$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/846D8A4B978C6F595D44EACDB8259295CD43C499.cer File: 846D8A4B978C6F595D44EACDB8259295CD43C499.cer (raw, json) Hash identifier: rk9HM/j8JbqYljWMMir4w5gMGqSAZ8aeTI92AsdTwtc= Subject key identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3A5003161DB3C37F5EFBAD7D9E5CD938E100ED0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.mft caRepository: rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 30 Dec 2023 04:58:07 +0000 Certificate not after: Sat 28 Dec 2024 05:03:07 +0000 Subordinate resources: IP: 103.213.234.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:50:03:16:1d:b3:c3:7f:5e:fb:ad:7d:9e:5c:d9:38:e1:00:ed:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 30 04:58:07 2023 GMT Not After : Dec 28 05:03:07 2024 GMT Subject: CN=846D8A4B978C6F595D44EACDB8259295CD43C499 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:f5:95:1d:77:68:c3:de:90:91:14:e2:ee:a4: 82:c9:6c:8e:a7:3a:17:d2:3c:16:da:82:2f:f6:c6: cc:ef:b8:c4:af:91:d0:ff:ab:db:07:f7:9b:44:2b: 18:fc:27:26:4f:bf:5d:c4:37:4e:fa:2f:c7:43:e9: e1:85:f0:73:de:4d:4a:24:9b:0e:8b:d0:b6:22:24: d5:c8:cf:0d:db:c2:53:d3:e9:62:52:10:ed:ad:54: 2a:c7:44:a2:5a:98:67:fd:9f:60:1c:9d:64:d3:e8: c1:15:7f:70:78:00:d9:45:c0:b3:4d:6e:3f:ad:b6: e0:47:f4:ff:1c:a9:ec:ed:a6:d3:9a:e8:e0:92:8d: e8:a1:ee:f6:1c:a3:73:c7:97:36:b3:68:1b:e1:f6: 9a:94:fc:80:84:42:ab:b4:5c:70:bd:ef:8a:9b:de: 82:5f:6b:bc:bd:2f:60:3c:b9:fa:e9:74:1e:83:b5: 16:43:1b:a9:2d:3d:b0:a8:93:7a:a4:35:fe:02:9a: 66:40:7b:02:3d:2f:c7:a8:24:3b:28:32:e4:04:f9: 80:e1:f1:0a:6c:68:56:a9:cb:71:6b:63:12:ef:58: 1f:ec:82:09:19:98:28:a1:86:a1:7f:81:f7:92:f0: 67:61:3b:6b:c4:ca:c6:7e:9d:fe:42:d7:b0:9d:a9: e6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 84:6D:8A:4B:97:8C:6F:59:5D:44:EA:CD:B8:25:92:95:CD:43:C4:99 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bd7fa210-5f25-4f0b-89a5-7d00a354a907/0/846D8A4B978C6F595D44EACDB8259295CD43C499.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.234.0/23 Signature Algorithm: sha256WithRSAEncryption 55:c5:84:24:9d:c3:a8:e5:90:57:bc:f9:ff:0a:cd:c3:9d:da: 94:ce:23:20:f6:7c:9b:b1:37:41:7b:34:b5:fc:15:09:70:20: 10:20:09:71:cc:b6:9b:02:c6:22:db:7e:2e:b7:99:7f:b3:d9: a6:7a:10:59:b1:8a:b8:13:4c:97:c0:e1:ed:aa:66:bd:b8:7b: 88:90:86:59:a9:a0:34:b5:df:0d:3e:59:35:c5:c1:c6:44:45: 1b:5b:3e:5e:cc:0c:86:a2:f8:c4:59:35:4a:46:de:13:86:da: d5:3d:9b:67:31:7f:9c:85:b5:aa:bb:48:74:ba:c3:8c:f8:b8: 43:de:3f:87:2a:55:e9:6f:3d:51:26:34:30:9f:d5:c7:ca:6a: 3d:ae:01:46:f7:ce:cb:a4:d8:c7:3f:62:fc:9a:6a:e2:7f:91: e0:a3:51:9a:40:2b:69:0d:29:a4:4e:e8:f0:98:43:ad:7a:fb: f8:23:9c:5a:7c:bf:02:de:a4:51:2a:bf:cc:1c:5d:82:b6:58: b7:9a:e0:f4:50:13:02:e5:2c:4a:b2:83:c4:17:38:74:3c:0d: 52:93:1a:2e:e0:a2:f5:75:b8:19:bc:7b:b0:41:70:27:aa:4a: 1b:ce:19:55:37:4b:de:bf:9d:9c:ca:2b:0b:9c:05:02:6a:8d: 0a:54:08:d1 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUOlADFh2zw39e+619nlzZOOEA7Q8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIzMDA0NTgwN1oX DTI0MTIyODA1MDMwN1owMzExMC8GA1UEAxMoODQ2RDhBNEI5NzhDNkY1OTVENDRF QUNEQjgyNTkyOTVDRDQzQzQ5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/1lR13aMPekJEU4u6kgslsjqc6F9I8FtqCL/bGzO+4xK+R0P+r2wf3m0Qr GPwnJk+/XcQ3Tvovx0Pp4YXwc95NSiSbDovQtiIk1cjPDdvCU9PpYlIQ7a1UKsdE olqYZ/2fYBydZNPowRV/cHgA2UXAs01uP6224Ef0/xyp7O2m05ro4JKN6KHu9hyj c8eXNrNoG+H2mpT8gIRCq7RccL3vipvegl9rvL0vYDy5+ul0HoO1FkMbqS09sKiT eqQ1/gKaZkB7Aj0vx6gkOygy5AT5gOHxCmxoVqnLcWtjEu9YH+yCCRmYKKGGoX+B 95LwZ2E7a8TKxn6d/kLXsJ2p5g0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIRtikuXjG9ZXUTqzbglkpXNQ8SZMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZDdmYTIxMC01ZjI1LTRmMGItODlhNS03ZDAwYTM1NGE5MDcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkN2ZhMjEw LTVmMjUtNGYwYi04OWE1LTdkMDBhMzU0YTkwNy8wLzg0NkQ4QTRCOTc4QzZGNTk1 RDQ0RUFDREI4MjU5Mjk1Q0Q0M0M0OTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFn1eowDQYJKoZIhvcNAQELBQADggEBAFXFhCSdw6jlkFe8+f8KzcOd2pTOIyD2 fJuxN0F7NLX8FQlwIBAgCXHMtpsCxiLbfi63mX+z2aZ6EFmxirgTTJfA4e2qZr24 e4iQhlmpoDS13w0+WTXFwcZERRtbPl7MDIai+MRZNUpG3hOG2tU9m2cxf5yFtaq7 SHS6w4z4uEPeP4cqVelvPVEmNDCf1cfKaj2uAUb3zsuk2Mc/YvyaauJ/keCjUZpA K2kNKaRO6PCYQ616+/gjnFp8vwLepFEqv8wcXYK2WLea4PRQEwLlLEqyg8QXOHQ8 DVKTGi7govV1uBm8e7BBcCeqShvOGVU3S96/nZzKKwucBQJqjQpUCNE= -----END CERTIFICATE-----Generated at Wed May 8 09:50:32 2024 by rpki-client on console-fra.rpki-client.org