$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer File: 5C559181306986EE89AADF0A1CFC78EA8A093530.cer (raw, json) Hash identifier: spG9RwDDosvDCaNrLpU0FjKPGBkZuV0hgA3d0aRu+Hg= Subject key identifier: 5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 402FD85F535167622344B8CE3010833C02A98F58 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.mft caRepository: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 24 Sep 2024 16:07:48 +0000 Certificate not after: Tue 23 Sep 2025 16:12:48 +0000 Subordinate resources: IP: 103.250.129.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:2f:d8:5f:53:51:67:62:23:44:b8:ce:30:10:83:3c:02:a9:8f:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 24 16:07:48 2024 GMT Not After : Sep 23 16:12:48 2025 GMT Subject: CN=5C559181306986EE89AADF0A1CFC78EA8A093530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5e:9e:f0:74:26:33:ee:45:8d:30:60:9d:7c: d1:77:f6:20:0b:21:23:c5:c0:80:37:7d:c9:ec:bc: de:11:4a:01:4f:90:59:a7:01:05:a0:09:2e:fb:f1: 01:df:2c:d6:bf:d4:54:36:45:6c:c2:e6:e6:32:4e: fa:95:4b:48:23:71:7a:30:28:19:ec:fd:01:89:ea: 4a:6a:15:8a:b5:e7:b6:51:70:32:1d:fe:24:96:30: 16:ee:cf:1c:32:81:e2:54:58:1a:0e:33:c5:53:1a: d5:e8:20:11:91:3a:32:01:63:25:14:d3:12:9f:a1: 7a:83:e9:4e:ed:83:c8:04:55:2f:09:0e:de:95:2b: 49:24:13:24:9a:39:58:03:81:64:69:60:9f:a5:c1: ab:1f:20:05:29:74:c2:75:d1:c1:e1:4f:50:01:c9: a8:61:fa:0f:99:b3:c9:53:3d:8c:68:76:a9:d7:b6: 06:6a:2d:78:fd:d4:24:6f:02:8b:31:6f:3d:0b:0e: 40:1a:52:56:48:fe:c1:b9:7b:52:64:07:70:00:27: f6:5f:ae:5a:49:b3:5d:08:54:d8:db:e4:c0:a3:d2: a4:c7:df:bb:c5:e9:1b:d7:5f:ed:43:33:b7:10:14: 78:5f:1d:50:2b:8b:dd:d6:d2:18:e7:2d:6d:f4:cb: 53:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption 78:4c:8d:14:7e:83:64:bf:12:39:ee:da:5f:92:e5:eb:2a:03: 8e:11:23:1f:79:d4:2a:0d:00:a9:ea:eb:9f:b9:88:91:6b:70: 7e:f5:51:1e:12:5d:d0:13:0f:29:18:3b:d5:bd:fc:5e:95:65: 29:b6:c6:b3:0e:3a:b3:f5:3a:51:9e:8f:a0:11:26:06:b5:45: 42:eb:67:4e:42:da:1c:b3:4e:4b:3f:64:64:3b:56:c4:bd:ea: 8e:24:5a:fd:bd:f6:c9:41:8c:d7:8a:5b:c7:a7:98:cf:a2:b4: 7c:4c:60:6b:08:9d:e0:36:ef:9a:06:9d:db:ba:e2:f3:f7:cd: c2:45:46:d3:8d:f0:a4:f5:44:71:0e:6a:99:11:98:10:38:38: 13:8c:fc:e1:8d:d6:fd:f3:eb:91:08:50:24:f7:61:f9:d3:d9: 3f:3c:95:03:9e:db:2d:db:55:8d:4c:16:c0:61:a1:d3:9f:54: 1d:6e:0b:85:ea:f6:8e:d7:57:44:b3:c1:31:5e:84:ca:73:68: 08:37:73:07:2e:26:90:39:79:6e:69:c5:fb:c7:99:7f:31:4e: dc:c9:f4:17:b6:97:eb:3d:80:ce:c3:4c:a5:94:8d:f0:9d:44: 02:9c:70:fb:4e:29:b2:01:68:f1:df:96:24:30:9c:e5:6d:d3: f7:86:49:44 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQC/YX1NRZ2IjRLjOMBCDPAKpj1gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyNDE2MDc0OFoX DTI1MDkyMzE2MTI0OFowMzExMC8GA1UEAxMoNUM1NTkxODEzMDY5ODZFRTg5QUFE RjBBMUNGQzc4RUE4QTA5MzUzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOBenvB0JjPuRY0wYJ180Xf2IAshI8XAgDd9yey83hFKAU+QWacBBaAJLvvx Ad8s1r/UVDZFbMLm5jJO+pVLSCNxejAoGez9AYnqSmoVirXntlFwMh3+JJYwFu7P HDKB4lRYGg4zxVMa1eggEZE6MgFjJRTTEp+heoPpTu2DyARVLwkO3pUrSSQTJJo5 WAOBZGlgn6XBqx8gBSl0wnXRweFPUAHJqGH6D5mzyVM9jGh2qde2BmoteP3UJG8C izFvPQsOQBpSVkj+wbl7UmQHcAAn9l+uWkmzXQhU2NvkwKPSpMffu8XpG9df7UMz txAUeF8dUCuL3dbSGOctbfTLU+UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFxVkYEwaYbuiarfChz8eOqKCTUwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZmE4MWU2ZS00YjE2LTRiNjItOGYxOC01Mjg5MmU1NGI5MGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmYTgxZTZl LTRiMTYtNGI2Mi04ZjE4LTUyODkyZTU0YjkwZC8wLzVDNTU5MTgxMzA2OTg2RUU4 OUFBREYwQTFDRkM3OEVBOEEwOTM1MzAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn+oEwDQYJKoZIhvcNAQELBQADggEBAHhMjRR+g2S/Ejnu2l+S5esqA44RIx95 1CoNAKnq65+5iJFrcH71UR4SXdATDykYO9W9/F6VZSm2xrMOOrP1OlGej6ARJga1 RULrZ05C2hyzTks/ZGQ7VsS96o4kWv299slBjNeKW8enmM+itHxMYGsIneA275oG ndu64vP3zcJFRtON8KT1RHEOapkRmBA4OBOM/OGN1v3z65EIUCT3YfnT2T88lQOe 2y3bVY1MFsBhodOfVB1uC4Xq9o7XV0SzwTFehMpzaAg3cwcuJpA5eW5pxfvHmX8x TtzJ9Be2l+s9gM7DTKWUjfCdRAKccPtOKbIBaPHfliQwnOVt0/eGSUQ= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:42 2024 by rpki-client on console-ams.rpki-client.org