$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/85D232B96AB560AF91A1D8CFA996C519460662C6.cer File: 85D232B96AB560AF91A1D8CFA996C519460662C6.cer (raw, json) Hash identifier: iAHix3YFr27+5JaT2w3+7zbMJef6Nba+ju5898BovHY= Subject key identifier: 85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7FB453395A8A957EB0EB81AED0AE94805D413013 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/85D232B96AB560AF91A1D8CFA996C519460662C6.mft caRepository: rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 08:39:00 +0000 Certificate not after: Mon 29 Jul 2024 08:44:00 +0000 Subordinate resources: IP: 103.247.40.0/22 IP: 2403:4500::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:b4:53:39:5a:8a:95:7e:b0:eb:81:ae:d0:ae:94:80:5d:41:30:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 08:39:00 2023 GMT Not After : Jul 29 08:44:00 2024 GMT Subject: CN=85D232B96AB560AF91A1D8CFA996C519460662C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ea:af:e4:eb:02:b7:25:af:65:6f:d9:96:8b: 11:da:62:ab:57:06:d0:9d:e3:1a:27:b2:05:aa:d2: 3e:17:1a:73:4b:b9:89:0b:ce:35:d9:39:9a:60:e4: 63:e5:94:6f:89:7d:ed:fe:90:2a:3d:5e:56:03:62: e1:a8:d7:7b:e1:8e:ca:4f:d5:82:2a:1f:e8:aa:ab: 5c:2c:6b:d1:32:70:83:ac:bd:28:11:de:7d:89:1f: bd:71:f8:2a:ee:63:b5:4c:f6:77:8f:04:2f:5d:c4: ef:fe:b0:54:d5:f3:d0:10:e6:c8:de:34:7f:96:a7: 53:4a:cd:df:fd:81:2c:4b:ab:cd:5c:b0:16:b6:9e: ba:54:84:ed:82:f1:0d:7f:bb:ec:67:f5:45:d8:de: ac:68:9c:f2:d4:ed:d0:63:3b:e8:08:e5:64:74:3d: 9c:cc:91:43:77:d5:b5:bf:a5:28:18:57:4c:9a:16: 21:fa:2c:ab:4b:e3:24:dc:c4:0e:1f:3e:34:c9:04: c8:e5:5d:22:f5:25:cb:8d:a0:98:7f:a9:2a:c6:74: 5b:6b:d9:2a:b2:ad:76:8a:20:a9:0e:2b:8e:a1:de: 20:a7:86:13:4d:f6:00:13:ba:f2:f9:b8:e6:48:a5: a4:38:46:69:20:d2:06:9d:d4:e9:6a:d3:40:6e:a6: 0f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 85:D2:32:B9:6A:B5:60:AF:91:A1:D8:CF:A9:96:C5:19:46:06:62:C6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/49556a31-937e-4afe-b99a-274c9524f981/0/85D232B96AB560AF91A1D8CFA996C519460662C6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.247.40.0/22 IPv6: 2403:4500::/32 Signature Algorithm: sha256WithRSAEncryption 68:f1:e7:49:c0:a9:ee:af:1a:91:df:0c:e8:df:0c:24:76:e3: 95:34:e8:85:cd:f5:14:89:87:0e:1e:90:8d:0f:14:98:79:6b: b8:70:af:3a:f0:70:7f:c7:c9:94:c6:c2:1f:34:2b:95:43:91: 01:31:35:33:0d:e7:c8:05:b7:f8:4c:dc:98:58:26:6c:14:c0: 1f:97:2f:fd:fc:4d:30:36:67:83:92:9b:e2:d4:5e:4a:8e:0c: 76:7c:cd:36:eb:72:c3:e5:6d:ba:cf:5e:87:ff:07:0b:cc:3c: 26:ab:ce:fb:9d:ba:42:2f:95:b5:1b:97:aa:41:50:30:ee:19: 73:6f:76:48:5a:0b:2e:42:3c:bb:4d:55:cb:17:ca:81:f1:1a: 56:d3:91:1a:c8:62:11:2f:a4:06:e0:74:ed:4b:6e:02:ee:8b: e0:27:87:28:84:c4:2b:a1:fe:e2:8b:85:64:59:01:62:cf:21: ec:5d:be:91:ef:eb:86:b6:b8:bd:9d:31:ed:2f:85:b9:fa:43: a0:c3:d1:eb:d4:72:7f:a0:66:a1:b2:18:71:72:4d:82:eb:13: d4:89:aa:4a:1f:bc:b5:de:09:ae:9d:d4:aa:46:b0:55:86:81: 6a:d1:b0:e2:d1:90:2c:f9:a5:97:8c:7b:f8:51:50:a3:be:ab: 45:24:bd:72 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUf7RTOVqKlX6w64Gu0K6UgF1BMBMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA4MzkwMFoX DTI0MDcyOTA4NDQwMFowMzExMC8GA1UEAxMoODVEMjMyQjk2QUI1NjBBRjkxQTFE OENGQTk5NkM1MTk0NjA2NjJDNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANLqr+TrArclr2Vv2ZaLEdpiq1cG0J3jGieyBarSPhcac0u5iQvONdk5mmDk Y+WUb4l97f6QKj1eVgNi4ajXe+GOyk/Vgiof6KqrXCxr0TJwg6y9KBHefYkfvXH4 Ku5jtUz2d48EL13E7/6wVNXz0BDmyN40f5anU0rN3/2BLEurzVywFraeulSE7YLx DX+77Gf1RdjerGic8tTt0GM76AjlZHQ9nMyRQ3fVtb+lKBhXTJoWIfosq0vjJNzE Dh8+NMkEyOVdIvUly42gmH+pKsZ0W2vZKrKtdoogqQ4rjqHeIKeGE032ABO68vm4 5kilpDhGaSDSBp3U6WrTQG6mDwcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIXSMrlqtWCvkaHYz6mWxRlGBmLGMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80OTU1NmEzMS05MzdlLTRhZmUtYjk5YS0yNzRjOTUyNGY5ODEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ5NTU2YTMx LTkzN2UtNGFmZS1iOTlhLTI3NGM5NTI0Zjk4MS8wLzg1RDIzMkI5NkFCNTYwQUY5 MUExRDhDRkE5OTZDNTE5NDYwNjYyQzYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJn9ygwDQQCAAIwBwMFACQDRQAwDQYJKoZIhvcNAQELBQADggEBAGjx50nAqe6v GpHfDOjfDCR245U06IXN9RSJhw4ekI0PFJh5a7hwrzrwcH/HyZTGwh80K5VDkQEx NTMN58gFt/hM3JhYJmwUwB+XL/38TTA2Z4OSm+LUXkqODHZ8zTbrcsPlbbrPXof/ BwvMPCarzvudukIvlbUbl6pBUDDuGXNvdkhaCy5CPLtNVcsXyoHxGlbTkRrIYhEv pAbgdO1LbgLui+AnhyiExCuh/uKLhWRZAWLPIexdvpHv64a2uL2dMe0vhbn6Q6DD 0evUcn+gZqGyGHFyTYLrE9SJqkofvLXeCa6d1KpGsFWGgWrRsOLRkCz5pZeMe/hR UKO+q0UkvXI= -----END CERTIFICATE-----Generated at Wed May 8 21:02:17 2024 by rpki-client on console-fra.rpki-client.org