$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer File: 8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.cer (raw, json) Hash identifier: 1bTI1yZ12U41OaRnCiyOPmaqpTF7ppygqw+oByfKH3Y= Subject key identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6FEE518BA5CBB1AA8500B4D3B3643B9DCF15BCB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft caRepository: rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 14 Sep 2024 18:07:53 +0000 Certificate not after: Sat 13 Sep 2025 18:12:53 +0000 Subordinate resources: IP: 103.118.124.0/22 IP: 2403:31c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:ee:51:8b:a5:cb:b1:aa:85:00:b4:d3:b3:64:3b:9d:cf:15:bc:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 14 18:07:53 2024 GMT Not After : Sep 13 18:12:53 2025 GMT Subject: CN=8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ba:32:90:30:a7:cf:6a:0b:2d:52:a2:27:56: 82:43:01:e8:7e:14:06:44:d9:7f:df:37:f2:16:b3: 70:ab:8d:4c:55:64:af:c2:ff:90:da:5b:f9:41:c5: ab:8f:aa:f2:e7:6d:3a:7c:42:c6:1c:cb:51:54:f2: 2f:2d:4d:52:06:28:71:ff:55:55:0d:02:e0:0a:b0: a9:a0:f4:9d:32:4b:a2:28:3d:ec:9d:b6:5e:40:60: 76:68:09:1b:7e:6f:cf:94:09:02:bc:65:f2:12:4f: 1e:61:33:dd:c8:0a:e7:0e:14:c2:03:1e:c8:af:28: e4:18:59:60:fd:0c:bc:f5:75:fa:e0:e0:5e:f9:39: 46:fd:65:e6:f2:b8:65:be:50:e3:58:c5:22:bc:0d: f5:64:69:16:58:e9:b3:9b:00:1e:79:58:5b:fd:6b: c4:e3:0f:29:89:1b:b9:a7:41:ec:ea:79:ee:ed:1d: 75:d4:1e:b1:50:56:92:b9:f8:75:b5:3a:6d:7d:e3: 8e:b4:38:ab:39:d6:50:76:92:b7:9a:56:d0:48:d4: a9:b9:1f:24:ec:5c:cd:87:89:33:8e:76:b0:14:0a: 1d:80:00:81:2e:34:f0:51:9c:0d:95:87:13:05:44: d5:bb:a5:3f:8c:f5:67:15:fc:e3:1b:24:55:d5:e0: df:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8C:5F:A2:EB:D7:AF:40:39:38:83:FB:08:E7:1B:DF:41:AA:E2:0F:57 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2d2a5b51-bc00-4d6b-8761-c7d0d3f6de12/0/8C5FA2EBD7AF40393883FB08E71BDF41AAE20F57.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.118.124.0/22 IPv6: 2403:31c0::/32 Signature Algorithm: sha256WithRSAEncryption 4c:36:0e:fb:fb:6b:3d:0e:b9:df:8b:52:72:ad:44:8f:b1:0b: b3:49:78:a1:cf:6b:58:6d:24:1a:1f:b7:4d:59:38:41:4e:e4: 97:1f:7b:92:9d:7b:6c:82:6c:50:e1:ac:88:e7:c3:98:66:d3: 68:60:3b:d9:82:eb:94:1e:93:7b:8b:bc:cc:17:9a:76:ca:0f: 84:a9:18:ee:85:49:9f:e8:a6:01:69:69:98:fa:25:04:25:f4: d1:b1:e5:fc:22:1c:ef:8c:dd:69:bb:49:9a:77:59:02:a7:ef: 96:d3:37:f8:e3:6e:cd:ef:6a:ed:b9:46:38:5a:78:92:1f:8c: 4f:1e:ee:92:f7:c4:a3:58:47:02:34:f4:48:d5:fc:fb:5c:d1: 9d:0d:ae:98:16:c4:ab:ac:0c:cb:a2:fe:54:1d:25:df:d5:92: 32:81:de:16:67:6d:63:4d:43:81:f5:df:58:cf:80:9e:e5:0f: d8:dd:23:c0:c1:bc:4c:3a:63:12:d7:c4:87:89:c9:18:be:2f: 63:dd:78:ff:f1:cf:2e:a2:0e:ca:ae:2e:b3:59:36:d4:b1:2d: 25:fa:81:7a:98:d2:6a:3f:1d:b1:75:c4:11:87:56:a5:00:6f: 53:3c:a1:1a:ec:65:c2:94:99:65:84:6f:97:6b:21:05:d7:29: 29:67:fa:06 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUb+5Ri6XLsaqFALTTs2Q7nc8VvLEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkxNDE4MDc1M1oX DTI1MDkxMzE4MTI1M1owMzExMC8GA1UEAxMoOEM1RkEyRUJEN0FGNDAzOTM4ODNG QjA4RTcxQkRGNDFBQUUyMEY1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANS6MpAwp89qCy1SoidWgkMB6H4UBkTZf9838hazcKuNTFVkr8L/kNpb+UHF q4+q8udtOnxCxhzLUVTyLy1NUgYocf9VVQ0C4AqwqaD0nTJLoig97J22XkBgdmgJ G35vz5QJArxl8hJPHmEz3cgK5w4UwgMeyK8o5BhZYP0MvPV1+uDgXvk5Rv1l5vK4 Zb5Q41jFIrwN9WRpFljps5sAHnlYW/1rxOMPKYkbuadB7Op57u0dddQesVBWkrn4 dbU6bX3jjrQ4qznWUHaSt5pW0EjUqbkfJOxczYeJM452sBQKHYAAgS408FGcDZWH EwVE1bulP4z1ZxX84xskVdXg39ECAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIxfouvXr0A5OIP7COcb30Gq4g9XMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZDJhNWI1MS1iYzAwLTRkNmItODc2MS1jN2QwZDNmNmRlMTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMmE1YjUx LWJjMDAtNGQ2Yi04NzYxLWM3ZDBkM2Y2ZGUxMi8wLzhDNUZBMkVCRDdBRjQwMzkz ODgzRkIwOEU3MUJERjQxQUFFMjBGNTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJndnwwDQQCAAIwBwMFACQDMcAwDQYJKoZIhvcNAQELBQADggEBAEw2Dvv7az0O ud+LUnKtRI+xC7NJeKHPa1htJBoft01ZOEFO5Jcfe5Kde2yCbFDhrIjnw5hm02hg O9mC65Qek3uLvMwXmnbKD4SpGO6FSZ/opgFpaZj6JQQl9NGx5fwiHO+M3Wm7SZp3 WQKn75bTN/jjbs3vau25RjhaeJIfjE8e7pL3xKNYRwI09EjV/Ptc0Z0NrpgWxKus DMui/lQdJd/VkjKB3hZnbWNNQ4H131jPgJ7lD9jdI8DBvEw6YxLXxIeJyRi+L2Pd eP/xzy6iDsquLrNZNtSxLSX6gXqY0mo/HbF1xBGHVqUAb1M8oRrsZcKUmWWEb5dr IQXXKSln+gY= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:24 2024 by rpki-client on console-ams.rpki-client.org