$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/923816C042C964B6465A7BA06B2D44BDAF28D827.cer File: 923816C042C964B6465A7BA06B2D44BDAF28D827.cer (raw, json) Hash identifier: e2fJaGDL6pGCgyM73aUcbiapGOnIne+k4m6XwOPjuas= Subject key identifier: 92:38:16:C0:42:C9:64:B6:46:5A:7B:A0:6B:2D:44:BD:AF:28:D8:27 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 72A0A82E89A0FEAB1196B3DF4BC0C9DA39509914 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/923816C042C964B6465A7BA06B2D44BDAF28D827.mft caRepository: rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 26 Apr 2024 08:09:22 +0000 Certificate not after: Fri 25 Apr 2025 08:14:22 +0000 Subordinate resources: IP: 103.189.58.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a0:a8:2e:89:a0:fe:ab:11:96:b3:df:4b:c0:c9:da:39:50:99:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 26 08:09:22 2024 GMT Not After : Apr 25 08:14:22 2025 GMT Subject: CN=923816C042C964B6465A7BA06B2D44BDAF28D827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:b8:2c:43:e5:fb:c8:31:51:29:8d:5f:9a:b2: d6:08:b1:79:60:8d:82:84:1f:a7:f8:81:bd:58:70: d7:fb:8f:ed:5b:a6:d5:a7:a3:37:3d:83:2c:dc:b2: 51:9d:ef:5d:d9:67:61:18:df:e8:98:4f:47:26:56: 35:12:8c:c5:be:07:00:83:93:d4:d8:72:12:e6:7d: 1e:c7:0e:b7:27:aa:a9:8b:af:fc:04:b5:7a:72:60: 5a:1e:78:c2:14:83:6c:32:2c:90:44:fd:4e:c3:6c: b8:2e:7c:a6:2f:d6:b0:b5:44:c4:05:12:65:18:2a: 2d:cc:be:93:d4:c3:e9:5f:6b:7f:62:a5:7c:6a:49: 1f:aa:51:0d:e8:11:e5:c1:a3:c3:eb:55:78:16:96: d9:55:8b:9f:06:90:c9:c3:34:5e:11:2e:29:37:cb: cd:20:0a:52:b9:a6:1d:1e:e5:53:fe:27:4f:af:6a: d3:2a:e3:5c:e8:b1:c6:cb:bc:8a:29:e0:53:b2:5f: d8:01:e3:d1:fa:3a:12:61:cd:21:c3:19:1d:be:dc: e6:69:2f:55:e6:85:9f:25:4e:12:fe:00:45:6e:f5: 39:ef:21:12:85:12:e0:89:6b:2a:1a:d6:ac:70:28: 11:da:56:6a:30:b9:4e:6d:a4:6d:d1:53:2c:93:3f: da:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 92:38:16:C0:42:C9:64:B6:46:5A:7B:A0:6B:2D:44:BD:AF:28:D8:27 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/137dfb88-fb50-48d1-b90d-e525102f4f5e/0/923816C042C964B6465A7BA06B2D44BDAF28D827.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.58.0/23 Signature Algorithm: sha256WithRSAEncryption 0f:a0:5c:23:73:42:90:4f:d2:0c:60:e5:28:3b:fe:09:c6:bf: 66:60:2f:63:80:7a:bb:d7:47:05:00:db:c8:2e:55:1c:52:87: 51:44:d5:a3:78:80:53:de:9a:94:7b:25:88:b8:62:af:28:5c: 65:bb:28:dd:3d:03:03:6a:68:0f:95:d6:b9:4c:c6:4c:1f:38: 36:0d:5a:6a:92:9b:a0:ac:f6:ff:9e:bf:27:b6:55:43:51:b3: 9e:dd:fd:1c:17:1e:2e:81:81:a1:8a:01:90:55:d4:11:fe:ec: cb:b6:bd:e2:72:7c:c6:50:b1:bc:42:64:f3:f4:c1:48:45:50: a5:ea:95:1c:19:be:f9:2e:d0:3f:ed:ce:0e:14:38:ef:49:30: ba:aa:4e:ac:c1:2e:29:43:24:b4:81:3c:48:9c:05:2e:ca:c2: 89:94:ab:00:3e:9f:91:5d:e8:15:f8:f5:6c:a8:bf:c7:12:57: dc:c5:d8:4b:47:5a:6a:68:9c:20:fe:a9:77:e9:58:3c:8b:ba: ac:6b:ac:29:4e:9c:e6:68:62:ed:fe:f2:ea:4f:4e:e9:97:a7: 72:6b:2f:e7:3a:1f:32:bb:fe:12:ee:62:49:1f:06:2e:1e:34: e7:a4:93:e0:61:8c:f6:49:d5:03:44:5d:b6:8d:a3:81:49:af: 8d:61:a1:c3 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUcqCoLomg/qsRlrPfS8DJ2jlQmRQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNjA4MDkyMloX DTI1MDQyNTA4MTQyMlowMzExMC8GA1UEAxMoOTIzODE2QzA0MkM5NjRCNjQ2NUE3 QkEwNkIyRDQ0QkRBRjI4RDgyNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMK4LEPl+8gxUSmNX5qy1gixeWCNgoQfp/iBvVhw1/uP7Vum1aejNz2DLNyy UZ3vXdlnYRjf6JhPRyZWNRKMxb4HAIOT1NhyEuZ9HscOtyeqqYuv/AS1enJgWh54 whSDbDIskET9TsNsuC58pi/WsLVExAUSZRgqLcy+k9TD6V9rf2KlfGpJH6pRDegR 5cGjw+tVeBaW2VWLnwaQycM0XhEuKTfLzSAKUrmmHR7lU/4nT69q0yrjXOixxsu8 iingU7Jf2AHj0fo6EmHNIcMZHb7c5mkvVeaFnyVOEv4ARW71Oe8hEoUS4IlrKhrW rHAoEdpWajC5Tm2kbdFTLJM/2nkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJI4FsBCyWS2Rlp7oGstRL2vKNgnMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xMzdkZmI4OC1mYjUwLTQ4ZDEtYjkwZC1lNTI1MTAyZjRmNWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEzN2RmYjg4 LWZiNTAtNDhkMS1iOTBkLWU1MjUxMDJmNGY1ZS8wLzkyMzgxNkMwNDJDOTY0QjY0 NjVBN0JBMDZCMkQ0NEJEQUYyOEQ4MjcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvTowDQYJKoZIhvcNAQELBQADggEBAA+gXCNzQpBP0gxg5Sg7/gnGv2ZgL2OA ervXRwUA28guVRxSh1FE1aN4gFPempR7JYi4Yq8oXGW7KN09AwNqaA+V1rlMxkwf ODYNWmqSm6Cs9v+evye2VUNRs57d/RwXHi6BgaGKAZBV1BH+7Mu2veJyfMZQsbxC ZPP0wUhFUKXqlRwZvvku0D/tzg4UOO9JMLqqTqzBLilDJLSBPEicBS7KwomUqwA+ n5Fd6BX49Wyov8cSV9zF2EtHWmponCD+qXfpWDyLuqxrrClOnOZoYu3+8upPTumX p3JrL+c6HzK7/hLuYkkfBi4eNOekk+BhjPZJ1QNEXbaNo4FJr41hocM= -----END CERTIFICATE-----Generated at Thu May 9 00:29:13 2024 by rpki-client on console-ams.rpki-client.org