$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer File: 878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.cer (raw, json) Hash identifier: /vpVdp+so2hbLkcoO0fgc7nl8ztQMySQmvc9PzTccug= Subject key identifier: 87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5971A186F602B8C1638DD14DB48609ABE8470909 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.mft caRepository: rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 22 Aug 2024 17:02:02 +0000 Certificate not after: Thu 21 Aug 2025 17:07:02 +0000 Subordinate resources: IP: 103.156.96.0/24 IP: 2406:8440::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:71:a1:86:f6:02:b8:c1:63:8d:d1:4d:b4:86:09:ab:e8:47:09:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 22 17:02:02 2024 GMT Not After : Aug 21 17:07:02 2025 GMT Subject: CN=878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:24:39:3a:8a:af:1a:75:7e:f1:1b:a7:00:6c: 97:a5:fa:1b:f4:9d:eb:92:63:43:8d:d2:f4:4f:d9: 71:11:48:6a:a6:b2:10:9e:a5:51:86:7b:b6:c4:6e: 42:1e:d3:1f:a1:3e:14:48:77:2f:90:92:0a:dc:b8: 5c:d1:10:26:70:25:04:2b:35:e6:91:60:e4:3c:14: e8:b8:98:e5:a6:61:e0:55:aa:f5:76:86:ce:20:e5: 52:65:4b:68:05:be:9d:1e:fb:19:b1:dd:cd:0e:eb: bf:e5:c4:ea:dc:62:19:8c:9f:21:5c:81:1a:62:74: f4:0c:7f:1a:78:15:9d:0b:d3:76:29:af:55:b5:58: 5b:9b:3f:9d:ca:ff:90:74:4f:be:6e:c6:47:94:e9: 68:7f:e0:1c:68:2c:78:ff:14:b8:63:eb:0b:4a:8e: 52:7b:e9:22:34:9e:e9:57:61:69:6e:58:c6:37:c9: e3:e5:ae:de:8e:a6:92:0c:f8:b7:89:2c:d6:83:23: af:33:68:96:54:8c:12:56:52:ee:1f:fc:67:1e:76: ee:c2:3d:cd:f5:b2:d3:03:7d:c1:3f:12:1a:94:b3: 21:3b:4f:c9:b0:8c:04:5a:65:19:4c:a1:80:32:66: 76:22:7a:01:9e:7f:65:42:95:14:ef:53:0f:3f:ab: 0d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 87:8D:F4:B7:E3:C7:76:B2:ED:C1:75:2F:CC:BC:5E:28:9C:45:3B:EE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5c897c4a-e0ff-4652-a591-ff2d48e72c91/0/878DF4B7E3C776B2EDC1752FCCBC5E289C453BEE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.156.96.0/24 IPv6: 2406:8440::/32 Signature Algorithm: sha256WithRSAEncryption 7e:39:ac:33:06:62:81:31:e2:ef:92:bc:90:fd:8a:ad:e7:3e: 13:e7:c0:a4:3a:e0:62:93:1e:ad:cd:7f:b5:99:fa:c8:46:9d: 6a:93:87:cb:ad:48:47:57:da:e5:4e:8a:df:c0:31:16:23:ae: 05:34:5f:96:dc:13:cc:13:bd:13:a8:d2:7f:1a:55:16:f3:75: 0e:d0:e4:cf:e3:0a:b8:92:e4:ae:4b:92:99:2e:cf:d0:ee:c5: c9:7e:68:50:bd:d9:70:58:ce:37:f0:ff:89:8d:f1:28:0e:49: 62:60:19:8c:fa:cd:c7:44:77:09:4e:40:dd:b8:06:57:a1:96: 22:09:55:79:b3:b2:ea:47:c7:cd:57:81:ad:96:b4:6c:95:04: 5f:47:07:ac:52:49:71:ad:18:21:1e:3d:de:5a:ab:4e:0e:35: 48:e7:5d:09:6f:8f:65:94:dc:74:e6:3d:69:81:3e:cd:67:3d: 7a:08:0e:a2:d5:8b:c7:1f:e4:07:f1:61:19:b1:ee:3f:27:3e: 90:a9:6b:7c:89:37:ea:e6:a4:06:7c:08:d0:4f:55:57:e7:d3: fe:d6:03:ee:ac:d9:a6:9c:06:62:bb:d6:5e:be:14:58:58:e1: ef:d6:a1:1d:c4:e8:e1:52:6e:99:ce:3e:56:07:58:f6:fb:f8: bb:5d:db:19 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUWXGhhvYCuMFjjdFNtIYJq+hHCQkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgyMjE3MDIwMloX DTI1MDgyMTE3MDcwMlowMzExMC8GA1UEAxMoODc4REY0QjdFM0M3NzZCMkVEQzE3 NTJGQ0NCQzVFMjg5QzQ1M0JFRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOckOTqKrxp1fvEbpwBsl6X6G/Sd65JjQ43S9E/ZcRFIaqayEJ6lUYZ7tsRu Qh7TH6E+FEh3L5CSCty4XNEQJnAlBCs15pFg5DwU6LiY5aZh4FWq9XaGziDlUmVL aAW+nR77GbHdzQ7rv+XE6txiGYyfIVyBGmJ09Ax/GngVnQvTdimvVbVYW5s/ncr/ kHRPvm7GR5TpaH/gHGgseP8UuGPrC0qOUnvpIjSe6VdhaW5YxjfJ4+Wu3o6mkgz4 t4ks1oMjrzNollSMElZS7h/8Zx527sI9zfWy0wN9wT8SGpSzITtPybCMBFplGUyh gDJmdiJ6AZ5/ZUKVFO9TDz+rDd8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIeN9Lfjx3ay7cF1L8y8XiicRTvuMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81Yzg5N2M0YS1lMGZmLTQ2NTItYTU5MS1mZjJkNDhlNzJjOTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjODk3YzRh LWUwZmYtNDY1Mi1hNTkxLWZmMmQ0OGU3MmM5MS8wLzg3OERGNEI3RTNDNzc2QjJF REMxNzUyRkNDQkM1RTI4OUM0NTNCRUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BABnnGAwDQQCAAIwBwMFACQGhEAwDQYJKoZIhvcNAQELBQADggEBAH45rDMGYoEx 4u+SvJD9iq3nPhPnwKQ64GKTHq3Nf7WZ+shGnWqTh8utSEdX2uVOit/AMRYjrgU0 X5bcE8wTvROo0n8aVRbzdQ7Q5M/jCriS5K5Lkpkuz9Duxcl+aFC92XBYzjfw/4mN 8SgOSWJgGYz6zcdEdwlOQN24BlehliIJVXmzsupHx81Xga2WtGyVBF9HB6xSSXGt GCEePd5aq04ONUjnXQlvj2WU3HTmPWmBPs1nPXoIDqLVi8cf5AfxYRmx7j8nPpCp a3yJN+rmpAZ8CNBPVVfn0/7WA+6s2aacBmK71l6+FFhY4e/WoR3E6OFSbpnOPlYH WPb7+Ltd2xk= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:44 2024 by rpki-client on console-ams.rpki-client.org