$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.cer File: 80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.cer (raw, json) Hash identifier: uJ6dXnP7XHdRZ3jq33SPS62ff3ceOk51twz2+OLiZ1c= Subject key identifier: 80:D8:9E:42:9E:BB:AA:D9:E0:9C:35:0D:9D:D8:FA:DC:91:7C:BA:1A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6992B63DE7C65546276E53E674AF60968E69550A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0/80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.mft caRepository: rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 25 Jun 2024 21:31:05 +0000 Certificate not after: Tue 24 Jun 2025 21:36:05 +0000 Subordinate resources: IP: 103.78.104.0/23 IP: 2001:df6:2a00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:92:b6:3d:e7:c6:55:46:27:6e:53:e6:74:af:60:96:8e:69:55:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 25 21:31:05 2024 GMT Not After : Jun 24 21:36:05 2025 GMT Subject: CN=80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:26:60:9a:25:77:c2:16:8d:ee:0b:c5:a3:4f: 0b:11:e6:78:4f:1c:bd:41:8d:74:0e:42:7c:83:88: 4a:64:ed:d6:95:5f:66:6f:a9:6d:66:7e:1e:d6:e0: a8:f9:7d:f8:80:d8:dd:fd:f0:f5:10:11:64:6e:64: 4f:38:a1:4e:9d:1a:a4:58:65:b0:df:b0:17:8b:be: 11:81:cf:f8:14:97:bd:fc:6c:8d:18:9d:14:42:17: 29:b5:b3:bb:12:c3:34:a0:7e:57:6c:71:03:62:7e: 7d:6a:08:e4:66:57:fa:92:14:46:c0:76:c5:d9:6b: fb:df:ca:d0:6f:a9:1b:fc:fd:cb:e4:69:f1:bf:98: 96:80:de:46:ea:c1:5b:b7:38:81:60:31:de:c0:db: 9f:fe:4b:8a:a0:7c:69:24:bc:d1:99:b8:23:80:f5: 57:32:1d:c5:a4:f1:5f:25:4c:e6:8e:12:20:7c:87: a4:7e:de:4f:6c:3d:4e:bf:97:61:69:24:d8:40:64: a8:63:90:4c:8e:64:c9:8e:48:27:1a:f5:b4:a7:43: 9e:04:49:a8:f4:5d:7f:91:ef:27:59:5e:97:61:4c: ac:7f:be:05:04:3b:c2:ba:76:ab:5e:53:e3:1c:67: f5:41:d0:63:72:df:28:48:6f:5f:53:b3:2e:1b:89: ac:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 80:D8:9E:42:9E:BB:AA:D9:E0:9C:35:0D:9D:D8:FA:DC:91:7C:BA:1A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7912ac88-033d-497e-bf63-5553d5dc6dc9/0/80D89E429EBBAAD9E09C350D9DD8FADC917CBA1A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.78.104.0/23 IPv6: 2001:df6:2a00::/48 Signature Algorithm: sha256WithRSAEncryption 8f:e2:61:01:8d:d3:d5:da:81:11:0c:40:2f:8f:53:1f:e6:9f: 57:4a:ec:8f:1d:58:0a:87:75:74:7d:80:d8:06:5a:c7:c3:79: 4e:83:79:12:ae:b5:17:67:3c:07:66:5a:a4:c3:92:e6:47:d9: 90:3e:b9:66:ed:14:1e:21:e1:ec:dd:1f:86:4c:54:23:af:9c: a7:1f:29:93:27:82:04:90:ce:65:82:ce:0f:68:92:18:b0:25: 03:dc:d9:b9:43:68:df:4c:53:8c:b1:15:8f:4c:c1:50:3f:4b: b1:ea:21:09:f6:ea:d7:ac:db:34:d5:bd:ca:47:54:37:be:d6: e9:d5:eb:fe:5c:51:c4:33:77:09:fc:fd:25:5e:74:2c:e1:2a: 4e:33:5b:48:01:6e:2a:4b:0b:f3:05:fc:6d:6f:d2:82:4f:2e: 45:fa:85:fb:cb:0b:b7:0a:9e:b4:05:34:fd:de:a8:95:57:d5: 58:b2:0d:e7:be:f0:26:86:01:a3:fb:1e:ff:7c:31:29:54:28: 12:ca:9f:0d:60:95:94:8b:38:b0:7c:c3:8f:8c:27:0a:4f:22: 2b:1f:9e:23:42:b6:26:e0:52:53:a9:13:61:74:e2:d4:4b:ad: 7f:14:a3:28:ff:ce:fa:d5:de:00:5d:eb:93:b1:fd:0d:5b:d4: 71:e5:06:0d -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUaZK2PefGVUYnblPmdK9glo5pVQowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDYyNTIxMzEwNVoX DTI1MDYyNDIxMzYwNVowMzExMC8GA1UEAxMoODBEODlFNDI5RUJCQUFEOUUwOUMz NTBEOUREOEZBREM5MTdDQkExQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOUmYJold8IWje4LxaNPCxHmeE8cvUGNdA5CfIOISmTt1pVfZm+pbWZ+Htbg qPl9+IDY3f3w9RARZG5kTzihTp0apFhlsN+wF4u+EYHP+BSXvfxsjRidFEIXKbWz uxLDNKB+V2xxA2J+fWoI5GZX+pIURsB2xdlr+9/K0G+pG/z9y+Rp8b+YloDeRurB W7c4gWAx3sDbn/5LiqB8aSS80Zm4I4D1VzIdxaTxXyVM5o4SIHyHpH7eT2w9Tr+X YWkk2EBkqGOQTI5kyY5IJxr1tKdDngRJqPRdf5HvJ1lel2FMrH++BQQ7wrp2q15T 4xxn9UHQY3LfKEhvX1OzLhuJrKsCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIDYnkKeu6rZ4Jw1DZ3Y+tyRfLoaMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83OTEyYWM4OC0wMzNkLTQ5N2UtYmY2My01NTUzZDVkYzZkYzkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc5MTJhYzg4 LTAzM2QtNDk3ZS1iZjYzLTU1NTNkNWRjNmRjOS8wLzgwRDg5RTQyOUVCQkFBRDlF MDlDMzUwRDlERDhGQURDOTE3Q0JBMUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnTmgwDwQCAAIwCQMHACABDfYqADANBgkqhkiG9w0BAQsFAAOCAQEAj+JhAY3T 1dqBEQxAL49TH+afV0rsjx1YCod1dH2A2AZax8N5ToN5Eq61F2c8B2ZapMOS5kfZ kD65Zu0UHiHh7N0fhkxUI6+cpx8pkyeCBJDOZYLOD2iSGLAlA9zZuUNo30xTjLEV j0zBUD9LseohCfbq16zbNNW9ykdUN77W6dXr/lxRxDN3Cfz9JV50LOEqTjNbSAFu KksL8wX8bW/Sgk8uRfqF+8sLtwqetAU0/d6olVfVWLIN577wJoYBo/se/3wxKVQo EsqfDWCVlIs4sHzDj4wnCk8iKx+eI0K2JuBSU6kTYXTi1EutfxSjKP/O+tXeAF3r k7H9DVvUceUGDQ== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:43 2024 by rpki-client on console-ams.rpki-client.org