$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8B7E0099F26BEEE90826C9B0E424575BDE128403.cer File: 8B7E0099F26BEEE90826C9B0E424575BDE128403.cer (raw, json) Hash identifier: zGgrkS/07blNASLsjlAzB86v53t1d3iZ4uRWOViM7sk= Subject key identifier: 8B:7E:00:99:F2:6B:EE:E9:08:26:C9:B0:E4:24:57:5B:DE:12:84:03 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 16A56F8AEE17D7EA8B7DCC723F2063C2B8E7B00D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/8B7E0099F26BEEE90826C9B0E424575BDE128403.mft caRepository: rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 18 Oct 2024 19:21:38 +0000 Certificate not after: Fri 17 Oct 2025 19:26:38 +0000 Subordinate resources: IP: 103.179.86.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:a5:6f:8a:ee:17:d7:ea:8b:7d:cc:72:3f:20:63:c2:b8:e7:b0:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 18 19:21:38 2024 GMT Not After : Oct 17 19:26:38 2025 GMT Subject: CN=8B7E0099F26BEEE90826C9B0E424575BDE128403 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:f1:fe:1b:98:b3:00:a9:ca:6a:b4:e0:bf:33: 53:79:d1:dd:f0:f4:09:e4:5b:6b:3d:c8:a6:82:5a: 86:fd:20:b7:52:3c:7b:f5:75:97:0b:07:65:96:ab: 34:73:f8:e4:15:02:ee:92:cb:55:1c:f3:9c:7c:c6: 64:bf:d2:d7:28:d8:20:49:f1:68:22:ce:5e:4f:63: e4:8a:1f:fc:58:08:2b:2c:ac:56:ec:88:e9:f3:a3: d9:e4:21:ed:83:be:bc:73:87:2d:00:50:db:8d:93: 2a:b3:62:18:db:0f:b8:78:b2:3e:3b:7a:89:77:78: 84:1b:d5:37:cb:04:32:b3:0a:e9:4f:71:b2:14:66: 51:4a:b5:43:c1:c6:74:29:a5:f7:23:10:86:e3:ee: 66:65:a9:7c:e9:c1:67:a2:26:b8:1a:34:db:5f:ed: 20:1d:e6:7d:56:81:52:2e:3a:1e:b1:bb:2b:23:f4: d9:b5:de:2c:d2:a3:e7:b6:35:40:0b:ed:7b:cf:b4: d2:9c:bf:09:a7:78:dd:23:11:e7:0f:71:69:74:bf: 86:3a:97:92:cd:68:98:e7:83:8f:0e:57:4f:cf:9d: fd:04:0c:4d:7e:8e:7f:8f:f8:b0:6f:48:ca:55:89: 9d:a5:33:24:32:9d:5b:cc:38:b4:2e:be:bd:6e:c7: c6:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8B:7E:00:99:F2:6B:EE:E9:08:26:C9:B0:E4:24:57:5B:DE:12:84:03 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/09a88897-c387-4735-acd8-1d1c53cde264/0/8B7E0099F26BEEE90826C9B0E424575BDE128403.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.86.0/23 Signature Algorithm: sha256WithRSAEncryption 2e:97:67:07:e5:07:45:97:3a:c6:5c:23:f5:c2:3c:6f:19:5d: 22:cb:6a:80:04:6e:64:86:fa:d5:78:71:3c:4e:80:45:0e:ae: 85:1b:6e:b6:37:71:43:ab:a6:9e:31:ee:1f:67:49:88:0d:67: 95:d4:0e:a4:a3:3d:9b:55:a4:9a:a9:41:7e:76:94:ce:9b:f8: 39:59:e8:53:26:99:35:1a:7a:83:00:c9:0f:31:1b:73:1c:3e: 08:78:65:b2:78:b2:20:ca:d1:b4:7c:ac:d3:7b:63:15:ab:f6: df:a8:9f:3b:dd:db:90:0b:36:4f:a6:79:6e:61:87:51:2c:e6: f7:c5:59:35:99:9a:1c:8e:a6:37:58:47:42:0b:bc:57:13:5b: ec:3a:7b:7a:36:ab:d3:2d:10:90:ae:86:bd:2e:43:78:03:7b: 09:49:5c:20:00:8f:ce:4e:e5:54:15:68:60:e2:9d:3c:3f:ee: d9:24:e0:6c:1c:e5:a0:1e:63:af:87:7d:d8:79:0f:8c:e5:1a: 7c:dc:71:f9:4a:46:42:fd:f7:d0:6f:8e:c4:c2:3d:35:be:88: 9f:c4:4a:4d:e6:cb:7d:07:7a:17:a1:ed:b6:49:b7:25:d0:a1: 24:6c:52:5d:b2:af:18:26:b9:13:7b:1f:6b:67:c2:df:1f:86: 83:d3:81:a2 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUFqVviu4X1+qLfcxyPyBjwrjnsA0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAxODE5MjEzOFoX DTI1MTAxNzE5MjYzOFowMzExMC8GA1UEAxMoOEI3RTAwOTlGMjZCRUVFOTA4MjZD OUIwRTQyNDU3NUJERTEyODQwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALTx/huYswCpymq04L8zU3nR3fD0CeRbaz3IpoJahv0gt1I8e/V1lwsHZZar NHP45BUC7pLLVRzznHzGZL/S1yjYIEnxaCLOXk9j5Iof/FgIKyysVuyI6fOj2eQh 7YO+vHOHLQBQ242TKrNiGNsPuHiyPjt6iXd4hBvVN8sEMrMK6U9xshRmUUq1Q8HG dCml9yMQhuPuZmWpfOnBZ6ImuBo021/tIB3mfVaBUi46HrG7KyP02bXeLNKj57Y1 QAvte8+00py/Cad43SMR5w9xaXS/hjqXks1omOeDjw5XT8+d/QQMTX6Of4/4sG9I ylWJnaUzJDKdW8w4tC6+vW7HxgUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIt+AJnya+7pCCbJsOQkV1veEoQDMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wOWE4ODg5Ny1jMzg3LTQ3MzUtYWNkOC0xZDFjNTNjZGUyNjQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5YTg4ODk3 LWMzODctNDczNS1hY2Q4LTFkMWM1M2NkZTI2NC8wLzhCN0UwMDk5RjI2QkVFRTkw ODI2QzlCMEU0MjQ1NzVCREUxMjg0MDMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFns1YwDQYJKoZIhvcNAQELBQADggEBAC6XZwflB0WXOsZcI/XCPG8ZXSLLaoAE bmSG+tV4cTxOgEUOroUbbrY3cUOrpp4x7h9nSYgNZ5XUDqSjPZtVpJqpQX52lM6b +DlZ6FMmmTUaeoMAyQ8xG3McPgh4ZbJ4siDK0bR8rNN7YxWr9t+onzvd25ALNk+m eW5hh1Es5vfFWTWZmhyOpjdYR0ILvFcTW+w6e3o2q9MtEJCuhr0uQ3gDewlJXCAA j85O5VQVaGDinTw/7tkk4Gwc5aAeY6+Hfdh5D4zlGnzccflKRkL999BvjsTCPTW+ iJ/ESk3my30Heheh7bZJtyXQoSRsUl2yrxgmuRN7H2tnwt8fhoPTgaI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:21 2024 by rpki-client on console-fra.rpki-client.org