$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/89B98D1F135A7FC66C0284C34477C19604645554.cer File: 89B98D1F135A7FC66C0284C34477C19604645554.cer (raw, json) Hash identifier: A6ly90/Tx9/8WX1zVScKo7WjIcyI6K7z/EbuORxh+S0= Subject key identifier: 89:B9:8D:1F:13:5A:7F:C6:6C:02:84:C3:44:77:C1:96:04:64:55:54 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 33BB8F5BBD67E3D4FFAF2A328DDC2C8220B94282 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/89B98D1F135A7FC66C0284C34477C19604645554.mft caRepository: rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 13 Mar 2024 15:20:51 +0000 Certificate not after: Wed 12 Mar 2025 15:25:51 +0000 Subordinate resources: IP: 103.79.236.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:bb:8f:5b:bd:67:e3:d4:ff:af:2a:32:8d:dc:2c:82:20:b9:42:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 13 15:20:51 2024 GMT Not After : Mar 12 15:25:51 2025 GMT Subject: CN=89B98D1F135A7FC66C0284C34477C19604645554 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a4:2e:07:99:52:9e:1a:76:0f:dd:59:59:b6: 07:30:2f:69:15:8d:26:de:5e:c9:46:ef:a9:3f:94: d2:4a:ac:7d:f7:12:d2:b2:df:7e:b9:15:9b:32:48: e5:94:fa:fc:cd:09:48:a1:cb:e7:26:16:44:14:5a: c8:3b:dd:95:69:cc:d1:8a:ef:45:a3:97:49:68:bf: 9a:8c:ac:d8:7a:34:15:d5:dd:f7:19:c0:3f:8c:be: 56:63:c3:39:6a:97:c5:eb:c3:1d:b6:18:cf:dd:34: 23:d2:f1:d7:0b:90:a4:17:b1:b1:a5:d7:70:d0:f2: f9:12:33:84:54:6e:4e:33:07:2e:32:91:a5:3e:52: a7:86:95:61:69:b2:49:de:7b:b4:74:78:98:dd:ae: 87:5a:e1:ac:bd:30:f0:db:f0:83:cf:97:d4:38:b2: 0e:8e:fd:ea:e3:ab:c9:c1:1e:03:28:6f:de:23:09: 8f:07:93:10:57:5f:e5:d3:4b:d8:44:cf:c6:21:16: d3:22:f7:f1:9e:94:9d:ca:9c:f6:27:a6:bd:38:fd: ea:ba:4d:9c:b3:83:ab:6b:a2:d5:a9:46:71:d9:ba: 58:fa:89:58:d3:47:3d:bd:db:14:24:6a:44:d0:73: f9:9c:80:16:4e:4f:2c:19:ce:5a:27:f5:77:f9:7d: d8:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 89:B9:8D:1F:13:5A:7F:C6:6C:02:84:C3:44:77:C1:96:04:64:55:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dbff1b3f-1190-4119-bbc6-1417df8aa258/0/89B98D1F135A7FC66C0284C34477C19604645554.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.79.236.0/23 Signature Algorithm: sha256WithRSAEncryption 13:57:96:fd:f5:0b:6c:f4:ef:cf:ca:2c:1a:b6:1e:00:ef:05: cd:2e:07:1d:cd:3b:e3:8e:d3:f8:63:da:14:ca:3c:f3:5f:a7: 94:62:4e:37:ad:2b:a3:77:8a:25:a2:8c:ab:63:c7:84:cc:02: 6f:a7:7c:05:d4:ed:6e:f0:a0:44:cc:cf:03:b3:89:b8:10:83: ca:ba:f4:82:6a:4c:ad:c8:3a:01:86:a2:07:69:89:46:6a:93: e0:6b:91:01:1f:df:34:e1:b2:32:ec:df:f0:f7:ed:d1:ec:8e: 5d:0e:db:b6:40:cb:fa:d0:7f:46:70:52:af:20:8e:e0:1e:7a: 2f:58:18:f1:0d:f6:9e:4b:8b:41:16:90:1d:f7:1b:d4:8a:45: 65:30:22:d8:17:08:08:49:25:c6:cf:67:2e:12:34:3b:50:93: 1b:8d:40:24:92:53:0c:b1:36:37:06:d9:48:e5:ff:9f:9d:67: 74:7f:3a:5e:21:8e:a4:65:c9:ed:1a:d4:22:ba:18:5e:53:f4: 58:93:15:6d:a9:6f:c4:b2:d3:ae:5a:c4:94:00:ba:dd:2e:0f: fc:56:30:fa:5c:66:04:45:83:54:18:49:3a:b9:3d:82:ea:99: c3:fb:1a:f0:45:6f:18:53:9d:c6:58:f5:57:d7:d3:4e:85:b6: b4:58:ad:bf -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUM7uPW71n49T/ryoyjdwsgiC5QoIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxMzE1MjA1MVoX DTI1MDMxMjE1MjU1MVowMzExMC8GA1UEAxMoODlCOThEMUYxMzVBN0ZDNjZDMDI4 NEMzNDQ3N0MxOTYwNDY0NTU1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqkLgeZUp4adg/dWVm2BzAvaRWNJt5eyUbvqT+U0kqsffcS0rLffrkVmzJI 5ZT6/M0JSKHL5yYWRBRayDvdlWnM0YrvRaOXSWi/moys2Ho0FdXd9xnAP4y+VmPD OWqXxevDHbYYz900I9Lx1wuQpBexsaXXcNDy+RIzhFRuTjMHLjKRpT5Sp4aVYWmy Sd57tHR4mN2uh1rhrL0w8Nvwg8+X1DiyDo796uOrycEeAyhv3iMJjweTEFdf5dNL 2ETPxiEW0yL38Z6Uncqc9iemvTj96rpNnLODq2ui1alGcdm6WPqJWNNHPb3bFCRq RNBz+ZyAFk5PLBnOWif1d/l92BMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIm5jR8TWn/GbAKEw0R3wZYEZFVUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kYmZmMWIzZi0xMTkwLTQxMTktYmJjNi0xNDE3ZGY4YWEyNTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RiZmYxYjNm LTExOTAtNDExOS1iYmM2LTE0MTdkZjhhYTI1OC8wLzg5Qjk4RDFGMTM1QTdGQzY2 QzAyODRDMzQ0NzdDMTk2MDQ2NDU1NTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnT+wwDQYJKoZIhvcNAQELBQADggEBABNXlv31C2z078/KLBq2HgDvBc0uBx3N O+OO0/hj2hTKPPNfp5RiTjetK6N3iiWijKtjx4TMAm+nfAXU7W7woETMzwOzibgQ g8q69IJqTK3IOgGGogdpiUZqk+BrkQEf3zThsjLs3/D37dHsjl0O27ZAy/rQf0Zw Uq8gjuAeei9YGPEN9p5Li0EWkB33G9SKRWUwItgXCAhJJcbPZy4SNDtQkxuNQCSS UwyxNjcG2Ujl/5+dZ3R/Ol4hjqRlye0a1CK6GF5T9FiTFW2pb8Sy065axJQAut0u D/xWMPpcZgRFg1QYSTq5PYLqmcP7GvBFbxhTncZY9VfX006FtrRYrb8= -----END CERTIFICATE-----Generated at Tue May 7 18:07:12 2024 by rpki-client on console-fra.rpki-client.org