$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8659BE8500DEBB314448F1412FA1E264025A4148.cer File: 8659BE8500DEBB314448F1412FA1E264025A4148.cer (raw, json) Hash identifier: sCQX7ep9RqCI93Qa+hWFYOq3XZ4qpE4warcG5xZfMZs= Subject key identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3E657E6D00516B8C6FA4BDD2926D98B7CDDB183B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft caRepository: rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 09 Sep 2024 15:58:00 +0000 Certificate not after: Mon 08 Sep 2025 16:03:00 +0000 Subordinate resources: IP: 103.164.192.0/23 IP: 2001:df1:1bc0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:65:7e:6d:00:51:6b:8c:6f:a4:bd:d2:92:6d:98:b7:cd:db:18:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 9 15:58:00 2024 GMT Not After : Sep 8 16:03:00 2025 GMT Subject: CN=8659BE8500DEBB314448F1412FA1E264025A4148 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:36:d7:5e:8f:7e:53:ef:c1:6b:a2:94:68:f9: 66:ff:64:81:c5:fd:03:36:92:b7:75:f1:0c:35:8e: 5a:8a:00:e4:01:64:fe:ef:95:36:39:c3:27:31:aa: f0:45:e0:8a:3d:e3:8c:ff:22:0f:27:92:aa:ab:14: 56:6e:c5:a2:bd:75:4f:28:bf:77:86:c5:26:03:fe: b0:07:b5:46:61:f8:1d:05:08:8d:5a:67:25:6e:dd: 8d:03:c2:ed:c1:2d:3f:06:d6:b4:3b:40:66:15:96: 7e:9c:29:2b:71:a1:40:2c:f3:83:7a:e0:5f:98:a5: 81:45:49:35:9d:7c:6d:5a:1c:b5:06:c9:3d:6a:62: dc:d9:17:0b:b9:ed:cf:b1:62:86:bd:f6:b7:d9:29: 2d:bd:19:33:e1:ce:1c:e7:1f:ee:a2:4c:92:a5:3c: 88:c4:05:f6:9d:06:a4:fc:df:97:98:d5:e0:92:a5: c2:d1:cd:7f:87:bc:1e:45:0d:b2:50:9b:4a:d1:14: e9:77:f5:c2:ac:97:08:2d:8b:eb:81:fe:df:c5:1a: 6c:64:fd:64:e0:95:e9:7b:84:b8:fa:5d:63:d9:96: 29:5b:c8:d9:d3:ad:5f:da:c1:e5:22:a1:d0:6c:a2: 1b:22:b8:9e:0f:0e:2c:35:0f:97:4f:7b:0f:21:23: fb:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 86:59:BE:85:00:DE:BB:31:44:48:F1:41:2F:A1:E2:64:02:5A:41:48 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fba48e4e-fc95-4acf-beac-d93a0f694421/0/8659BE8500DEBB314448F1412FA1E264025A4148.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.192.0/23 IPv6: 2001:df1:1bc0::/48 Signature Algorithm: sha256WithRSAEncryption 14:5c:69:44:6f:a3:34:2d:80:8a:a2:9e:64:af:e0:3f:0e:8e: d7:1d:98:ca:86:ee:dc:b3:b9:39:26:52:72:56:aa:e3:d2:06: c9:2c:75:e4:7a:10:d6:74:64:a5:85:55:49:46:e7:81:81:ee: 68:5e:89:b4:28:70:5e:4d:39:ee:7a:3d:fd:33:a6:04:3f:db: 23:a3:fb:4a:da:4d:18:07:d4:ee:a4:41:05:24:50:ed:54:e2: 9b:3d:b7:a3:c9:df:29:8e:ef:d0:59:94:8a:3c:5b:3f:82:80: f2:b2:cf:2a:7b:19:d5:0e:95:96:8b:3a:b8:67:ca:94:0c:39: 83:ce:9c:d0:ad:bc:ef:f6:8b:8e:2d:ae:4c:25:63:d9:55:38: c4:d5:82:a7:68:ea:3d:00:b7:14:12:00:4e:4c:82:67:0b:2e: 11:9d:56:7d:81:18:d1:e9:50:b2:6d:75:a7:72:84:5d:9f:58: a2:55:da:b3:e1:eb:f2:ee:58:94:19:78:17:21:fd:dc:13:a2: 2e:7c:b9:9c:c4:5b:89:ba:f0:5f:49:91:91:1d:ad:3c:9b:81: 39:f0:d3:35:3a:d0:eb:46:e8:84:ef:9b:66:ce:8f:13:ef:03: 50:91:50:af:df:fb:36:8b:d1:16:27:af:db:fa:6d:3a:88:b7: fd:38:53:f7 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUPmV+bQBRa4xvpL3Skm2Yt83bGDswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkwOTE1NTgwMFoX DTI1MDkwODE2MDMwMFowMzExMC8GA1UEAxMoODY1OUJFODUwMERFQkIzMTQ0NDhG MTQxMkZBMUUyNjQwMjVBNDE0ODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN02116PflPvwWuilGj5Zv9kgcX9AzaSt3XxDDWOWooA5AFk/u+VNjnDJzGq 8EXgij3jjP8iDyeSqqsUVm7For11Tyi/d4bFJgP+sAe1RmH4HQUIjVpnJW7djQPC 7cEtPwbWtDtAZhWWfpwpK3GhQCzzg3rgX5ilgUVJNZ18bVoctQbJPWpi3NkXC7nt z7Fihr32t9kpLb0ZM+HOHOcf7qJMkqU8iMQF9p0GpPzfl5jV4JKlwtHNf4e8HkUN slCbStEU6Xf1wqyXCC2L64H+38UabGT9ZOCV6XuEuPpdY9mWKVvI2dOtX9rB5SKh 0GyiGyK4ng8OLDUPl097DyEj+w0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIZZvoUA3rsxREjxQS+h4mQCWkFIMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mYmE0OGU0ZS1mYzk1LTRhY2YtYmVhYy1kOTNhMGY2OTQ0MjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiYTQ4ZTRl LWZjOTUtNGFjZi1iZWFjLWQ5M2EwZjY5NDQyMS8wLzg2NTlCRTg1MDBERUJCMzE0 NDQ4RjE0MTJGQTFFMjY0MDI1QTQxNDgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnpMAwDwQCAAIwCQMHACABDfEbwDANBgkqhkiG9w0BAQsFAAOCAQEAFFxpRG+j NC2AiqKeZK/gPw6O1x2Yyobu3LO5OSZSclaq49IGySx15HoQ1nRkpYVVSUbngYHu aF6JtChwXk057no9/TOmBD/bI6P7StpNGAfU7qRBBSRQ7VTimz23o8nfKY7v0FmU ijxbP4KA8rLPKnsZ1Q6Vlos6uGfKlAw5g86c0K287/aLji2uTCVj2VU4xNWCp2jq PQC3FBIATkyCZwsuEZ1WfYEY0elQsm11p3KEXZ9YolXas+Hr8u5YlBl4FyH93BOi Lny5nMRbibrwX0mRkR2tPJuBOfDTNTrQ60bohO+bZs6PE+8DUJFQr9/7NovRFiev 2/ptOoi3/ThT9w== -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:20 2024 by rpki-client on console-fra.rpki-client.org