$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8790EFE9518BF8664B34E1227585F3516FDC5367.cer File: 8790EFE9518BF8664B34E1227585F3516FDC5367.cer (raw, json) Hash identifier: JExyuvLEL4pvNYvVb4F02vhfTlce8lhFuSaCRBcQD2k= Subject key identifier: 87:90:EF:E9:51:8B:F8:66:4B:34:E1:22:75:85:F3:51:6F:DC:53:67 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 30AD0FC66CDBD99DD6FCAE8768413FF8C852E2AB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/8790EFE9518BF8664B34E1227585F3516FDC5367.mft caRepository: rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 07 May 2024 15:33:42 +0000 Certificate not after: Tue 06 May 2025 15:38:42 +0000 Subordinate resources: IP: 103.166.90.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ad:0f:c6:6c:db:d9:9d:d6:fc:ae:87:68:41:3f:f8:c8:52:e2:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 7 15:33:42 2024 GMT Not After : May 6 15:38:42 2025 GMT Subject: CN=8790EFE9518BF8664B34E1227585F3516FDC5367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:de:85:be:6d:91:69:a8:40:95:fa:42:65:b6: 6b:9e:3b:a8:8d:40:eb:57:9a:6b:0e:14:b2:64:0b: c7:3b:fe:3f:43:38:73:7c:6b:97:aa:7d:87:1d:fb: c5:e5:5b:46:fa:be:e7:2a:bd:bb:e6:cb:e5:45:6b: a8:2a:80:bd:ac:09:1c:75:55:32:22:c5:24:af:b3: 7e:d5:e2:7a:e6:19:f9:66:a1:08:f0:b8:35:cf:5c: 04:7a:15:64:a0:9e:92:5f:14:1b:07:f1:e6:ee:bf: 09:6c:e8:1f:f0:3c:09:20:94:0b:18:a1:1a:4a:0c: 89:ef:22:d7:68:cc:44:32:b2:25:db:3d:73:79:2d: 6f:4e:0a:e1:51:a4:16:91:2e:e1:cb:ad:9e:65:04: da:67:01:f7:01:2a:79:49:68:54:f6:63:6f:eb:53: 00:ae:d6:95:1a:43:0f:47:d0:4c:08:6f:50:ed:52: 46:dd:2c:ac:b9:67:1b:3c:07:cb:b4:7f:32:9d:ec: f1:1d:26:27:52:1a:ff:d4:42:5c:ea:af:ce:c2:fa: a3:e1:22:67:62:98:65:c4:8f:71:41:35:94:1a:34: c8:c2:ad:5f:16:a8:32:20:3b:24:61:47:08:07:21: d8:25:3e:c5:89:42:c5:d7:b4:78:46:69:5a:94:6a: 7e:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 87:90:EF:E9:51:8B:F8:66:4B:34:E1:22:75:85:F3:51:6F:DC:53:67 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7e8cbdc8-d195-4c7d-b3e8-0a8fbae8c284/0/8790EFE9518BF8664B34E1227585F3516FDC5367.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.166.90.0/23 Signature Algorithm: sha256WithRSAEncryption 59:7d:cd:02:3d:cb:e0:3b:d6:16:44:9a:0b:2f:2a:a2:11:a7: 56:62:33:ca:b8:a0:a4:a6:f9:ab:d4:d4:73:fe:61:58:b8:19: 41:6d:9f:36:36:97:e0:3b:ca:a8:ce:e7:f9:19:00:9b:92:5c: 23:f1:08:fc:8e:2d:d7:24:48:65:3d:d7:c5:b4:b6:90:fa:88: b3:e2:42:12:84:7c:6c:7d:71:65:be:07:cd:69:94:ec:d4:a3: af:70:1f:bf:2d:b2:09:ea:26:a5:26:d1:94:38:c8:d2:64:d6: 1d:95:c1:a6:74:c9:fc:71:4c:dd:f1:20:16:f6:c9:4d:1f:1f: 24:9d:55:cf:67:6a:7e:bb:5e:9b:d2:11:62:d3:c1:42:6b:38: 37:46:10:64:67:6b:a3:b9:ba:49:df:65:ad:bb:0a:d2:d9:23: 26:27:4c:0a:e7:08:d3:3d:9c:96:7f:c0:5a:62:7c:a8:88:5a: b8:79:91:a8:4d:2c:0a:0e:9f:dc:13:b3:4d:8b:0c:5b:c0:6f: ef:f7:06:e9:7c:c1:09:2c:4f:2d:f5:c1:93:16:5c:bc:f7:4e: 04:6c:59:34:83:d3:53:1a:7a:bc:e9:ba:28:34:fe:30:c8:71: c9:40:96:f9:d8:0e:27:87:73:e3:a4:d9:50:f1:c3:b0:11:64: 42:02:36:34 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUMK0Pxmzb2Z3W/K6HaEE/+MhS4qswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwNzE1MzM0MloX DTI1MDUwNjE1Mzg0MlowMzExMC8GA1UEAxMoODc5MEVGRTk1MThCRjg2NjRCMzRF MTIyNzU4NUYzNTE2RkRDNTM2NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPnehb5tkWmoQJX6QmW2a547qI1A61eaaw4UsmQLxzv+P0M4c3xrl6p9hx37 xeVbRvq+5yq9u+bL5UVrqCqAvawJHHVVMiLFJK+zftXieuYZ+WahCPC4Nc9cBHoV ZKCekl8UGwfx5u6/CWzoH/A8CSCUCxihGkoMie8i12jMRDKyJds9c3ktb04K4VGk FpEu4cutnmUE2mcB9wEqeUloVPZjb+tTAK7WlRpDD0fQTAhvUO1SRt0srLlnGzwH y7R/Mp3s8R0mJ1Ia/9RCXOqvzsL6o+EiZ2KYZcSPcUE1lBo0yMKtXxaoMiA7JGFH CAch2CU+xYlCxde0eEZpWpRqfm0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIeQ7+lRi/hmSzThInWF81Fv3FNnMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZThjYmRjOC1kMTk1LTRjN2QtYjNlOC0wYThmYmFlOGMyODQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdlOGNiZGM4 LWQxOTUtNGM3ZC1iM2U4LTBhOGZiYWU4YzI4NC8wLzg3OTBFRkU5NTE4QkY4NjY0 QjM0RTEyMjc1ODVGMzUxNkZEQzUzNjcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnplowDQYJKoZIhvcNAQELBQADggEBAFl9zQI9y+A71hZEmgsvKqIRp1ZiM8q4 oKSm+avU1HP+YVi4GUFtnzY2l+A7yqjO5/kZAJuSXCPxCPyOLdckSGU918W0tpD6 iLPiQhKEfGx9cWW+B81plOzUo69wH78tsgnqJqUm0ZQ4yNJk1h2VwaZ0yfxxTN3x IBb2yU0fHySdVc9nan67XpvSEWLTwUJrODdGEGRna6O5uknfZa27CtLZIyYnTArn CNM9nJZ/wFpifKiIWrh5kahNLAoOn9wTs02LDFvAb+/3Bul8wQksTy31wZMWXLz3 TgRsWTSD01Maerzpuig0/jDIcclAlvnYDieHc+Ok2VDxw7ARZEICNjQ= -----END CERTIFICATE-----Generated at Wed May 8 10:06:50 2024 by rpki-client on console-ams.rpki-client.org