$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/89402655017312B8CFCB367BA82966AA21E11F90.cer File: 89402655017312B8CFCB367BA82966AA21E11F90.cer (raw, json) Hash identifier: GaHsMApdpgiunWIo7J5rpJ/mKohjgw/x//DIrPli+vE= Subject key identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 57DF2AA69D195BA236ED5EA0DEB07BCCDCCD6F3D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft caRepository: rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 05 Aug 2024 03:36:49 +0000 Certificate not after: Mon 04 Aug 2025 03:41:49 +0000 Subordinate resources: IP: 103.213.128.0/22 IP: 110.50.80.0/21 IP: 123.253.232.0/22 IP: 202.147.192.0/20 IP: 2400:1880::/32 IP: 2404:b280::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:df:2a:a6:9d:19:5b:a2:36:ed:5e:a0:de:b0:7b:cc:dc:cd:6f:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 5 03:36:49 2024 GMT Not After : Aug 4 03:41:49 2025 GMT Subject: CN=89402655017312B8CFCB367BA82966AA21E11F90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:a0:a7:5c:fa:7b:a2:eb:56:ee:c0:29:3c:b5: f8:22:d7:21:cc:a0:b3:60:37:47:c1:78:d1:b2:be: 8b:12:e6:b8:e3:b4:1f:47:8d:78:64:db:21:3a:bd: d4:27:37:6f:cd:4c:25:af:7a:1a:14:d3:3f:54:54: f8:b9:6a:23:18:a5:40:3f:1f:74:2f:ab:e3:93:0c: 31:73:23:a2:35:6a:df:e4:40:e6:3f:80:78:d5:cb: 3e:f3:ec:97:a5:74:bd:95:73:2b:24:64:5e:b8:bf: ef:dd:6c:03:b7:62:eb:36:23:50:84:98:2b:ec:5c: 7e:2d:4e:6e:80:d9:cd:55:e4:c6:98:dc:11:d5:62: d4:df:8a:5e:11:2d:04:4c:87:3f:47:dc:c4:4c:96: ef:03:3d:2c:04:c0:11:6b:e5:1c:0a:9e:10:23:16: 01:28:ba:d6:b8:61:44:13:7f:be:8e:08:e1:ba:0c: f3:c5:94:2e:5a:3c:5c:40:06:a2:43:8a:a3:88:e5: 60:28:ad:de:2e:6c:8a:93:de:83:17:b5:4c:e0:b0: 33:7a:51:9c:c6:30:f7:d0:8a:20:fe:a0:f5:32:46: f3:66:99:4d:6b:bd:93:fd:fb:f4:de:f7:51:30:b1: 99:e3:5f:09:ac:70:84:46:27:32:62:60:31:e2:84: 82:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 89:40:26:55:01:73:12:B8:CF:CB:36:7B:A8:29:66:AA:21:E1:1F:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5fb1c80c-4d6c-4408-8947-fba6e7c4be7c/0/89402655017312B8CFCB367BA82966AA21E11F90.