$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer File: 8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.cer (raw, json) Hash identifier: wdtQ9rKGJqSTj8TIjeXbZI4gYGtHhx2Rt6eaJsHk+sY= Subject key identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 41BEE65C5367D3F2539BAB15A6238C6271B1A79D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft caRepository: rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 02 Mar 2024 15:02:18 +0000 Certificate not after: Sat 01 Mar 2025 15:07:18 +0000 Subordinate resources: IP: 103.138.116.0/23 IP: 2404:cac0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:be:e6:5c:53:67:d3:f2:53:9b:ab:15:a6:23:8c:62:71:b1:a7:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 2 15:02:18 2024 GMT Not After : Mar 1 15:07:18 2025 GMT Subject: CN=8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c9:12:fb:1a:af:9b:12:89:d1:58:d9:33:7c: 5c:a7:95:45:ce:24:81:4a:68:ae:2c:86:7b:05:02: e6:d5:fd:eb:7e:38:cf:b9:ea:23:40:84:89:55:e0: 35:a9:ec:4e:d3:30:b9:f6:4f:92:41:f3:37:8c:5b: 53:7f:a9:27:cc:8c:19:6d:c4:2a:f1:cf:9f:0d:39: 82:b5:98:97:00:bc:e3:68:7b:1d:ec:37:60:7a:3b: c7:96:8c:3c:bc:ac:0d:29:ad:d8:a2:7d:1d:2a:25: ae:8b:16:89:f9:6b:c2:f1:bd:58:7b:fa:00:61:65: 58:6b:d3:fb:66:70:a4:b8:51:fc:87:81:9f:f7:63: 5d:f6:9c:e9:96:cf:8c:ad:9a:bb:56:bf:ef:35:fb: 65:4a:3a:51:7a:a1:ea:be:ed:f4:66:2d:d9:c7:29: ce:2f:e3:02:9d:d9:57:46:ca:df:44:2d:10:b2:43: 1b:9d:17:c3:0a:0c:b1:69:93:17:65:56:a5:14:a3: 91:be:f7:f3:a7:ae:bc:8e:d6:1f:bc:fb:54:a7:32: ea:0b:61:6d:be:92:1e:18:6b:63:31:14:04:41:11: b5:32:73:87:15:e7:b2:21:07:5b:98:c4:45:b6:8b: 19:4a:5a:d7:53:7a:9f:7c:ce:a8:db:c8:92:68:39: 2d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 8F:C4:89:9C:A3:D6:12:A4:5C:1C:1D:C0:2A:21:F6:33:72:DA:ED:D6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e5413ff4-202b-4999-b45d-73c972f10116/0/8FC4899CA3D612A45C1C1DC02A21F63372DAEDD6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.138.116.0/23 IPv6: 2404:cac0::/32 Signature Algorithm: sha256WithRSAEncryption 08:f8:13:07:34:6b:17:e5:ac:f1:c2:0d:1a:44:e8:53:76:63: 75:4d:6c:e6:8d:64:2e:e4:0b:fe:1e:d7:42:6a:a3:f6:35:f3: 72:7d:54:40:c6:77:21:9c:54:44:e2:1b:b4:11:35:bd:5b:14: 48:ce:72:d1:92:c9:e8:d4:97:5b:14:3f:9f:7c:94:a6:39:be: 37:b8:83:e0:f6:1c:a3:c4:15:53:24:8f:58:04:3a:41:af:2e: 41:ed:3a:dd:53:04:0a:25:37:f7:8a:df:05:dd:40:79:31:51: 4f:01:c0:53:f5:23:1c:eb:44:57:e3:c0:4b:c7:94:c4:85:0d: 0b:7a:52:cd:71:84:ab:94:31:ca:17:d0:29:05:cb:95:07:f6: 34:27:b2:76:45:01:11:32:26:97:f8:82:ea:84:02:b4:0c:0b: c1:c5:3b:84:a1:6e:a6:22:f6:cd:1e:a0:5b:dd:65:c3:8a:23: 41:f7:84:2c:82:e0:4a:78:11:b8:cc:16:06:2c:92:48:82:ad: 78:eb:59:c9:c2:d5:83:da:a6:95:fa:1f:38:7f:29:0d:41:ea: 28:d1:30:22:0f:02:2b:ce:08:51:22:0e:3b:93:66:6e:92:c0: e8:3c:85:69:ed:04:1c:66:66:ec:94:34:cf:b1:f6:2f:84:35: 8c:b2:4e:1c -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUQb7mXFNn0/JTm6sVpiOMYnGxp50wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwMjE1MDIxOFoX DTI1MDMwMTE1MDcxOFowMzExMC8GA1UEAxMoOEZDNDg5OUNBM0Q2MTJBNDVDMUMx REMwMkEyMUY2MzM3MkRBRURENjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK7JEvsar5sSidFY2TN8XKeVRc4kgUporiyGewUC5tX96344z7nqI0CEiVXg NansTtMwufZPkkHzN4xbU3+pJ8yMGW3EKvHPnw05grWYlwC842h7Hew3YHo7x5aM PLysDSmt2KJ9HSolrosWiflrwvG9WHv6AGFlWGvT+2ZwpLhR/IeBn/djXfac6ZbP jK2au1a/7zX7ZUo6UXqh6r7t9GYt2ccpzi/jAp3ZV0bK30QtELJDG50XwwoMsWmT F2VWpRSjkb7386euvI7WH7z7VKcy6gthbb6SHhhrYzEUBEERtTJzhxXnsiEHW5jE RbaLGUpa11N6n3zOqNvIkmg5LeMCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFI/EiZyj1hKkXBwdwCoh9jNy2u3WMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNTQxM2ZmNC0yMDJiLTQ5OTktYjQ1ZC03M2M5NzJmMTAxMTYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1NDEzZmY0 LTIwMmItNDk5OS1iNDVkLTczYzk3MmYxMDExNi8wLzhGQzQ4OTlDQTNENjEyQTQ1 QzFDMURDMDJBMjFGNjMzNzJEQUVERDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFninQwDQQCAAIwBwMFACQEysAwDQYJKoZIhvcNAQELBQADggEBAAj4Ewc0axfl rPHCDRpE6FN2Y3VNbOaNZC7kC/4e10Jqo/Y183J9VEDGdyGcVETiG7QRNb1bFEjO ctGSyejUl1sUP598lKY5vje4g+D2HKPEFVMkj1gEOkGvLkHtOt1TBAolN/eK3wXd QHkxUU8BwFP1IxzrRFfjwEvHlMSFDQt6Us1xhKuUMcoX0CkFy5UH9jQnsnZFAREy Jpf4guqEArQMC8HFO4ShbqYi9s0eoFvdZcOKI0H3hCyC4Ep4EbjMFgYskkiCrXjr WcnC1YPappX6Hzh/KQ1B6ijRMCIPAivOCFEiDjuTZm6SwOg8hWntBBxmZuyUNM+x 9i+ENYyyThw= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:44 2024 by rpki-client on console-ams.rpki-client.org