$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/700B9587C4CFA7F2B1D9F7C92CB0B0DB846A2D64.cer File: 700B9587C4CFA7F2B1D9F7C92CB0B0DB846A2D64.cer (raw, json) Hash identifier: I0yAADWilGBkgjxf9gSyUtRT40dFAu2wOQaz15fIVCM= Subject key identifier: 70:0B:95:87:C4:CF:A7:F2:B1:D9:F7:C9:2C:B0:B0:DB:84:6A:2D:64 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5BF0ADCBAA349EED557BCC912FFB12B18C99DA1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e8328237-750f-4022-b8b2-dba73b6713ec/0/700B9587C4CFA7F2B1D9F7C92CB0B0DB846A2D64.mft caRepository: rsync://repo-rpki.idnic.net/repo/e8328237-750f-4022-b8b2-dba73b6713ec/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 23 Aug 2023 06:35:49 +0000 Certificate not after: Wed 21 Aug 2024 06:40:49 +0000 Subordinate resources: IP: 103.174.178.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f0:ad:cb:aa:34:9e:ed:55:7b:cc:91:2f:fb:12:b1:8c:99:da:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 23 06:35:49 2023 GMT Not After : Aug 21 06:40:49 2024 GMT Subject: CN=700B9587C4CFA7F2B1D9F7C92CB0B0DB846A2D64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:6a:2d:7f:ea:84:b0:5d:8a:40:95:30:7b:2e: c8:68:cc:bd:e3:aa:89:48:db:04:6b:61:90:6f:b9: a3:5a:0d:bd:9c:94:01:0a:4d:04:72:ed:cd:be:e6: 30:c0:ec:ae:b6:7a:2f:ba:5f:a5:c1:a4:2e:89:ab: e8:75:36:a4:82:46:06:6c:5d:35:06:09:a4:22:47: 17:d9:85:8d:8c:71:1e:5d:d4:ed:00:71:37:78:f9: 8c:b2:d6:5b:b0:9c:9b:d2:5b:11:40:2f:d2:c2:a5: 5c:d5:d9:6e:31:5d:53:91:1d:0a:1d:d4:af:30:32: 91:6b:e0:4b:cc:3c:de:28:cc:e4:9a:5c:87:80:de: 04:dd:be:d1:9f:68:9b:0b:f3:ee:65:da:1e:42:02: 0f:e3:b5:4c:70:ac:c1:e6:b6:54:64:67:01:00:2a: dc:6f:91:66:04:1e:f0:56:2c:57:48:de:17:41:3d: 26:a3:df:e0:27:67:6d:7a:62:b2:7b:b0:f6:7e:42: 88:3a:13:a0:3f:02:34:ed:41:52:ca:df:c6:a8:cd: 0e:0b:64:6d:7a:e3:d8:90:85:cf:85:9b:10:09:a2: d4:54:1b:11:e7:d0:64:00:02:aa:76:5d:85:10:f3: 7c:74:a3:3b:a1:e8:f1:35:da:95:ae:4b:7e:cd:51: 72:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 70:0B:95:87:C4:CF:A7:F2:B1:D9:F7:C9:2C:B0:B0:DB:84:6A:2D:64 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e8328237-750f-4022-b8b2-dba73b6713ec/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e8328237-750f-4022-b8b2-dba73b6713ec/0/700B9587C4CFA7F2B1D9F7C92CB0B0DB846A2D64.