$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer File: 8F58893B1CE1DB8555D7BECB63DE342D238B6779.cer (raw, json) Hash identifier: yzUEdoRoHlw2mxlL09eVGVyWFo5oz/j6Cm1b5f/jKB4= Subject key identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5900C4E357737BB2EA866CC79D6A33D0359020DA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.mft caRepository: rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 29 Sep 2024 01:54:10 +0000 Certificate not after: Sun 28 Sep 2025 01:59:10 +0000 Subordinate resources: IP: 103.150.148.0/23 IP: 2406:540::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:00:c4:e3:57:73:7b:b2:ea:86:6c:c7:9d:6a:33:d0:35:90:20:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 29 01:54:10 2024 GMT Not After : Sep 28 01:59:10 2025 GMT Subject: CN=8F58893B1CE1DB8555D7BECB63DE342D238B6779 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:71:e5:d7:f0:3f:91:ce:72:88:18:e2:a6:63: 51:8a:14:ac:de:08:80:8f:d5:9f:0a:71:aa:a0:f5: 82:4f:01:11:d4:70:8a:f3:f6:4a:2b:10:f9:16:15: 15:fd:fb:b2:d6:fe:d8:26:3d:c5:c0:2e:cc:a4:7c: 54:22:08:e7:d8:cd:d3:8e:9e:70:b8:4b:fb:fd:06: 68:fd:4c:43:1a:4a:8f:83:76:e6:2c:ca:08:58:5d: 4d:57:f3:f7:df:83:fb:3c:a8:b2:8d:a7:40:0d:3a: 9d:ec:3c:55:cc:f4:05:fd:af:a7:2a:84:99:03:74: 3f:9f:3e:72:76:df:a3:88:3e:fa:9a:89:72:b8:7b: f7:57:1d:31:9d:3b:24:65:17:16:e4:dc:81:f5:46: f8:13:cc:16:06:38:fd:bb:39:f2:9b:0f:18:c8:e1: 7e:6c:50:90:b1:a5:fe:6f:2b:69:d0:99:5b:aa:a5: 48:d0:cf:26:a7:08:77:a2:9d:38:c3:31:39:30:e2: c3:0f:d9:3d:e5:6c:07:32:72:94:5f:75:65:26:c8: bb:35:de:f3:23:65:d2:a4:78:e9:4d:76:1b:00:4e: 4c:6f:1c:c0:b8:e9:b9:4d:52:a5:e0:21:5b:b6:c1: 8b:b4:7b:06:44:52:b2:66:3a:f5:10:14:14:54:85: 31:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8F:58:89:3B:1C:E1:DB:85:55:D7:BE:CB:63:DE:34:2D:23:8B:67:79 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1bde936b-53cf-4b08-b5f7-2b90de21fe94/0/8F58893B1CE1DB8555D7BECB63DE342D238B6779.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.150.148.0/23 IPv6: 2406:540::/32 Signature Algorithm: sha256WithRSAEncryption 8e:1d:e9:ff:da:7c:38:94:e6:a1:09:8c:1e:f3:00:2b:ea:bb: cf:08:e6:eb:83:8a:ab:87:4e:e9:4b:d1:4a:e1:cd:fe:87:5a: 8d:64:31:18:30:e6:6f:ac:d7:0e:fd:95:d0:fc:15:a2:5f:2f: cc:b9:44:81:c8:f1:c9:fa:07:46:07:8e:99:8b:88:c3:3d:1d: e6:77:b8:4c:09:9a:4a:ec:4d:b0:0e:b4:64:26:b4:f9:4c:66: 6c:34:ef:80:6c:59:76:2b:91:9e:9e:63:4c:3c:66:9a:4b:f2: 86:42:59:23:47:81:f9:d4:c3:ef:8d:45:bf:fe:11:a4:f8:4b: 46:fd:db:29:ed:8e:c2:1b:a2:72:57:73:b8:67:2b:8e:fd:a8: c6:ec:f8:99:e3:f3:ef:ce:e3:dd:18:6a:da:27:bf:13:40:6a: 19:23:e3:87:3b:1f:d1:f7:4b:45:2f:8a:83:79:d2:66:55:bf: aa:00:18:89:b2:ab:7b:25:ee:92:db:0e:0c:af:8c:f1:f8:32: b9:1c:6c:6a:ac:5c:e7:02:2b:80:dd:ea:ef:13:01:b7:39:e6: 72:d5:82:69:06:05:68:a5:d6:4c:66:0d:94:bf:09:ad:8c:18: 90:2b:d6:fb:ac:b4:d8:4e:3e:45:4b:f8:5a:6d:42:10:ff:13: 33:07:18:24 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUWQDE41dze7LqhmzHnWoz0DWQINowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDkyOTAxNTQxMFoX DTI1MDkyODAxNTkxMFowMzExMC8GA1UEAxMoOEY1ODg5M0IxQ0UxREI4NTU1RDdC RUNCNjNERTM0MkQyMzhCNjc3OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9x5dfwP5HOcogY4qZjUYoUrN4IgI/VnwpxqqD1gk8BEdRwivP2SisQ+RYV Ff37stb+2CY9xcAuzKR8VCII59jN046ecLhL+/0GaP1MQxpKj4N25izKCFhdTVfz 99+D+zyoso2nQA06new8Vcz0Bf2vpyqEmQN0P58+cnbfo4g++pqJcrh791cdMZ07 JGUXFuTcgfVG+BPMFgY4/bs58psPGMjhfmxQkLGl/m8radCZW6qlSNDPJqcId6Kd OMMxOTDiww/ZPeVsBzJylF91ZSbIuzXe8yNl0qR46U12GwBOTG8cwLjpuU1SpeAh W7bBi7R7BkRSsmY69RAUFFSFMUUCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI9YiTsc4duFVde+y2PeNC0ji2d5MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xYmRlOTM2Yi01M2NmLTRiMDgtYjVmNy0yYjkwZGUyMWZlOTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGU5MzZi LTUzY2YtNGIwOC1iNWY3LTJiOTBkZTIxZmU5NC8wLzhGNTg4OTNCMUNFMURCODU1 NUQ3QkVDQjYzREUzNDJEMjM4QjY3NzkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnlpQwDQQCAAIwBwMFACQGBUAwDQYJKoZIhvcNAQELBQADggEBAI4d6f/afDiU 5qEJjB7zACvqu88I5uuDiquHTulL0Urhzf6HWo1kMRgw5m+s1w79ldD8FaJfL8y5 RIHI8cn6B0YHjpmLiMM9HeZ3uEwJmkrsTbAOtGQmtPlMZmw074BsWXYrkZ6eY0w8 ZppL8oZCWSNHgfnUw++NRb/+EaT4S0b92yntjsIbonJXc7hnK479qMbs+Jnj8+/O 490YatonvxNAahkj44c7H9H3S0UvioN50mZVv6oAGImyq3sl7pLbDgyvjPH4Mrkc bGqsXOcCK4Dd6u8TAbc55nLVgmkGBWil1kxmDZS/Ca2MGJAr1vustNhOPkVL+Fpt QhD/EzMHGCQ= -----END CERTIFICATE-----Generated at Fri Nov 22 11:14:21 2024 by rpki-client on console-fra.rpki-client.org