$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F.cer File: 8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F.cer (raw, json) Hash identifier: s7NA9xUkabVD8QvbipPf3ZECKPY9Mipp2KWqIy6SM1k= Subject key identifier: 8D:5A:49:C9:E4:2E:37:1B:FD:1E:67:AC:E1:B3:D5:5E:C1:AB:F7:3F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5FB3B19D0BD534E2A63ADEC1F17A0E71136038C0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/62f5986b-c764-4cd7-b414-a25bd05c3f92/0/8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F.mft caRepository: rsync://repo-rpki.idnic.net/repo/62f5986b-c764-4cd7-b414-a25bd05c3f92/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 25 Sep 2024 07:38:58 +0000 Certificate not after: Wed 24 Sep 2025 07:43:58 +0000 Subordinate resources: IP: 103.216.105.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:b3:b1:9d:0b:d5:34:e2:a6:3a:de:c1:f1:7a:0e:71:13:60:38:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 25 07:38:58 2024 GMT Not After : Sep 24 07:43:58 2025 GMT Subject: CN=8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a9:e9:71:74:54:08:cb:03:63:d7:d0:20:30: dd:28:dc:f0:65:29:ab:7c:cd:e1:9c:75:6b:6c:93: fa:82:c4:6f:c3:6e:dc:fe:63:f6:f8:6d:76:23:93: db:4d:44:2e:46:95:a6:d7:a9:aa:ee:73:29:fe:b2: 8b:03:ed:21:95:a4:83:7d:57:7d:e8:42:0a:f3:71: e3:62:88:97:80:d7:10:6b:bd:b7:75:e8:db:f3:4c: 9b:97:92:83:12:5a:2c:7a:99:b6:f8:32:fc:b6:c0: 1a:77:9d:77:c2:56:06:72:49:94:00:ab:e4:f8:dc: 26:4e:ef:ad:be:c7:1c:99:54:01:3f:ab:f0:c9:f7: 1a:c2:8e:db:4e:13:68:52:49:14:67:f9:b4:ca:d9: bc:04:e6:59:e6:68:79:cb:91:04:30:ba:11:37:eb: 60:ef:55:c0:f2:c2:83:3c:29:5d:20:5e:81:b3:b1: 47:01:eb:f2:98:6d:35:22:03:b8:fb:b1:e5:e6:37: 9d:da:9a:fd:23:f0:f8:6a:d1:2e:ef:49:22:39:b5: 81:8e:eb:e4:c6:12:a0:b4:99:d1:d7:aa:12:34:8d: 7f:01:0f:1a:7c:12:cd:ef:c4:12:12:71:3b:6b:40: 52:2f:ca:8d:72:65:50:d9:61:34:11:32:85:15:03: 03:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8D:5A:49:C9:E4:2E:37:1B:FD:1E:67:AC:E1:B3:D5:5E:C1:AB:F7:3F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/62f5986b-c764-4cd7-b414-a25bd05c3f92/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/62f5986b-c764-4cd7-b414-a25bd05c3f92/0/8D5A49C9E42E371BFD1E67ACE1B3D55EC1ABF73F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.216.105.0/24 Signature Algorithm: sha256WithRSAEncryption 27:81:d8:6b:3f:49:31:2c:44:a0:c3:bd:99:49:09:0a:0d:3f: dd:cc:34:30:c8:30:9b:a5:24:99:3f:a3:d1:18:a2:2b:9e:f0: 35:5e:32:c9:10:70:83:53:76:df:10:13:3e:e6:d6:07:19:fd: 0f:15:5d:48:3b:9c:9b:a3:e1:a9:7b:d5:90:7d:b0:d9:89:8f: 96:64:a5:e1:e8:ce:53:05:a8:f8:24:eb:38:26:11:b2:3e:a3: c8:b3:46:36:f9:46:4b:e1:40:7e:b7:c0:d8:c6:ad:86:ed:76: 81:34:49:c8:2a:90:9c:86:67:cb:6d:b0:19:a7:63:bf:88:96: 62:90:23:16:dd:b6:5c:ac:88:3a:2f:d0:1f:2b:73:a5:64:2c: 6a:4e:8c:87:11:7e:82:69:dd:43:05:6d:90:e6:86:83:31:5f: 7b:1d:0f:99:c4:3c:72:60:c1:7a:10:0a:5c:8d:1f:63:39:12: 7a:2e:0c:1a:c1:91:40:64:15:9b:99:a6:a8:06:bb:f0:90:92: 60:c8:ad:e2:71:f0:d7:a5:4c:fe:c9:f7:b6:7a:88:27:90:b3: 83:80:ee:d5:23:9c:be:36:9d:c4:a0:c5:96:1b:65:a8:4f:ca: 75:3e:2f:f3:d5:c5:e6:03:42:da:cd:4c:1d:72:5c:3a:da:a9: d9:ce:22:52 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUX7OxnQvVNOKmOt7B8XoOcRNgOMAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyNTA3Mzg1OFoX DTI1MDkyNDA3NDM1OFowMzExMC8GA1UEAxMoOEQ1QTQ5QzlFNDJFMzcxQkZEMUU2 N0FDRTFCM0Q1NUVDMUFCRjczRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ6p6XF0VAjLA2PX0CAw3Sjc8GUpq3zN4Zx1a2yT+oLEb8Nu3P5j9vhtdiOT 201ELkaVptepqu5zKf6yiwPtIZWkg31XfehCCvNx42KIl4DXEGu9t3Xo2/NMm5eS gxJaLHqZtvgy/LbAGnedd8JWBnJJlACr5PjcJk7vrb7HHJlUAT+r8Mn3GsKO204T aFJJFGf5tMrZvATmWeZoecuRBDC6ETfrYO9VwPLCgzwpXSBegbOxRwHr8phtNSID uPux5eY3ndqa/SPw+GrRLu9JIjm1gY7r5MYSoLSZ0deqEjSNfwEPGnwSze/EEhJx O2tAUi/KjXJlUNlhNBEyhRUDA5MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI1aScnkLjcb/R5nrOGz1V7Bq/c/MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82MmY1OTg2Yi1jNzY0LTRjZDctYjQxNC1hMjViZDA1YzNmOTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyZjU5ODZi LWM3NjQtNGNkNy1iNDE0LWEyNWJkMDVjM2Y5Mi8wLzhENUE0OUM5RTQyRTM3MUJG RDFFNjdBQ0UxQjNENTVFQzFBQkY3M0YubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn2GkwDQYJKoZIhvcNAQELBQADggEBACeB2Gs/STEsRKDDvZlJCQoNP93MNDDI MJulJJk/o9EYoiue8DVeMskQcINTdt8QEz7m1gcZ/Q8VXUg7nJuj4al71ZB9sNmJ j5ZkpeHozlMFqPgk6zgmEbI+o8izRjb5RkvhQH63wNjGrYbtdoE0ScgqkJyGZ8tt sBmnY7+IlmKQIxbdtlysiDov0B8rc6VkLGpOjIcRfoJp3UMFbZDmhoMxX3sdD5nE PHJgwXoQClyNH2M5EnouDBrBkUBkFZuZpqgGu/CQkmDIreJx8NelTP7J97Z6iCeQ s4OA7tUjnL42ncSgxZYbZahPynU+L/PVxeYDQtrNTB1yXDraqdnOIlI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:21 2024 by rpki-client on console-fra.rpki-client.org