$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer File: 8711D05D82BAFB7BEAB275E079A72DDD554064EA.cer (raw, json) Hash identifier: b59yuQ2/68BkLV5WSRX50LX5jcUgV/B8QzrYwjdX1cQ= Subject key identifier: 87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 50841E45F73E75418D5540321771CE05EC101FBF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.mft caRepository: rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 13 Sep 2024 12:52:23 +0000 Certificate not after: Fri 12 Sep 2025 12:57:23 +0000 Subordinate resources: IP: 103.17.178.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:84:1e:45:f7:3e:75:41:8d:55:40:32:17:71:ce:05:ec:10:1f:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 13 12:52:23 2024 GMT Not After : Sep 12 12:57:23 2025 GMT Subject: CN=8711D05D82BAFB7BEAB275E079A72DDD554064EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:ed:ab:dd:28:d7:a7:4d:89:17:de:96:9d:f2: 88:49:16:e9:8e:3b:1b:bb:74:ff:60:3b:47:58:8c: 58:a7:86:3a:c5:d6:fc:27:62:79:53:13:51:db:ce: c9:42:44:82:55:2b:9d:59:a3:30:63:01:8b:30:c5: 73:c4:19:e4:cd:e6:99:de:a2:27:92:fd:42:28:10: 6d:f7:fc:8c:dd:45:6e:31:9b:05:36:fa:88:94:48: 5d:64:f3:30:34:33:f0:cc:9f:68:d7:fa:30:0c:49: 00:e0:b7:7e:b8:fd:bd:4a:b8:41:e5:e8:f8:bb:0a: 50:bb:36:5b:2b:5a:03:89:c0:d2:9b:40:83:f0:43: c3:f5:09:39:6f:92:ae:96:b1:5d:73:06:25:08:39: fd:40:31:40:7c:07:91:bc:76:48:f0:73:24:05:67: 1b:97:14:e5:98:44:ac:ec:4d:6d:7d:66:c5:77:2d: 56:e3:26:fb:cf:d3:96:3d:e1:1d:ab:6a:ef:b2:54: de:d0:a4:72:23:18:3e:41:84:d5:cb:c0:83:de:26: a0:59:8f:8c:68:25:b0:fd:e4:05:f6:0c:32:c1:be: f8:0c:ba:bd:f8:43:08:f8:a7:b5:90:60:f9:ab:02: a5:cf:29:b5:6b:34:88:c7:e8:d6:1e:fb:37:68:d5: 91:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 87:11:D0:5D:82:BA:FB:7B:EA:B2:75:E0:79:A7:2D:DD:55:40:64:EA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aef837b3-dfd2-42cc-9b79-74b6bafd4e2d/0/8711D05D82BAFB7BEAB275E079A72DDD554064EA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.17.178.0/23 Signature Algorithm: sha256WithRSAEncryption 88:2e:79:f2:9b:bd:48:57:c3:d7:fb:49:1f:7c:f5:ba:c4:b0: a5:c6:60:78:fc:00:e3:70:2d:5e:62:fe:b7:55:66:26:0f:a4: 7a:a2:53:37:46:08:26:06:70:07:d4:c8:56:4c:5c:e8:5a:2a: 8e:ce:8b:40:1f:25:ad:45:da:33:e9:c0:29:ab:fe:e2:14:a7: ec:d7:e7:45:12:ab:a1:73:61:d7:fe:5d:e7:84:b6:d1:f5:8f: e7:86:c5:c9:6d:24:69:83:b2:a2:3b:c9:cf:7f:bd:77:58:0b: 31:fc:7a:60:c4:ea:b5:df:ea:a6:8d:b1:b8:e8:46:92:c9:76: 36:59:78:af:c2:cc:82:12:58:10:75:3e:69:5b:ab:3a:06:31: 87:50:01:d7:1b:80:6a:eb:87:b7:31:83:a8:0c:51:c3:3d:7d: 2d:d0:02:4c:34:38:02:f3:20:76:29:40:98:01:76:14:25:45: f2:a4:db:ae:ce:2b:eb:29:27:9f:cf:e2:7e:1f:16:d3:af:c6: 9f:59:a4:8f:a6:e9:14:ce:a9:7d:3b:fe:9f:1e:7d:f4:e3:60: db:7f:be:11:0b:0c:e5:01:c4:4b:af:35:d2:8e:8a:78:81:3d: b9:52:a3:d4:78:b6:94:87:28:d2:d2:45:22:21:b4:66:f7:f5: 75:33:4f:63 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUIQeRfc+dUGNVUAyF3HOBewQH78wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxMzEyNTIyM1oX DTI1MDkxMjEyNTcyM1owMzExMC8GA1UEAxMoODcxMUQwNUQ4MkJBRkI3QkVBQjI3 NUUwNzlBNzJEREQ1NTQwNjRFQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOftq90o16dNiRfelp3yiEkW6Y47G7t0/2A7R1iMWKeGOsXW/CdieVMTUdvO yUJEglUrnVmjMGMBizDFc8QZ5M3mmd6iJ5L9QigQbff8jN1FbjGbBTb6iJRIXWTz MDQz8MyfaNf6MAxJAOC3frj9vUq4QeXo+LsKULs2WytaA4nA0ptAg/BDw/UJOW+S rpaxXXMGJQg5/UAxQHwHkbx2SPBzJAVnG5cU5ZhErOxNbX1mxXctVuMm+8/Tlj3h Hatq77JU3tCkciMYPkGE1cvAg94moFmPjGglsP3kBfYMMsG++Ay6vfhDCPintZBg +asCpc8ptWs0iMfo1h77N2jVkfcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIcR0F2Cuvt76rJ14HmnLd1VQGTqMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZWY4MzdiMy1kZmQyLTQyY2MtOWI3OS03NGI2YmFmZDRlMmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlZjgzN2Iz LWRmZDItNDJjYy05Yjc5LTc0YjZiYWZkNGUyZC8wLzg3MTFEMDVEODJCQUZCN0JF QUIyNzVFMDc5QTcyRERENTU0MDY0RUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnEbIwDQYJKoZIhvcNAQELBQADggEBAIguefKbvUhXw9f7SR989brEsKXGYHj8 AONwLV5i/rdVZiYPpHqiUzdGCCYGcAfUyFZMXOhaKo7Oi0AfJa1F2jPpwCmr/uIU p+zX50USq6FzYdf+XeeEttH1j+eGxcltJGmDsqI7yc9/vXdYCzH8emDE6rXf6qaN sbjoRpLJdjZZeK/CzIISWBB1PmlbqzoGMYdQAdcbgGrrh7cxg6gMUcM9fS3QAkw0 OALzIHYpQJgBdhQlRfKk267OK+spJ5/P4n4fFtOvxp9ZpI+m6RTOqX07/p8effTj YNt/vhELDOUBxEuvNdKOiniBPblSo9R4tpSHKNLSRSIhtGb39XUzT2M= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:20 2024 by rpki-client on console-fra.rpki-client.org