$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8DC2ED0870A005152606E2E6BEB6B6C78A522AF4.cer File: 8DC2ED0870A005152606E2E6BEB6B6C78A522AF4.cer (raw, json) Hash identifier: fFy0xeBm3dRzWQPZ36SnrUkJxwutoZ2xTvU6oHKbApg= Subject key identifier: 8D:C2:ED:08:70:A0:05:15:26:06:E2:E6:BE:B6:B6:C7:8A:52:2A:F4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0A608B9EF8C104F69719FAAC9862E88F1556E511 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/8919b80d-4693-4095-a9e3-412e12828ff2/0/8DC2ED0870A005152606E2E6BEB6B6C78A522AF4.mft caRepository: rsync://repo-rpki.idnic.net/repo/8919b80d-4693-4095-a9e3-412e12828ff2/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 28 Aug 2024 20:27:04 +0000 Certificate not after: Wed 27 Aug 2025 20:32:04 +0000 Subordinate resources: IP: 103.172.30.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:60:8b:9e:f8:c1:04:f6:97:19:fa:ac:98:62:e8:8f:15:56:e5:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 28 20:27:04 2024 GMT Not After : Aug 27 20:32:04 2025 GMT Subject: CN=8DC2ED0870A005152606E2E6BEB6B6C78A522AF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:83:7d:25:81:5c:b7:bd:19:49:b8:44:9c:32: 3e:4a:bc:e0:04:ff:33:2b:d3:6f:f5:ef:28:4e:6f: b9:e9:7c:76:5e:92:3a:f3:af:a1:36:20:50:c0:70: 16:d9:eb:bf:15:2a:b0:24:26:67:a6:ac:4a:1d:8f: 81:c1:7a:ac:30:eb:6b:1a:e8:db:35:92:7a:77:53: 29:3a:ed:2e:7d:38:fd:4d:59:11:be:37:08:af:d0: 9e:fd:19:6f:78:fa:f4:2b:05:8f:80:73:43:2c:b4: d9:04:af:12:a4:92:fe:13:bb:46:af:24:d7:88:5a: 67:42:c7:4c:b7:1a:26:e4:71:52:c4:d9:19:2a:d9: a9:ed:2b:b9:ae:3a:25:63:84:c6:64:16:2a:5e:26: d5:4b:25:8f:b5:17:1d:13:a5:1a:38:97:5b:45:4d: 5f:d6:6a:45:ed:1f:80:bf:1d:e1:6e:bc:24:a0:f0: 47:c9:16:e0:8c:4a:9e:17:d3:a0:df:fb:56:24:20: d5:e0:15:c9:95:04:5a:1e:15:3e:79:64:a0:bb:3b: 6e:36:f3:cc:22:04:60:76:09:0c:88:0b:e3:57:2f: f5:9c:b7:a1:83:bf:4e:25:b0:7d:03:f1:77:3f:d2: c7:c2:c8:fc:34:34:4f:1e:93:f1:55:71:86:cc:c2: 05:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8D:C2:ED:08:70:A0:05:15:26:06:E2:E6:BE:B6:B6:C7:8A:52:2A:F4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/8919b80d-4693-4095-a9e3-412e12828ff2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/8919b80d-4693-4095-a9e3-412e12828ff2/0/8DC2ED0870A005152606E2E6BEB6B6C78A522AF4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.30.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:90:21:2e:ce:42:dc:b3:32:6b:ff:4f:51:82:14:ff:c2:41: e5:5b:98:f2:b3:3c:20:7e:a1:72:7b:86:2e:99:bb:dc:0f:54: f3:4e:9e:34:49:3a:3c:f8:5b:9a:5b:0e:9b:98:0e:e2:de:e5: 12:ee:c5:0d:47:a3:c2:3c:b5:70:ed:4c:a8:cc:55:b1:8e:34: d6:2e:ba:6c:74:de:4e:52:25:e3:92:9d:68:d3:ef:52:83:23: 56:04:77:5e:29:65:00:bc:b6:5a:e0:26:07:67:cf:8c:e8:b8: 3d:f8:80:91:9e:ba:a1:37:02:1c:ce:99:57:a2:8c:8e:7d:eb: 0e:83:a9:73:0e:9a:7d:32:19:38:3c:73:55:c9:f8:ad:58:6e: 55:95:1e:eb:df:26:7a:1b:3d:20:de:51:d5:14:03:96:17:cd: 58:5d:7b:86:66:f4:69:4d:99:55:0b:19:63:62:a2:7c:ae:26: 52:dd:50:9f:e5:1e:a6:2e:01:0d:ef:27:c0:ed:d0:1e:ef:e5: 7e:32:e3:4f:9e:82:a4:78:75:4b:fa:3f:6d:e8:94:2c:0e:65: 2a:b7:69:71:e0:6a:44:a9:f8:47:e3:66:57:f0:3d:fb:99:96: 10:f1:3d:ac:95:a2:cb:69:4a:f0:27:d0:6f:5a:a6:ea:4e:a1: 8e:f0:a1:62 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCmCLnvjBBPaXGfqsmGLojxVW5REwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgyODIwMjcwNFoX DTI1MDgyNzIwMzIwNFowMzExMC8GA1UEAxMoOERDMkVEMDg3MEEwMDUxNTI2MDZF MkU2QkVCNkI2Qzc4QTUyMkFGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyDfSWBXLe9GUm4RJwyPkq84AT/MyvTb/XvKE5vuel8dl6SOvOvoTYgUMBw FtnrvxUqsCQmZ6asSh2PgcF6rDDraxro2zWSendTKTrtLn04/U1ZEb43CK/Qnv0Z b3j69CsFj4BzQyy02QSvEqSS/hO7Rq8k14haZ0LHTLcaJuRxUsTZGSrZqe0rua46 JWOExmQWKl4m1Uslj7UXHROlGjiXW0VNX9ZqRe0fgL8d4W68JKDwR8kW4IxKnhfT oN/7ViQg1eAVyZUEWh4VPnlkoLs7bjbzzCIEYHYJDIgL41cv9Zy3oYO/TiWwfQPx dz/Sx8LI/DQ0Tx6T8VVxhszCBUcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI3C7QhwoAUVJgbi5r62tseKUir0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84OTE5YjgwZC00NjkzLTQwOTUtYTllMy00MTJlMTI4MjhmZjIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg5MTliODBk LTQ2OTMtNDA5NS1hOWUzLTQxMmUxMjgyOGZmMi8wLzhEQzJFRDA4NzBBMDA1MTUy NjA2RTJFNkJFQjZCNkM3OEE1MjJBRjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnrB4wDQYJKoZIhvcNAQELBQADggEBAJqQIS7OQtyzMmv/T1GCFP/CQeVbmPKz PCB+oXJ7hi6Zu9wPVPNOnjRJOjz4W5pbDpuYDuLe5RLuxQ1Ho8I8tXDtTKjMVbGO NNYuumx03k5SJeOSnWjT71KDI1YEd14pZQC8tlrgJgdnz4zouD34gJGeuqE3AhzO mVeijI596w6DqXMOmn0yGTg8c1XJ+K1YblWVHuvfJnobPSDeUdUUA5YXzVhde4Zm 9GlNmVULGWNionyuJlLdUJ/lHqYuAQ3vJ8Dt0B7v5X4y40+egqR4dUv6P23olCwO ZSq3aXHgakSp+EfjZlfwPfuZlhDxPayVostpSvAn0G9apupOoY7woWI= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:21 2024 by rpki-client on console-fra.rpki-client.org