$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer File: 8208317A24AB4CD828CD8855F81F3EF2B53CC681.cer (raw, json) Hash identifier: uculG103D3Wx8ue7pofyNY+l40Cp1wAp0H85keq2LJY= Subject key identifier: 82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 44E17267527FFDADB48A35A6383659A8F37170A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft caRepository: rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 10 Apr 2024 19:02:43 +0000 Certificate not after: Wed 09 Apr 2025 19:07:43 +0000 Subordinate resources: IP: 103.114.144.0/24 IP: 2001:df4:f900::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:e1:72:67:52:7f:fd:ad:b4:8a:35:a6:38:36:59:a8:f3:71:70:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 10 19:02:43 2024 GMT Not After : Apr 9 19:07:43 2025 GMT Subject: CN=8208317A24AB4CD828CD8855F81F3EF2B53CC681 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:3f:61:f4:ea:45:00:a5:54:e4:8a:ce:7e:92: 2a:7a:8d:b5:42:82:73:8c:3e:14:7d:b8:f5:28:04: 7a:3a:0f:73:b1:e0:a0:0b:59:30:6c:e8:56:9c:45: d2:51:05:2a:8b:ee:f2:19:ae:d0:06:53:31:7f:3f: df:cc:96:67:7e:3e:e6:c9:2e:15:b7:8b:40:cb:5d: 59:28:b2:9e:40:a5:df:87:7a:09:cf:b4:48:84:28: 88:aa:21:62:14:28:5d:8f:ec:68:ad:63:fc:7a:b3: 5b:bf:84:45:93:47:7d:3e:96:79:43:db:3a:88:a5: 48:73:fd:63:a6:6b:e3:f5:6c:f2:32:42:32:31:9a: f1:43:f4:54:4a:bd:73:a2:78:78:78:0e:f7:fb:06: 1c:4d:af:a6:10:d2:71:35:35:ba:a1:ca:76:79:78: ad:83:17:0b:21:cf:f0:f5:cc:80:fb:b6:43:ee:2f: 72:f0:9f:4a:f2:67:e5:b3:d2:7e:8c:3d:49:7f:0a: ae:7e:b4:3f:37:ce:48:4b:93:62:bd:68:82:c7:47: 6c:b1:bc:86:e8:77:83:51:36:44:23:5c:84:04:4b: 81:31:93:ca:88:38:6b:35:9e:48:f4:df:62:75:a8: ad:b2:bb:e2:1b:ab:b0:a7:da:05:20:37:ec:22:0c: 6b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 82:08:31:7A:24:AB:4C:D8:28:CD:88:55:F8:1F:3E:F2:B5:3C:C6:81 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/88788a8b-541b-4cbf-bab9-8dc377bc1284/0/8208317A24AB4CD828CD8855F81F3EF2B53CC681.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.114.144.0/24 IPv6: 2001:df4:f900::/48 Signature Algorithm: sha256WithRSAEncryption 2d:69:b4:c5:72:56:3a:95:fc:4c:ef:12:e7:99:f0:52:7d:7a: 75:f8:6d:62:ef:19:9a:1c:c7:b5:8c:64:be:56:90:a3:ca:b2: 8f:60:7b:c8:44:83:40:a8:c7:bd:a9:c9:de:51:e5:7c:d9:52: cb:d6:27:1a:57:f9:b8:e6:76:59:a1:8f:2a:6f:a2:a7:b0:3a: ce:f0:54:8a:5d:16:4d:8b:6a:dd:38:e7:c2:13:63:e2:e5:58: 3c:b1:66:31:d0:f8:21:97:0a:3d:73:5a:90:54:77:33:44:56: 82:61:31:7a:02:9c:18:7a:d7:de:c9:bf:b7:f0:0c:44:9b:7e: 59:98:75:ef:09:d9:8e:ed:46:6d:6f:0a:8b:be:0e:07:b0:6a: 9c:92:fb:2c:09:d1:1a:94:98:bd:a0:9f:b2:df:11:95:3d:5c: 3d:7f:aa:87:19:4d:17:6b:4d:8c:8f:7b:d2:4f:15:17:0e:8a: 1f:12:94:d2:55:5a:9b:fc:b9:50:50:5f:92:5b:83:8f:44:e7: c5:80:8d:7d:cd:40:80:e9:6b:c0:f9:8c:2b:80:54:0e:03:bf: 76:4c:e5:2f:4d:b7:ff:80:7d:ec:48:7e:8f:ee:ed:76:35:a6: d7:c9:b1:97:ce:55:a7:65:82:f9:8e:13:2e:10:24:be:55:57: b6:e4:37:90 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUROFyZ1J//a20ijWmODZZqPNxcKkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxMDE5MDI0M1oX DTI1MDQwOTE5MDc0M1owMzExMC8GA1UEAxMoODIwODMxN0EyNEFCNENEODI4Q0Q4 ODU1RjgxRjNFRjJCNTNDQzY4MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM8/YfTqRQClVOSKzn6SKnqNtUKCc4w+FH249SgEejoPc7HgoAtZMGzoVpxF 0lEFKovu8hmu0AZTMX8/38yWZ34+5skuFbeLQMtdWSiynkCl34d6Cc+0SIQoiKoh YhQoXY/saK1j/HqzW7+ERZNHfT6WeUPbOoilSHP9Y6Zr4/Vs8jJCMjGa8UP0VEq9 c6J4eHgO9/sGHE2vphDScTU1uqHKdnl4rYMXCyHP8PXMgPu2Q+4vcvCfSvJn5bPS fow9SX8Krn60PzfOSEuTYr1ogsdHbLG8huh3g1E2RCNchARLgTGTyog4azWeSPTf YnWorbK74hursKfaBSA37CIMa0UCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIIIMXokq0zYKM2IVfgfPvK1PMaBMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84ODc4OGE4Yi01NDFiLTRjYmYtYmFiOS04ZGMzNzdiYzEyODQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg4Nzg4YThi LTU0MWItNGNiZi1iYWI5LThkYzM3N2JjMTI4NC8wLzgyMDgzMTdBMjRBQjRDRDgy OENEODg1NUY4MUYzRUYyQjUzQ0M2ODEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABncpAwDwQCAAIwCQMHACABDfT5ADANBgkqhkiG9w0BAQsFAAOCAQEALWm0xXJW OpX8TO8S55nwUn16dfhtYu8ZmhzHtYxkvlaQo8qyj2B7yESDQKjHvanJ3lHlfNlS y9YnGlf5uOZ2WaGPKm+ip7A6zvBUil0WTYtq3TjnwhNj4uVYPLFmMdD4IZcKPXNa kFR3M0RWgmExegKcGHrX3sm/t/AMRJt+WZh17wnZju1GbW8Ki74OB7BqnJL7LAnR GpSYvaCfst8RlT1cPX+qhxlNF2tNjI970k8VFw6KHxKU0lVam/y5UFBfkluDj0Tn xYCNfc1AgOlrwPmMK4BUDgO/dkzlL023/4B97Eh+j+7tdjWm18mxl85Vp2WC+Y4T LhAkvlVXtuQ3kA== -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:44 2024 by rpki-client on console-ams.rpki-client.org