$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/85D232B96AB560AF91A1D8CFA996C519460662C6.cer File: 85D232B96AB560AF91A1D8CFA996C519460662C6.cer (raw, json) Hash identifier: iMXRRF63POtiocK8A0E2yzqvWhbhbHDSddogiko4RJw= Subject key identifier: 85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 676E415248E53600CBB4868E4B4D60A7A3D1F126 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/85D232B96AB560AF91A1D8CFA996C519460662C6.mft caRepository: rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 01 Jul 2024 23:47:38 +0000 Certificate not after: Mon 30 Jun 2025 23:52:38 +0000 Subordinate resources: IP: 103.247.40.0/22 IP: 2403:4500::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:6e:41:52:48:e5:36:00:cb:b4:86:8e:4b:4d:60:a7:a3:d1:f1:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 1 23:47:38 2024 GMT Not After : Jun 30 23:52:38 2025 GMT Subject: CN=85D232B96AB560AF91A1D8CFA996C519460662C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ea:af:e4:eb:02:b7:25:af:65:6f:d9:96:8b: 11:da:62:ab:57:06:d0:9d:e3:1a:27:b2:05:aa:d2: 3e:17:1a:73:4b:b9:89:0b:ce:35:d9:39:9a:60:e4: 63:e5:94:6f:89:7d:ed:fe:90:2a:3d:5e:56:03:62: e1:a8:d7:7b:e1:8e:ca:4f:d5:82:2a:1f:e8:aa:ab: 5c:2c:6b:d1:32:70:83:ac:bd:28:11:de:7d:89:1f: bd:71:f8:2a:ee:63:b5:4c:f6:77:8f:04:2f:5d:c4: ef:fe:b0:54:d5:f3:d0:10:e6:c8:de:34:7f:96:a7: 53:4a:cd:df:fd:81:2c:4b:ab:cd:5c:b0:16:b6:9e: ba:54:84:ed:82:f1:0d:7f:bb:ec:67:f5:45:d8:de: ac:68:9c:f2:d4:ed:d0:63:3b:e8:08:e5:64:74:3d: 9c:cc:91:43:77:d5:b5:bf:a5:28:18:57:4c:9a:16: 21:fa:2c:ab:4b:e3:24:dc:c4:0e:1f:3e:34:c9:04: c8:e5:5d:22:f5:25:cb:8d:a0:98:7f:a9:2a:c6:74: 5b:6b:d9:2a:b2:ad:76:8a:20:a9:0e:2b:8e:a1:de: 20:a7:86:13:4d:f6:00:13:ba:f2:f9:b8:e6:48:a5: a4:38:46:69:20:d2:06:9d:d4:e9:6a:d3:40:6e:a6: 0f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/85D232B96AB560AF91A1D8CFA996C519460662C6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.40.0/22 IPv6: 2403:4500::/32 Signature Algorithm: sha256WithRSAEncryption 07:d7:b7:b2:c7:90:19:fe:1a:2e:a9:14:64:89:ed:01:66:12: ff:2d:98:a3:e1:9f:fd:70:6a:e0:57:88:6d:1e:db:9c:88:91: 8d:9e:11:75:7a:66:e8:d0:65:50:7c:11:42:7b:c2:86:e7:96: c9:4b:b9:ec:25:d4:8a:83:ec:43:70:cf:0f:90:39:b2:7d:8e: 62:03:2a:50:87:66:53:db:c3:af:28:04:27:2b:a0:9a:68:00: bf:ba:8b:2c:b8:f6:9e:c7:93:5a:10:b8:42:ad:e3:14:d4:c0: 92:72:4a:52:cc:aa:43:64:0a:17:43:94:d9:92:97:87:83:9d: 5d:8a:53:64:ac:1c:b5:0f:d2:11:c5:38:7b:eb:20:0c:ad:c5: a0:05:48:b7:9c:cd:99:e5:69:60:2c:e9:d6:fa:1e:c0:1d:d7: e4:16:bd:d4:5a:63:4c:8e:6c:56:19:e1:fd:f4:09:ce:8d:28: 3a:d1:bc:70:18:6b:01:66:c0:6c:91:c9:94:ed:42:23:0a:83: c7:a9:8b:07:4b:10:c0:1f:ee:0d:30:7e:56:c2:d4:20:40:cf: 67:e4:17:91:19:ff:f6:96:6c:b7:e1:f5:f7:fc:58:b6:23:0c: 7b:3b:1a:ab:ad:b6:d5:be:c1:95:dd:21:4b:62:68:89:e1:d3: 1c:73:63:ea -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUZ25BUkjlNgDLtIaOS01gp6PR8SYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMTIzNDczOFoX DTI1MDYzMDIzNTIzOFowMzExMC8GA1UEAxMoODVEMjMyQjk2QUI1NjBBRjkxQTFE OENGQTk5NkM1MTk0NjA2NjJDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLqr+TrArclr2Vv2ZaLEdpiq1cG0J3jGieyBarSPhcac0u5iQvONdk5mmDk Y+WUb4l97f6QKj1eVgNi4ajXe+GOyk/Vgiof6KqrXCxr0TJwg6y9KBHefYkfvXH4 Ku5jtUz2d48EL13E7/6wVNXz0BDmyN40f5anU0rN3/2BLEurzVywFraeulSE7YLx DX+77Gf1RdjerGic8tTt0GM76AjlZHQ9nMyRQ3fVtb+lKBhXTJoWIfosq0vjJNzE Dh8+NMkEyOVdIvUly42gmH+pKsZ0W2vZKrKtdoogqQ4rjqHeIKeGE032ABO68vm4 5kilpDhGaSDSBp3U6WrTQG6mDwcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIXSMrlqtWCvkaHYz6mWxRlGBmLGMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80OTU1NmEzMS05MzdlLTRhZmUtYjk5YS0yNzRjOTUyNGY5ODEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5NTU2YTMx LTkzN2UtNGFmZS1iOTlhLTI3NGM5NTI0Zjk4MS8wLzg1RDIzMkI5NkFCNTYwQUY5 MUExRDhDRkE5OTZDNTE5NDYwNjYyQzYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJn9ygwDQQCAAIwBwMFACQDRQAwDQYJKoZIhvcNAQELBQADggEBAAfXt7LHkBn+ Gi6pFGSJ7QFmEv8tmKPhn/1wauBXiG0e25yIkY2eEXV6ZujQZVB8EUJ7wobnlslL uewl1IqD7ENwzw+QObJ9jmIDKlCHZlPbw68oBCcroJpoAL+6iyy49p7Hk1oQuEKt 4xTUwJJySlLMqkNkChdDlNmSl4eDnV2KU2SsHLUP0hHFOHvrIAytxaAFSLeczZnl aWAs6db6HsAd1+QWvdRaY0yObFYZ4f30Cc6NKDrRvHAYawFmwGyRyZTtQiMKg8ep iwdLEMAf7g0wflbC1CBAz2fkF5EZ//aWbLfh9ff8WLYjDHs7GqutttW+wZXdIUti aInh0xxzY+o= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:44 2024 by rpki-client on console-ams.rpki-client.org