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.213.128.0/22 110.50.80.0/21 123.253.232.0/22 202.147.192.0/20 IPv6: 2400:1880::/32 2404:b280::/32 Signature Algorithm: sha256WithRSAEncryption 87:fb:c5:f3:61:3f:af:35:5d:c5:22:6e:37:bf:ff:20:4c:ab: 5d:98:ff:0f:42:69:71:71:ee:3c:9b:7f:5c:78:67:a5:08:fd: f7:c3:f4:cd:a2:01:c6:86:51:77:95:f4:62:43:d7:7b:d1:a8: 7a:b3:47:e7:26:18:03:18:1f:40:6c:39:2b:4b:81:e8:93:7d: 00:0c:29:7a:f4:f4:63:fc:4b:ef:13:d4:11:94:34:6e:d9:64: 40:69:8d:f9:dc:fe:7b:5b:32:92:7f:c7:9d:ab:d3:23:72:df: ac:3d:47:fe:dc:fb:59:23:50:88:97:ba:11:a1:20:f5:75:a3: 66:04:08:ea:71:cb:fd:1d:bf:7d:c6:a3:2c:cb:29:de:d2:61: 6a:19:1f:43:5b:40:e8:d1:b9:7b:91:ea:4f:51:7b:ca:b2:1e: b0:bc:cc:a6:4e:21:84:8d:9a:4d:b5:71:10:54:8b:8f:56:78: c5:e7:ed:58:25:9e:72:6f:a9:ae:c0:a1:a9:81:4f:e2:48:58: 0c:f1:e4:e7:d5:fa:1a:41:e9:73:9b:7c:9e:55:4f:39:7a:69: 5e:71:ab:d0:e6:e1:f3:49:d4:9a:f0:d8:ad:22:6d:27:68:91: dd:25:e3:c2:54:04:93:a6:93:26:1d:fd:3c:1e:e5:4e:36:23: 6f:89:ec:22 -----BEGIN CERTIFICATE----- MIIF7TCCBNWgAwIBAgIUV98qpp0ZW6I27V6g3rB7zNzNbz0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwNTAzMzY0OVoX DTI1MDgwNDAzNDE0OVowMzExMC8GA1UEAxMoODk0MDI2NTUwMTczMTJCOENGQ0Iz NjdCQTgyOTY2QUEyMUUxMUY5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSgp1z6e6LrVu7AKTy1+CLXIcygs2A3R8F40bK+ixLmuOO0H0eNeGTbITq9 1Cc3b81MJa96GhTTP1RU+LlqIxilQD8fdC+r45MMMXMjojVq3+RA5j+AeNXLPvPs l6V0vZVzKyRkXri/791sA7di6zYjUISYK+xcfi1OboDZzVXkxpjcEdVi1N+KXhEt BEyHP0fcxEyW7wM9LATAEWvlHAqeECMWASi61rhhRBN/vo4I4boM88WULlo8XEAG okOKo4jlYCit3i5sipPegxe1TOCwM3pRnMYw99CKIP6g9TJG82aZTWu9k/379N73 UTCxmeNfCaxwhEYnMmJgMeKEgmsCAwEAAaOCAuAwggLcMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIlAJlUBcxK4z8s2e6gpZqoh4R+QMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ZmIxYzgwYy00ZDZjLTQ0MDgtODk0Ny1mYmE2ZTdjNGJlN2MvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVmYjFjODBj LTRkNmMtNDQwOC04OTQ3LWZiYTZlN2M0YmU3Yy8wLzg5NDAyNjU1MDE3MzEyQjhD RkNCMzY3QkE4Mjk2NkFBMjFFMTFGOTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwRwYIKwYBBQUHAQcBAf8EODA2MB4EAgABMBgD BAJn1YADBANuMlADBAJ7/egDBATKk8AwFAQCAAIwDgMFACQAGIADBQAkBLKAMA0G CSqGSIb3DQEBCwUAA4IBAQCH+8XzYT+vNV3FIm43v/8gTKtdmP8PQmlxce48m39c eGelCP33w/TNogHGhlF3lfRiQ9d70ah6s0fnJhgDGB9AbDkrS4Hok30ADCl69PRj /EvvE9QRlDRu2WRAaY353P57WzKSf8edq9Mjct+sPUf+3PtZI1CIl7oRoSD1daNm BAjqccv9Hb99xqMsyyne0mFqGR9DW0Do0bl7kepPUXvKsh6wvMymTiGEjZpNtXEQ VIuPVnjF5+1YJZ5yb6muwKGpgU/iSFgM8eTn1foaQelzm3yeVU85emlecavQ5uHz SdSa8NitIm0naJHdJePCVASTppMmHf08HuVONiNviewi -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:44 2024 by rpki-client on console-ams.rpki-client.org