$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer File: 8DA7BD2FB53F2491FB6F3C9319EF347499610E50.cer (raw, json) Hash identifier: jqNZ1qXl8XpkcTJMqlDxNIEAxALKSi0LedA8kFbVgU4= Subject key identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D878E9B6528A9D4D65FF1C8EADAD6B26BE0BD63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft caRepository: rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 20 Sep 2024 19:07:42 +0000 Certificate not after: Fri 19 Sep 2025 19:12:42 +0000 Subordinate resources: IP: 103.167.70.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:87:8e:9b:65:28:a9:d4:d6:5f:f1:c8:ea:da:d6:b2:6b:e0:bd:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 20 19:07:42 2024 GMT Not After : Sep 19 19:12:42 2025 GMT Subject: CN=8DA7BD2FB53F2491FB6F3C9319EF347499610E50 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:69:7a:62:f9:49:c9:0b:7c:86:c9:12:bb:ef: 46:44:34:70:57:02:6c:1e:3f:38:05:06:37:88:ea: 0e:b0:10:0e:7c:ef:0e:17:14:88:bb:7f:ca:8c:e0: ec:c3:a8:61:33:d5:b2:00:78:a4:1b:30:87:53:87: 30:87:0b:41:24:bd:d5:b1:ba:e5:5b:5e:22:fd:95: 97:a1:35:72:f0:c1:c4:30:03:4c:4f:79:c1:14:6b: 63:92:08:80:22:b7:4a:76:99:11:7e:1b:17:d8:12: 35:fa:e9:ce:44:9d:aa:d0:ad:ce:ea:fc:83:57:51: af:d7:45:42:f4:f6:43:1f:db:03:5a:fc:3d:3f:1f: 2a:20:cb:d0:7d:85:dd:1c:9a:25:8f:2e:7d:6d:b2: 61:ce:f5:b1:28:81:5f:8e:51:d6:62:c6:2e:d7:bc: 1d:e6:27:b4:1d:bf:e0:93:46:80:65:20:41:4d:de: 0b:42:37:8c:79:38:da:e6:c9:3f:ef:72:57:e9:e4: f7:cf:ed:bd:b1:22:b0:31:10:11:9e:99:01:2b:bf: fc:4c:db:8b:ad:b7:fc:c7:0c:37:7f:72:67:d8:8e: a9:57:b5:8a:e5:a5:d2:8b:34:b9:ac:80:b0:a6:87: 3d:91:7a:7c:d2:ac:0f:30:40:cd:a3:eb:6a:df:25: 53:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8D:A7:BD:2F:B5:3F:24:91:FB:6F:3C:93:19:EF:34:74:99:61:0E:50 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b8f9e87d-e509-47ba-be9d-89556f530ea8/0/8DA7BD2FB53F2491FB6F3C9319EF347499610E50.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.70.0/23 Signature Algorithm: sha256WithRSAEncryption 25:b8:8b:8a:1f:f1:90:a4:45:7a:84:7d:9d:5f:2c:6f:9d:44: 5c:fb:b4:34:a6:dc:03:0e:0a:14:79:e4:51:f4:74:75:2d:bc: c6:9d:09:11:02:78:dd:13:79:50:40:99:d5:ad:1d:8a:49:55: e3:75:55:7a:ae:7d:e9:cc:da:32:c7:58:30:8f:f0:6d:89:3a: e9:d4:73:fa:9b:2d:f8:9a:ae:2f:a7:38:20:cb:64:56:c1:21: a9:a1:91:8d:58:4c:19:64:7e:bd:61:b6:56:f3:3a:7d:c6:4b: a3:20:14:e9:a3:42:ee:33:c4:32:7a:19:10:6a:d9:f3:72:4c: 79:3b:c8:3a:c7:3b:87:30:93:12:be:63:ad:cf:56:b5:ea:36: 8c:69:3f:b5:4d:e4:98:3f:ae:5f:92:c9:f2:aa:65:f3:d4:e0: 9f:2b:05:1e:22:c0:ab:52:fb:a5:74:d4:75:85:23:40:cc:d4: 05:82:9a:fd:7e:72:8f:f8:37:af:41:e8:0b:2d:24:02:a4:a7: cf:d6:70:07:bf:db:cc:b3:79:34:45:79:b1:df:28:16:0b:70: c4:28:e1:d1:62:b0:84:fe:a4:1a:b7:58:62:e0:dc:ea:46:9d: 82:9d:26:1a:8e:e6:51:9c:c9:a8:2c:b7:0e:15:1c:b4:90:90: 7b:a9:71:46 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDYeOm2UoqdTWX/HI6trWsmvgvWMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyMDE5MDc0MloX DTI1MDkxOTE5MTI0MlowMzExMC8GA1UEAxMoOERBN0JEMkZCNTNGMjQ5MUZCNkYz QzkzMTlFRjM0NzQ5OTYxMEU1MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPNpemL5SckLfIbJErvvRkQ0cFcCbB4/OAUGN4jqDrAQDnzvDhcUiLt/yozg 7MOoYTPVsgB4pBswh1OHMIcLQSS91bG65VteIv2Vl6E1cvDBxDADTE95wRRrY5II gCK3SnaZEX4bF9gSNfrpzkSdqtCtzur8g1dRr9dFQvT2Qx/bA1r8PT8fKiDL0H2F 3RyaJY8ufW2yYc71sSiBX45R1mLGLte8HeYntB2/4JNGgGUgQU3eC0I3jHk42ubJ P+9yV+nk98/tvbEisDEQEZ6ZASu//Ezbi623/McMN39yZ9iOqVe1iuWl0os0uayA sKaHPZF6fNKsDzBAzaPrat8lU3sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI2nvS+1PySR+288kxnvNHSZYQ5QMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iOGY5ZTg3ZC1lNTA5LTQ3YmEtYmU5ZC04OTU1NmY1MzBlYTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4ZjllODdk LWU1MDktNDdiYS1iZTlkLTg5NTU2ZjUzMGVhOC8wLzhEQTdCRDJGQjUzRjI0OTFG QjZGM0M5MzE5RUYzNDc0OTk2MTBFNTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnp0YwDQYJKoZIhvcNAQELBQADggEBACW4i4of8ZCkRXqEfZ1fLG+dRFz7tDSm 3AMOChR55FH0dHUtvMadCRECeN0TeVBAmdWtHYpJVeN1VXqufenM2jLHWDCP8G2J OunUc/qbLfiari+nOCDLZFbBIamhkY1YTBlkfr1htlbzOn3GS6MgFOmjQu4zxDJ6 GRBq2fNyTHk7yDrHO4cwkxK+Y63PVrXqNoxpP7VN5Jg/rl+SyfKqZfPU4J8rBR4i wKtS+6V01HWFI0DM1AWCmv1+co/4N69B6AstJAKkp8/WcAe/28yzeTRFebHfKBYL cMQo4dFisIT+pBq3WGLg3OpGnYKdJhqO5lGcyagstw4VHLSQkHupcUY= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:24 2024 by rpki-client on console-ams.rpki-client.org