$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer File: 8FB177AE83526D713C1240D5CEFAF73844F7F4E5.cer (raw, json) Hash identifier: EMNZNLkztPJBPW08qIuVp6Q6re2nii0Q7+Jx84DlZGA= Subject key identifier: 8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1659D2CD65D22FC4AE2E697EFA8280AB8079D8A3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.mft caRepository: rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Jul 2024 02:07:42 +0000 Certificate not after: Tue 01 Jul 2025 02:12:42 +0000 Subordinate resources: IP: 43.229.20.0/22 IP: 103.24.148.0/22 IP: 202.150.128.0/19 IP: 2401:e480::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:59:d2:cd:65:d2:2f:c4:ae:2e:69:7e:fa:82:80:ab:80:79:d8:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Jul 2 02:07:42 2024 GMT Not After : Jul 1 02:12:42 2025 GMT Subject: CN=8FB177AE83526D713C1240D5CEFAF73844F7F4E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:a5:e5:41:20:b6:1d:c3:f5:06:75:96:1b:25: f3:35:4a:57:3e:dd:fa:ce:5e:19:c5:ba:84:67:03: 2f:62:63:ac:4d:31:a9:96:6f:22:37:52:6c:b7:4b: 44:79:26:e9:bd:3f:f0:bf:e4:ee:dd:7f:7a:c5:db: 79:a3:e2:51:ce:e4:25:53:97:0f:c6:67:4c:82:7b: 8f:f3:c1:80:6a:90:60:2f:fe:b2:6f:1b:05:8d:9f: 78:51:a6:3d:b0:f6:db:f4:9c:7f:db:89:3b:f7:a1: 4d:27:7f:b1:07:30:65:d7:4e:e9:5d:6a:61:52:ff: 88:5e:9c:59:3a:48:13:dc:db:cb:c7:12:be:27:ea: 69:50:9f:04:05:e5:f3:b3:ba:08:42:ad:32:d4:d3: 24:a8:9c:54:0c:a2:eb:63:28:e9:54:1c:c4:6b:52: 00:0d:00:70:f5:d3:d7:94:22:32:8b:f3:98:b4:6b: e5:bb:c0:e6:ca:c5:16:e7:73:56:47:f2:4f:b3:76: 2f:0a:06:57:a5:06:8b:39:de:8e:5d:bc:ff:ff:c1: 62:3c:cf:18:59:2e:2f:a1:de:c2:37:69:3f:d4:c0: cd:ff:f0:e3:e3:8f:50:cb:57:83:fd:d3:9d:fd:00: f7:51:77:b1:45:41:07:29:88:fe:85:8b:49:ac:b2: ac:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8F:B1:77:AE:83:52:6D:71:3C:12:40:D5:CE:FA:F7:38:44:F7:F4:E5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2b69822c-2e22-48be-8ba2-634f582c2ecb/0/8FB177AE83526D713C1240D5CEFAF73844F7F4E5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.229.20.0/22 103.24.148.0/22 202.150.128.0/19 IPv6: 2401:e480::/32 Signature Algorithm: sha256WithRSAEncryption 5c:c5:54:67:0d:f9:00:b0:27:ad:1d:e0:64:41:ff:ba:ea:0b: 66:fd:af:93:17:42:f0:b2:23:ab:8c:06:69:fb:47:c7:f4:02: 9d:39:fa:48:43:7b:83:4d:82:64:d4:2f:5b:b6:57:95:8d:dd: 92:56:11:e9:68:52:76:98:bc:69:e9:83:c5:06:db:36:8a:2a: 50:cb:43:cb:68:5d:31:6b:81:3d:d8:ba:07:f1:da:bf:09:80: d9:61:60:5e:25:a7:b7:ba:7c:f9:73:99:39:7e:78:5a:6d:59: 03:fb:ec:12:36:fe:ed:e9:48:15:9f:f6:63:34:0d:04:8f:26: aa:ff:f3:b3:13:7f:88:ee:9b:76:58:1c:69:ed:47:c2:1b:ed: a4:f4:5c:15:ce:f6:23:34:56:ed:ae:5a:8b:71:68:78:32:e7: 5a:c8:b7:6d:e9:9d:1a:d1:d5:ee:2b:3f:28:50:77:82:bf:9a: 2a:50:35:eb:56:53:4b:9e:d2:c7:c2:e7:cd:0d:8c:2e:e7:1c: 71:fb:2c:1d:19:60:90:84:20:8d:24:48:18:0d:dc:0d:0f:8c: 19:ab:30:8a:46:f5:62:eb:d5:71:f4:5b:d7:b8:f3:bc:be:f0: f0:d3:20:99:1e:fa:f2:8e:41:f6:be:16:00:e4:8b:38:ba:41: 79:5a:db:8d -----BEGIN CERTIFICATE----- MIIF4DCCBMigAwIBAgIUFlnSzWXSL8SuLml++oKAq4B52KMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDcwMjAyMDc0MloX DTI1MDcwMTAyMTI0MlowMzExMC8GA1UEAxMoOEZCMTc3QUU4MzUyNkQ3MTNDMTI0 MEQ1Q0VGQUY3Mzg0NEY3RjRFNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPql5UEgth3D9QZ1lhsl8zVKVz7d+s5eGcW6hGcDL2JjrE0xqZZvIjdSbLdL RHkm6b0/8L/k7t1/esXbeaPiUc7kJVOXD8ZnTIJ7j/PBgGqQYC/+sm8bBY2feFGm PbD22/Scf9uJO/ehTSd/sQcwZddO6V1qYVL/iF6cWTpIE9zby8cSvifqaVCfBAXl 87O6CEKtMtTTJKicVAyi62Mo6VQcxGtSAA0AcPXT15QiMovzmLRr5bvA5srFFudz VkfyT7N2LwoGV6UGiznejl28///BYjzPGFkuL6HewjdpP9TAzf/w4+OPUMtXg/3T nf0A91F3sUVBBymI/oWLSayyrA0CAwEAAaOCAtMwggLPMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI+xd66DUm1xPBJA1c769zhE9/TlMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yYjY5ODIyYy0yZTIyLTQ4YmUtOGJhMi02MzRmNTgyYzJlY2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJiNjk4MjJj LTJlMjItNDhiZS04YmEyLTYzNGY1ODJjMmVjYi8wLzhGQjE3N0FFODM1MjZENzEz QzEyNDBENUNFRkFGNzM4NDRGN0Y0RTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwOgYIKwYBBQUHAQcBAf8EKzApMBgEAgABMBID BAIr5RQDBAJnGJQDBAXKloAwDQQCAAIwBwMFACQB5IAwDQYJKoZIhvcNAQELBQAD ggEBAFzFVGcN+QCwJ60d4GRB/7rqC2b9r5MXQvCyI6uMBmn7R8f0Ap05+khDe4NN gmTUL1u2V5WN3ZJWEeloUnaYvGnpg8UG2zaKKlDLQ8toXTFrgT3Yugfx2r8JgNlh YF4lp7e6fPlzmTl+eFptWQP77BI2/u3pSBWf9mM0DQSPJqr/87MTf4jum3ZYHGnt R8Ib7aT0XBXO9iM0Vu2uWotxaHgy51rIt23pnRrR1e4rPyhQd4K/mipQNetWU0ue 0sfC580NjC7nHHH7LB0ZYJCEII0kSBgN3A0PjBmrMIpG9WLr1XH0W9e487y+8PDT IJke+vKOQfa+FgDkizi6QXla240= -----END CERTIFICATE-----Generated at Sun Feb 16 20:50:27 2025 by rpki-client