$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/781285AE1A8C595D354913D0B93F6982FCDFD898.cer File: 781285AE1A8C595D354913D0B93F6982FCDFD898.cer (raw, json) Hash identifier: 2HLO/9391DNZiaYpn8VZAJzDBSdU14WaoXDd7e4CRbs= Subject key identifier: 78:12:85:AE:1A:8C:59:5D:35:49:13:D0:B9:3F:69:82:FC:DF:D8:98 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58A211A8B442EF1D6A1190C904CAFC17F28DAE2D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0/781285AE1A8C595D354913D0B93F6982FCDFD898.mft caRepository: rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 06 Feb 2024 14:02:00 +0000 Certificate not after: Tue 04 Feb 2025 14:07:00 +0000 Subordinate resources: IP: 103.91.148.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:a2:11:a8:b4:42:ef:1d:6a:11:90:c9:04:ca:fc:17:f2:8d:ae:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 6 14:02:00 2024 GMT Not After : Feb 4 14:07:00 2025 GMT Subject: CN=781285AE1A8C595D354913D0B93F6982FCDFD898 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:58:14:7f:06:c2:34:b0:76:67:69:7a:bb:9a: c2:1d:b4:05:2c:47:01:f2:e6:bc:f9:84:bd:c9:9c: 52:55:83:99:45:73:a3:92:be:b5:34:26:f5:be:6d: ae:21:49:06:ab:3e:1d:c4:41:dd:71:29:b1:40:05: 5b:28:4a:6e:9e:26:b1:95:e0:8c:fb:53:8e:bf:3e: d2:82:a5:04:14:d7:d1:2d:fb:52:5b:d3:8b:a2:75: a1:4f:a2:25:9f:aa:3c:53:42:97:67:de:e8:95:cb: 6d:46:03:f6:33:0f:ba:e5:04:d1:8a:93:89:04:40: 6e:8d:cc:ef:c8:9a:ea:fb:7c:26:78:fc:fc:89:7b: ef:56:a0:e7:6e:ce:56:8c:6d:0f:2b:97:3a:82:55: 9a:d9:f2:27:e0:a9:df:e6:95:88:d7:9f:0c:a5:80: 52:60:ce:da:36:e2:47:17:99:0a:bf:bf:f7:b8:53: d2:71:ed:ad:92:4b:83:3f:33:4e:c3:5e:63:78:92: 5b:d0:93:bb:f7:d3:9f:2c:41:52:e7:4a:b7:ca:3c: 8f:b6:c2:af:ae:d0:33:22:69:bd:4d:95:7c:a9:61: 68:f1:2c:e6:09:4a:ca:4f:fe:8f:40:81:c0:89:63: 58:a1:ff:d2:c0:16:6c:99:b3:19:f5:f8:6a:c9:2b: 72:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 78:12:85:AE:1A:8C:59:5D:35:49:13:D0:B9:3F:69:82:FC:DF:D8:98 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d275fd76-e8ee-46c8-9d82-b735b9f70431/0/781285AE1A8C595D354913D0B93F6982FCDFD898.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.91.148.0/23 Signature Algorithm: sha256WithRSAEncryption 5b:8e:43:a0:c6:92:e7:f9:b2:82:91:55:af:99:cb:40:f7:6d: 90:70:c6:92:49:11:f7:1f:5e:1f:6a:62:e0:cf:c7:c9:f1:a2: dd:f6:b0:8a:a5:ad:eb:aa:9c:de:48:44:a4:7f:36:a8:d1:42: 1b:e3:96:f4:63:50:fd:28:af:01:68:77:d6:33:9f:89:4f:d2: 36:b1:7b:ee:51:aa:19:38:8a:9f:19:a4:3c:e8:09:b6:2f:84: bc:03:29:60:9b:80:fc:43:d3:19:91:9b:cc:24:7d:c7:03:ec: 5d:22:a7:8e:e5:5b:1a:1c:14:73:61:5a:69:05:9b:5c:bc:1e: 57:3b:ac:96:25:5f:1f:8a:1e:47:60:eb:2c:5e:ee:4c:6d:03: f1:c1:72:5b:b8:3e:6a:ef:b8:d2:b7:d8:4a:f6:95:fa:79:da: 46:d1:51:11:7e:b8:ce:4b:9b:8b:b0:20:8a:aa:99:2a:c8:9f: e3:42:a9:c1:3b:52:7a:8c:29:19:de:dc:7c:32:60:78:45:c1: 43:33:e0:96:56:d5:35:b6:4c:9a:f9:79:fc:6f:41:33:51:af: 06:c9:eb:97:51:1d:a8:53:e5:91:5a:ac:fe:f3:46:f8:53:af: e0:b3:67:3d:f4:02:47:9f:f4:56:b8:30:ff:5b:46:e4:7b:83: 91:57:95:cb -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWKIRqLRC7x1qEZDJBMr8F/KNri0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwNjE0MDIwMFoX DTI1MDIwNDE0MDcwMFowMzExMC8GA1UEAxMoNzgxMjg1QUUxQThDNTk1RDM1NDkx M0QwQjkzRjY5ODJGQ0RGRDg5ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM1YFH8GwjSwdmdperuawh20BSxHAfLmvPmEvcmcUlWDmUVzo5K+tTQm9b5t riFJBqs+HcRB3XEpsUAFWyhKbp4msZXgjPtTjr8+0oKlBBTX0S37UlvTi6J1oU+i JZ+qPFNCl2fe6JXLbUYD9jMPuuUE0YqTiQRAbo3M78ia6vt8Jnj8/Il771ag527O VoxtDyuXOoJVmtnyJ+Cp3+aViNefDKWAUmDO2jbiRxeZCr+/97hT0nHtrZJLgz8z TsNeY3iSW9CTu/fTnyxBUudKt8o8j7bCr67QMyJpvU2VfKlhaPEs5glKyk/+j0CB wIljWKH/0sAWbJmzGfX4askrcksCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHgSha4ajFldNUkT0Lk/aYL839iYMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kMjc1ZmQ3Ni1lOGVlLTQ2YzgtOWQ4Mi1iNzM1YjlmNzA0MzEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QyNzVmZDc2 LWU4ZWUtNDZjOC05ZDgyLWI3MzViOWY3MDQzMS8wLzc4MTI4NUFFMUE4QzU5NUQz NTQ5MTNEMEI5M0Y2OTgyRkNERkQ4OTgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnW5QwDQYJKoZIhvcNAQELBQADggEBAFuOQ6DGkuf5soKRVa+Zy0D3bZBwxpJJ EfcfXh9qYuDPx8nxot32sIqlreuqnN5IRKR/NqjRQhvjlvRjUP0orwFod9Yzn4lP 0jaxe+5Rqhk4ip8ZpDzoCbYvhLwDKWCbgPxD0xmRm8wkfccD7F0ip47lWxocFHNh WmkFm1y8Hlc7rJYlXx+KHkdg6yxe7kxtA/HBclu4PmrvuNK32Er2lfp52kbRURF+ uM5Lm4uwIIqqmSrIn+NCqcE7UnqMKRne3HwyYHhFwUMz4JZW1TW2TJr5efxvQTNR rwbJ65dRHahT5ZFarP7zRvhTr+CzZz30Akef9Fa4MP9bRuR7g5FXlcs= -----END CERTIFICATE-----Generated at Wed May 8 17:45:19 2024 by rpki-client on console-ams.rpki-client.org