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.178.0/23 Signature Algorithm: sha256WithRSAEncryption 22:f7:52:42:7d:27:59:7c:ce:24:37:5e:1b:67:48:a2:ce:46: 68:6c:81:a6:e3:8d:62:38:c2:7b:8b:b3:5a:3f:28:41:14:02: 43:54:6e:b5:11:12:ed:dd:bc:92:92:ff:d2:05:35:b2:3a:10: 08:53:94:ae:87:7a:f9:4f:30:fb:4f:e1:2d:48:10:fe:87:48: bf:4c:e1:43:5d:2a:d3:4e:ed:08:32:b2:ca:8c:87:94:5f:57: f2:f1:30:0d:89:96:b7:ee:d3:61:b9:17:d2:d3:9c:59:21:2d: 5f:c0:88:cb:93:9b:37:f5:80:3b:fd:60:94:9b:94:35:92:9e: 04:66:40:1a:e4:7f:34:c3:34:13:89:1a:5f:99:e7:b4:18:db: 23:ad:1a:cf:0c:d6:93:b3:1b:19:51:c5:d6:f8:05:bc:b3:1d: 0f:34:2b:80:c5:6a:d6:13:cb:c9:36:a5:fc:b9:2f:92:e8:37: cb:34:ae:8e:09:89:61:36:8e:2f:ce:9c:f9:b8:ab:df:98:59: 55:8a:96:01:1b:b6:30:8e:7f:11:42:1d:7f:da:f3:d4:61:62: b8:77:e3:5a:0d:a7:2f:a4:89:d8:c3:fc:dc:9b:18:a0:15:fe: f2:97:fa:56:6c:fc:1b:47:88:3f:48:60:c2:1d:ba:25:77:45: 01:80:b1:ae -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUW/Cty6o0nu1Ve8yRL/sSsYyZ2hwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyMzA2MzU0OVoX DTI0MDgyMTA2NDA0OVowMzExMC8GA1UEAxMoNzAwQjk1ODdDNENGQTdGMkIxRDlG N0M5MkNCMEIwREI4NDZBMkQ2NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM5qLX/qhLBdikCVMHsuyGjMveOqiUjbBGthkG+5o1oNvZyUAQpNBHLtzb7m MMDsrrZ6L7pfpcGkLomr6HU2pIJGBmxdNQYJpCJHF9mFjYxxHl3U7QBxN3j5jLLW W7Ccm9JbEUAv0sKlXNXZbjFdU5EdCh3UrzAykWvgS8w83ijM5Jpch4DeBN2+0Z9o mwvz7mXaHkICD+O1THCswea2VGRnAQAq3G+RZgQe8FYsV0jeF0E9JqPf4CdnbXpi snuw9n5CiDoToD8CNO1BUsrfxqjNDgtkbXrj2JCFz4WbEAmi1FQbEefQZAACqnZd hRDzfHSjO6Ho8TXala5Lfs1RcqsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHALlYfEz6fysdn3ySywsNuEai1kMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lODMyODIzNy03NTBmLTQwMjItYjhiMi1kYmE3M2I2NzEzZWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U4MzI4MjM3 LTc1MGYtNDAyMi1iOGIyLWRiYTczYjY3MTNlYy8wLzcwMEI5NTg3QzRDRkE3RjJC MUQ5RjdDOTJDQjBCMERCODQ2QTJENjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrrIwDQYJKoZIhvcNAQELBQADggEBACL3UkJ9J1l8ziQ3XhtnSKLORmhsgabj jWI4wnuLs1o/KEEUAkNUbrUREu3dvJKS/9IFNbI6EAhTlK6HevlPMPtP4S1IEP6H SL9M4UNdKtNO7QgyssqMh5RfV/LxMA2Jlrfu02G5F9LTnFkhLV/AiMuTmzf1gDv9 YJSblDWSngRmQBrkfzTDNBOJGl+Z57QY2yOtGs8M1pOzGxlRxdb4BbyzHQ80K4DF atYTy8k2pfy5L5LoN8s0ro4JiWE2ji/OnPm4q9+YWVWKlgEbtjCOfxFCHX/a89Rh Yrh341oNpy+kidjD/NybGKAV/vKX+lZs/BtHiD9IYMIduiV3RQGAsa4= -----END CERTIFICATE-----Generated at Wed May 8 22:46:39 2024 by rpki-client on console-ams.rpki-client.org