:c0:5a: d0:9a:72:ec:f2:1c:2a:20:b7:60:1f:49:f1:ad:f5: 52:8f:c6:92:62:41:59:5d:c5:54:a4:4f:9b:31:9a: 40:68:38:eb:02:b2:42:34:7e:e7:e8:ba:19:55:e4: 37:4a:c0:78:82:6e:68:62:8d:34:3b:df:e0:27:34: 2b:12:74:b3:fa:92:ba:90:86:ed:f5:6c:fc:20:37: d0:f5:4c:fd:c8:f3:4d:e9:2e:46:eb:cb:98:fd:04: 61:86:23:3c:8e:ea:22:45:d5:e3:9c:37:bb:79:4d: 94:fe:f8:55:51:4c:9f:04:fb:2c:bb:b0:2d:c9:89: 4b:5b:72:b7:8d:5b:83:26:14:54:6e:96:61:5d:79: c4:3b:89:11:bf:33:81:d7:ff:79:47:bd:09:ea:2e: c1:18:bf:b8:d0:27:33:46:1c:66:ab:c9:95:1d:41: 45:7e:07:e9:33:ee:3d:d1:12:a9:60:cd:65:3a:0e: ce:3f:f7:e8:96:c8:41:4f:b5:cb:d2:a9:9a:cf:bc: 67:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.66.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:f3:b6:cd:62:ce:41:21:0a:0b:b5:eb:84:af:fc:d1:0b:68: 39:50:a1:b8:b4:b8:7b:ac:e9:21:f0:33:fa:19:ad:d5:ab:83: 68:4e:b8:f9:6c:d4:9d:73:35:dd:14:a4:61:a2:58:08:4f:43: e2:ca:ba:80:70:8f:f7:89:ae:6c:e4:6b:3f:41:32:e2:9d:93: b8:14:8f:a0:12:af:21:49:ff:cc:2f:86:d9:93:06:77:36:7a: ef:a6:69:4d:ed:d1:6f:9b:96:14:aa:7e:0a:33:a4:97:2c:b8: 95:db:a9:17:fb:1d:40:e0:86:f4:b0:5b:a5:e7:92:b6:6a:a4: fd:52:7c:9b:73:89:b8:83:bf:89:4b:58:c2:14:06:25:c5:f4: 32:a6:ae:30:d9:57:2d:8c:dd:cb:e2:a7:57:4f:a5:9e:11:7a: 9d:47:27:de:39:03:8b:da:c9:e0:56:b1:29:80:05:8d:ff:f1: 7a:e9:82:80:c4:df:66:37:c8:ca:1b:d6:d3:9d:be:b5:86:de: bf:97:c7:3a:09:74:2e:8f:4f:83:17:4f:eb:6f:72:c1:26:e9: 06:11:1e:d7:bc:7e:d3:f1:d6:88:63:d4:1f:01:db:95:f0:5f: 68:92:41:f7:e1:67:2b:c5:a2:01:67:ea:63:d9:eb:69:f8:dd: 51:40:44:f9 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUxP9e4ZPm8wYZFOaPCUJ99J3SGUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxODE0MjkyM1oX DTI1MTAxNzE0MzQyM1owMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNB NUQxRTI1ODk0OTRFRUFDQTI3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhXIu3g/gTiQF0iKbjVTgtsZfAxUzVr9ErJE7vXBCNY6jYVgoApSDouuBFW e3mJfebQ72jZG4c3tMBa0Jpy7PIcKiC3YB9J8a31Uo/GkmJBWV3FVKRPmzGaQGg4 6wKyQjR+5+i6GVXkN0rAeIJuaGKNNDvf4Cc0KxJ0s/qSupCG7fVs/CA30PVM/cjz TekuRuvLmP0EYYYjPI7qIkXV45w3u3lNlP74VVFMnwT7LLuwLcmJS1tyt41bgyYU VG6WYV15xDuJEb8zgdf/eUe9CeouwRi/uNAnM0YcZqvJlR1BRX4H6TPuPdESqWDN ZToOzj/36JbIQU+1y9Kpms+8Z+ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFvTQabUavUs/yOl0eJYlJTurKJwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMTI3NDNk LWQ1NmQtNGE3Ny05MGUyLWM1MmU2ZGZlMDZjMi8wLzVCRDM0MUE2RDQ2QUY1MkNG RjIzQTVEMUUyNTg5NDk0RUVBQ0EyNzAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFns0IwDQYJKoZIhvcNAQELBQADggEBAF3zts1izkEhCgu164Sv/NELaDlQobi0 uHus6SHwM/oZrdWrg2hOuPls1J1zNd0UpGGiWAhPQ+LKuoBwj/eJrmzkaz9BMuKd k7gUj6ASryFJ/8wvhtmTBnc2eu+maU3t0W+blhSqfgozpJcsuJXbqRf7HUDghvSw W6XnkrZqpP1SfJtzibiDv4lLWMIUBiXF9DKmrjDZVy2M3cvip1dPpZ4Rep1HJ945 A4vayeBWsSmABY3/8XrpgoDE32Y3yMob1tOdvrWG3r+XxzoJdC6PT4MXT+tvcsEm 6QYRHte8ftPx1ohj1B8B25XwX2iSQffhZyvFogFn6mPZ62n43VFARPk= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:18 2024 by rpki-client on console-fra.rpki-client.org