$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8DAFDBD814B60F568505D65130E4661FCD7D665F.cer File: 8DAFDBD814B60F568505D65130E4661FCD7D665F.cer (raw, json) Hash identifier: OWppNuDmpS28lmKivf4zOV37LoB+VtwhSBaamrTFqTQ= Subject key identifier: 8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5914944E23A0AF02BD81C73B219E0C0124D405B4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.mft caRepository: rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 23 Jan 2024 14:52:53 +0000 Certificate not after: Tue 21 Jan 2025 14:57:53 +0000 Subordinate resources: IP: 103.168.190.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:14:94:4e:23:a0:af:02:bd:81:c7:3b:21:9e:0c:01:24:d4:05:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 23 14:52:53 2024 GMT Not After : Jan 21 14:57:53 2025 GMT Subject: CN=8DAFDBD814B60F568505D65130E4661FCD7D665F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b6:c3:8b:f2:70:ff:df:10:7a:44:c6:a8:1f: 43:7b:11:2c:71:d3:d3:44:08:3b:93:a9:3a:a9:93: c7:37:10:ea:f1:12:f3:7f:dc:63:1a:80:d6:d3:90: 01:8a:e7:ea:8b:a5:0f:e3:80:84:ac:d8:bb:d9:6e: 59:08:e0:ae:18:60:a6:53:36:92:01:c6:f1:7a:91: 97:b3:79:6f:d5:71:c9:15:8e:5c:bc:bd:88:1c:cf: 6f:e5:96:77:e4:1a:0f:f1:b3:a9:d5:fc:80:c8:2d: d1:ee:4c:c1:0f:e1:64:ac:3a:d3:49:f5:c4:72:bb: 70:e5:64:1a:77:a4:f5:66:20:b9:9e:b7:4c:73:4f: 95:aa:a9:b2:0a:b9:82:57:07:c6:79:67:42:2a:c4: 43:f3:0c:83:fb:ea:36:72:ed:3a:7b:59:6a:0d:28: 82:14:52:00:d0:dd:e8:6f:b8:13:b6:20:d0:b2:8d: 32:9c:73:5c:ca:fe:97:58:fa:69:ea:54:32:a0:c1: 04:51:e7:ad:59:ab:23:0e:1d:a9:40:e7:15:7e:3a: b1:d6:79:fc:aa:8b:51:3e:86:a8:ae:87:77:b8:be: aa:83:6a:85:a3:88:06:d0:cd:4d:27:47:ff:93:59: ea:f8:9b:2a:32:05:5d:1a:09:bf:fa:f5:1d:5f:64: 7e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8D:AF:DB:D8:14:B6:0F:56:85:05:D6:51:30:E4:66:1F:CD:7D:66:5F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6e9b0bad-66b9-4f28-a7c5-e9a9fe120ad7/0/8DAFDBD814B60F568505D65130E4661FCD7D665F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.190.0/24 Signature Algorithm: sha256WithRSAEncryption 95:0d:d2:cb:d9:6e:5e:89:65:2b:1d:57:f9:dc:b2:25:82:4c: 90:e4:95:1b:56:12:5c:33:e8:6f:3f:44:16:8b:cf:60:57:45: 0b:f8:ea:1c:50:9a:24:59:aa:aa:41:2f:8a:6b:43:fd:36:f1: c7:0e:77:17:73:22:53:0b:f4:17:43:34:f5:40:9e:69:63:86: ee:1a:86:88:f1:50:49:1f:92:43:52:6e:e1:fc:33:b4:06:f4: 66:08:2a:1e:f2:a4:e0:85:73:ce:2e:0f:ee:60:30:29:97:26: 93:5c:a5:66:08:07:58:e4:ff:e3:dc:9e:52:68:6d:bf:5f:32: 1a:5e:8a:fb:db:3d:75:8a:df:5e:02:de:df:7b:bc:69:b7:f4: 9d:f7:3d:63:a7:fa:4c:65:5f:8d:ec:8e:4d:85:80:d9:70:5d: 56:5f:1c:6f:e8:51:4b:e8:5e:12:32:61:23:aa:ef:e6:5d:ff: 94:e3:0e:dd:d1:e3:2a:ba:da:a6:ee:5d:3c:bb:ac:23:dc:ce: 69:b9:a4:e1:e9:85:52:0b:c3:b6:bd:64:6a:d3:68:53:d3:64: 52:47:cc:ba:ef:3a:ab:20:8c:25:01:27:26:72:68:7a:80:3c: b4:83:cd:18:15:24:a4:29:a1:ce:dd:38:10:d4:7d:40:b1:a6: 4c:9d:8b:fc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWRSUTiOgrwK9gcc7IZ4MASTUBbQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEyMzE0NTI1M1oX DTI1MDEyMTE0NTc1M1owMzExMC8GA1UEAxMoOERBRkRCRDgxNEI2MEY1Njg1MDVE NjUxMzBFNDY2MUZDRDdENjY1RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKq2w4vycP/fEHpExqgfQ3sRLHHT00QIO5OpOqmTxzcQ6vES83/cYxqA1tOQ AYrn6oulD+OAhKzYu9luWQjgrhhgplM2kgHG8XqRl7N5b9VxyRWOXLy9iBzPb+WW d+QaD/GzqdX8gMgt0e5MwQ/hZKw600n1xHK7cOVkGnek9WYguZ63THNPlaqpsgq5 glcHxnlnQirEQ/MMg/vqNnLtOntZag0oghRSANDd6G+4E7Yg0LKNMpxzXMr+l1j6 aepUMqDBBFHnrVmrIw4dqUDnFX46sdZ5/KqLUT6GqK6Hd7i+qoNqhaOIBtDNTSdH /5NZ6vibKjIFXRoJv/r1HV9kfn0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI2v29gUtg9WhQXWUTDkZh/NfWZfMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82ZTliMGJhZC02NmI5LTRmMjgtYTdjNS1lOWE5ZmUxMjBhZDcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZlOWIwYmFk LTY2YjktNGYyOC1hN2M1LWU5YTlmZTEyMGFkNy8wLzhEQUZEQkQ4MTRCNjBGNTY4 NTA1RDY1MTMwRTQ2NjFGQ0Q3RDY2NUYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnqL4wDQYJKoZIhvcNAQELBQADggEBAJUN0svZbl6JZSsdV/ncsiWCTJDklRtW Elwz6G8/RBaLz2BXRQv46hxQmiRZqqpBL4prQ/028ccOdxdzIlML9BdDNPVAnmlj hu4ahojxUEkfkkNSbuH8M7QG9GYIKh7ypOCFc84uD+5gMCmXJpNcpWYIB1jk/+Pc nlJobb9fMhpeivvbPXWK314C3t97vGm39J33PWOn+kxlX43sjk2FgNlwXVZfHG/o UUvoXhIyYSOq7+Zd/5TjDt3R4yq62qbuXTy7rCPczmm5pOHphVILw7a9ZGrTaFPT ZFJHzLrvOqsgjCUBJyZyaHqAPLSDzRgVJKQpoc7dOBDUfUCxpkydi/w= -----END CERTIFICATE-----Generated at Wed May 8 18:12:11 2024 by rpki-client on console-fra.rpki-client.org