$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer File: 71E51A9B65D8A123513A350F0D99F98D6C9B72E2.cer (raw, json) Hash identifier: VkGdPY1nwN2a7ngqouZspZ6Srtsq54QoCKRiTMhO9jQ= Subject key identifier: 71:E5:1A:9B:65:D8:A1:23:51:3A:35:0F:0D:99:F9:8D:6C:9B:72:E2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2BCE8526DABF72D23AEF4DBB5C55187E9A15C919 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.mft caRepository: rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 14 Mar 2024 20:10:34 +0000 Certificate not after: Thu 13 Mar 2025 20:15:34 +0000 Subordinate resources: IP: 103.107.187.0/24 IP: 2001:df3:e900::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:ce:85:26:da:bf:72:d2:3a:ef:4d:bb:5c:55:18:7e:9a:15:c9:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 14 20:10:34 2024 GMT Not After : Mar 13 20:15:34 2025 GMT Subject: CN=71E51A9B65D8A123513A350F0D99F98D6C9B72E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:c3:f9:22:04:15:11:32:6e:d5:0b:05:f4:b3: b8:7d:21:c8:64:13:d9:ee:9b:e4:28:08:e9:9c:5b: 67:2a:97:d1:1b:05:d7:8e:e6:cb:4c:ee:03:d2:63: 2e:ce:a9:74:2a:a9:b3:ed:ee:cd:79:7e:24:86:82: 14:96:a4:cf:93:8a:ce:26:fc:eb:fd:3c:b9:57:a8: 67:ca:1f:9c:f3:d8:62:0e:51:06:b4:67:be:77:c3: f7:77:c9:9e:9d:41:c6:d8:5b:f2:16:b7:19:ea:6a: fc:2c:16:f1:a3:ba:54:65:95:ed:37:66:a5:fd:2f: 7e:7e:44:7c:1e:03:be:bd:07:df:6b:b3:81:a6:26: 86:e7:ea:ee:ca:57:c5:f3:42:ce:84:50:52:63:63: 08:13:f0:55:f5:02:5c:94:6e:0e:8c:6a:54:28:80: a7:86:c8:bc:15:23:dd:ec:2e:4e:d2:63:67:db:68: 12:36:fc:42:e7:3a:74:0d:2b:cf:b8:bb:4e:da:bb: 50:e4:00:da:44:bd:61:3d:84:f3:f5:41:19:69:e5: 83:d9:68:8d:94:d4:51:9b:b2:ae:ac:f5:53:82:dd: 5b:6c:8e:d8:0b:b2:a2:97:1f:db:36:16:98:20:02: 57:66:c3:7c:a5:48:5f:a1:5f:26:13:be:9d:c4:c7: 24:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 71:E5:1A:9B:65:D8:A1:23:51:3A:35:0F:0D:99:F9:8D:6C:9B:72:E2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dd48bd04-f787-414a-a501-5138a6d6b3e1/0/71E51A9B65D8A123513A350F0D99F98D6C9B72E2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.107.187.0/24 IPv6: 2001:df3:e900::/48 Signature Algorithm: sha256WithRSAEncryption 11:14:09:f7:34:be:e9:89:21:ba:35:df:34:7d:ad:18:71:83: 67:54:14:7b:c0:2d:69:b6:7a:5f:09:9d:c5:2f:b1:12:b6:3e: bb:4d:55:bb:a6:29:f2:dd:c2:de:07:e0:bd:6d:75:33:be:d1: 16:72:8f:e1:3b:0e:2f:bb:6b:dc:f8:a2:c0:2e:ae:b9:b7:4e: e5:ee:05:04:6a:e1:e5:64:91:ba:71:aa:90:e2:d0:51:f8:c1: 99:41:75:9f:f6:fb:bc:12:2a:84:50:ec:eb:4b:b3:60:41:70: 80:26:9d:7a:be:53:bb:0e:b2:ca:39:67:c1:dc:1d:48:5a:84: 3a:bc:b0:93:2e:3d:8a:e4:6c:c3:66:e2:15:70:28:66:63:4f: d0:bb:bc:eb:14:05:70:98:e4:61:40:8e:ec:09:74:3e:e5:75: 0f:9c:59:bd:2c:4a:20:a4:dc:a2:87:97:3f:0e:16:21:eb:02: d6:8f:5a:9a:74:99:6f:e5:ef:50:2b:21:d3:08:9f:5b:cc:0c: a0:34:47:c6:70:42:d8:54:5c:e0:b7:17:d0:98:f8:2e:48:5a: 1d:6b:23:dd:44:97:b6:1f:f2:22:24:07:a2:aa:3a:91:9a:ea: a1:f5:8a:b3:22:a6:e8:17:78:a7:f4:95:0c:7d:48:4f:eb:d5: f4:8f:1c:47 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUK86FJtq/ctI67027XFUYfpoVyRkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxNDIwMTAzNFoX DTI1MDMxMzIwMTUzNFowMzExMC8GA1UEAxMoNzFFNTFBOUI2NUQ4QTEyMzUxM0Ez NTBGMEQ5OUY5OEQ2QzlCNzJFMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM/D+SIEFREybtULBfSzuH0hyGQT2e6b5CgI6ZxbZyqX0RsF147my0zuA9Jj Ls6pdCqps+3uzXl+JIaCFJakz5OKzib86/08uVeoZ8ofnPPYYg5RBrRnvnfD93fJ np1Bxthb8ha3Gepq/CwW8aO6VGWV7Tdmpf0vfn5EfB4Dvr0H32uzgaYmhufq7spX xfNCzoRQUmNjCBPwVfUCXJRuDoxqVCiAp4bIvBUj3ewuTtJjZ9toEjb8Quc6dA0r z7i7Ttq7UOQA2kS9YT2E8/VBGWnlg9lojZTUUZuyrqz1U4LdW2yO2Auyopcf2zYW mCACV2bDfKVIX6FfJhO+ncTHJG0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHHlGptl2KEjUTo1Dw2Z+Y1sm3LiMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZDQ4YmQwNC1mNzg3LTQxNGEtYTUwMS01MTM4YTZkNmIzZTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkNDhiZDA0 LWY3ODctNDE0YS1hNTAxLTUxMzhhNmQ2YjNlMS8wLzcxRTUxQTlCNjVEOEExMjM1 MTNBMzUwRjBEOTlGOThENkM5QjcyRTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABna7swDwQCAAIwCQMHACABDfPpADANBgkqhkiG9w0BAQsFAAOCAQEAERQJ9zS+ 6YkhujXfNH2tGHGDZ1QUe8AtabZ6XwmdxS+xErY+u01Vu6Yp8t3C3gfgvW11M77R FnKP4TsOL7tr3PiiwC6uubdO5e4FBGrh5WSRunGqkOLQUfjBmUF1n/b7vBIqhFDs 60uzYEFwgCader5Tuw6yyjlnwdwdSFqEOrywky49iuRsw2biFXAoZmNP0Lu86xQF cJjkYUCO7Al0PuV1D5xZvSxKIKTcooeXPw4WIesC1o9amnSZb+XvUCsh0wifW8wM oDRHxnBC2FRc4LcX0Jj4LkhaHWsj3USXth/yIiQHoqo6kZrqofWKsyKm6Bd4p/SV DH1IT+vV9I8cRw== -----END CERTIFICATE-----Generated at Wed May 8 22:46:40 2024 by rpki-client on console-ams.rpki-client.org