$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8CBCE2EE006256C9A6207949314A7D1FCC415B5A.cer File: 8CBCE2EE006256C9A6207949314A7D1FCC415B5A.cer (raw, json) Hash identifier: TfPzTuR4YESgg1DDvmzDa8LKHYs9vLhU8ek6V+UMG2w= Subject key identifier: 8C:BC:E2:EE:00:62:56:C9:A6:20:79:49:31:4A:7D:1F:CC:41:5B:5A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0DCFC721B59DC0542C714D18E081064B0F90B0DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/8CBCE2EE006256C9A6207949314A7D1FCC415B5A.mft caRepository: rsync://repo-rpki.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Apr 2024 09:18:40 +0000 Certificate not after: Tue 01 Apr 2025 09:23:40 +0000 Subordinate resources: IP: 103.187.112.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:cf:c7:21:b5:9d:c0:54:2c:71:4d:18:e0:81:06:4b:0f:90:b0:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 2 09:18:40 2024 GMT Not After : Apr 1 09:23:40 2025 GMT Subject: CN=8CBCE2EE006256C9A6207949314A7D1FCC415B5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fa:87:48:e0:0f:c9:64:4b:47:cd:99:20:e8: 96:07:4a:99:27:74:12:43:fe:ea:a9:d6:13:5e:19: 9f:94:28:46:4d:0d:03:b9:9e:ba:52:34:8d:2a:60: dd:0a:e4:9a:c5:1f:e5:c2:60:10:71:8b:7e:3a:65: a9:10:27:74:6c:04:6a:12:f0:ab:f3:63:6f:b4:de: 9d:17:fe:44:de:b5:d9:82:6e:03:bf:23:93:74:a5: 3a:bf:03:bd:ac:0c:d6:4a:90:95:69:f4:68:27:25: 62:e5:94:31:a7:e8:bc:d4:ef:10:a6:cc:d2:c2:b9: 6f:96:fc:84:20:a3:4f:49:16:35:a2:3e:75:38:49: 75:40:82:f8:e2:50:44:6f:77:65:29:be:93:b2:0b: 02:6a:8a:9c:73:01:9b:84:a6:36:cd:c6:10:30:21: b4:28:52:f9:47:da:2b:ba:8c:47:ba:e0:21:48:2c: 8b:e5:78:ef:b4:66:9a:5e:a4:c0:a2:4c:fd:4b:03: ab:c3:bc:99:1f:4b:2b:a4:ae:aa:46:1d:0d:d3:be: ed:33:76:0d:1e:81:c1:f3:ef:78:80:7e:a0:46:6c: c5:dc:47:f4:54:93:de:b4:b7:86:ae:99:d0:39:9f: 8a:0e:59:6d:8d:41:15:b2:dd:e9:ed:6e:0f:42:3d: 8c:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8C:BC:E2:EE:00:62:56:C9:A6:20:79:49:31:4A:7D:1F:CC:41:5B:5A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/758db87b-16cd-437a-a5b5-08cb35da97f0/0/8CBCE2EE006256C9A6207949314A7D1FCC415B5A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.187.112.0/23 Signature Algorithm: sha256WithRSAEncryption 36:9a:b5:4e:f5:cd:a4:b3:24:d8:30:f5:20:01:ef:6a:3a:27: 2c:4d:c4:b5:1f:a3:28:ba:9f:cc:a9:de:f7:2d:e8:03:45:48: fb:9f:cb:46:cd:a9:75:67:3f:c9:fa:0f:4b:12:2a:3b:3a:c6: 62:e6:0a:b4:bf:a4:80:15:07:bb:63:60:97:01:f0:a0:d9:47: 63:8a:ec:2d:34:41:4e:e0:f9:47:ce:39:a1:24:81:0b:1a:45: d9:a0:78:b8:8c:78:c2:14:d7:31:9e:7b:e3:4f:31:ae:89:4b: 3a:e3:1a:5f:bd:31:e7:a5:07:42:3b:1a:28:fc:3e:3f:85:91: a0:00:e4:08:3d:26:20:38:4e:8a:b7:41:01:72:c8:03:02:9d: e9:54:77:28:b4:e4:5f:8c:d9:43:13:8e:54:51:c3:6f:88:65: 97:73:88:86:f2:e3:93:91:22:4d:3b:11:46:90:0f:cb:42:64: e5:d7:bb:c9:31:55:f8:1e:b9:73:2e:7d:5f:63:85:c4:07:7c: 1e:51:b9:66:f5:b5:27:21:f9:6c:2c:46:4d:4c:0a:e4:49:5e: 6b:92:65:99:8a:43:5e:7f:18:cb:7a:f9:06:16:81:0d:4e:67: e0:23:72:fd:0f:f1:74:b9:2b:e6:cf:1f:36:10:d8:41:83:0d: 0b:30:19:fa -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDc/HIbWdwFQscU0Y4IEGSw+QsNowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQwMjA5MTg0MFoX DTI1MDQwMTA5MjM0MFowMzExMC8GA1UEAxMoOENCQ0UyRUUwMDYyNTZDOUE2MjA3 OTQ5MzE0QTdEMUZDQzQxNUI1QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMv6h0jgD8lkS0fNmSDolgdKmSd0EkP+6qnWE14Zn5QoRk0NA7meulI0jSpg 3QrkmsUf5cJgEHGLfjplqRAndGwEahLwq/Njb7TenRf+RN612YJuA78jk3SlOr8D vawM1kqQlWn0aCclYuWUMafovNTvEKbM0sK5b5b8hCCjT0kWNaI+dThJdUCC+OJQ RG93ZSm+k7ILAmqKnHMBm4SmNs3GEDAhtChS+UfaK7qMR7rgIUgsi+V477Rmml6k wKJM/UsDq8O8mR9LK6SuqkYdDdO+7TN2DR6BwfPveIB+oEZsxdxH9FST3rS3hq6Z 0Dmfig5ZbY1BFbLd6e1uD0I9jBECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIy84u4AYlbJpiB5STFKfR/MQVtaMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NThkYjg3Yi0xNmNkLTQzN2EtYTViNS0wOGNiMzVkYTk3ZjAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc1OGRiODdi LTE2Y2QtNDM3YS1hNWI1LTA4Y2IzNWRhOTdmMC8wLzhDQkNFMkVFMDA2MjU2QzlB NjIwNzk0OTMxNEE3RDFGQ0M0MTVCNUEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnu3AwDQYJKoZIhvcNAQELBQADggEBADaatU71zaSzJNgw9SAB72o6JyxNxLUf oyi6n8yp3vct6ANFSPufy0bNqXVnP8n6D0sSKjs6xmLmCrS/pIAVB7tjYJcB8KDZ R2OK7C00QU7g+UfOOaEkgQsaRdmgeLiMeMIU1zGee+NPMa6JSzrjGl+9MeelB0I7 Gij8Pj+FkaAA5Ag9JiA4Toq3QQFyyAMCnelUdyi05F+M2UMTjlRRw2+IZZdziIby 45ORIk07EUaQD8tCZOXXu8kxVfgeuXMufV9jhcQHfB5RuWb1tSch+WwsRk1MCuRJ XmuSZZmKQ15/GMt6+QYWgQ1OZ+Ajcv0P8XS5K+bPHzYQ2EGDDQswGfo= -----END CERTIFICATE-----Generated at Wed May 8 21:02:18 2024 by rpki-client on console-fra.rpki-client.org