$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer (raw, json) Hash identifier: sT1apqEht+eRiHVcVELheD0PcECFH4VdEB3KvpQyoeQ= Subject key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 112D58458F78A405E1F4CCD0C7164562015FB90D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft caRepository: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 18 Aug 2024 04:19:29 +0000 Certificate not after: Sun 17 Aug 2025 04:24:29 +0000 Subordinate resources: IP: 103.84.116.0/24 IP: 103.157.55.0/24 IP: 2001:df0:1700::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:2d:58:45:8f:78:a4:05:e1:f4:cc:d0:c7:16:45:62:01:5f:b9:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 18 04:19:29 2024 GMT Not After : Aug 17 04:24:29 2025 GMT Subject: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:34:8a:47:0b:f8:e4:fa:ad:bf:ac:99:7c:5b: b2:33:a7:bb:ba:e1:b5:c1:e1:5f:7c:32:d0:90:88: af:6f:a4:6f:ab:7c:02:75:8e:fa:f3:0c:4d:59:b7: f7:0d:92:7d:e5:03:f1:3d:a9:56:ca:85:5a:ae:f2: 3f:d5:04:d2:0a:88:4d:67:d4:e3:90:7d:c5:52:98: b7:04:f6:2e:70:ef:1d:3e:ed:45:9e:95:9d:f7:b4: f6:79:ce:ca:4c:4c:1c:9b:f1:7f:03:83:35:ea:0e: 06:8c:2a:80:a3:66:60:0c:93:a4:d7:3d:7f:0c:98: 89:41:80:ae:96:99:75:2f:1c:b5:d2:96:87:e0:b4: 66:19:ac:7a:20:17:9e:13:2c:be:97:62:4d:31:34: 43:95:74:ca:71:43:52:2b:f5:3a:50:a4:93:4a:e0: 75:2e:68:bf:1c:1e:98:4e:4e:ca:5d:e1:ca:07:dd: 76:b6:81:2b:19:99:9d:dc:8c:05:8f:7c:4e:12:2b: e7:1f:30:ba:07:b8:d3:cf:a0:b1:5e:30:42:a6:b2: ec:fb:66:56:a6:b6:55:c0:cc:ba:9e:4b:25:ae:dc: 4b:dd:ce:c9:62:d6:73:ac:29:fc:7b:05:65:68:c1: 91:fc:4e:45:bc:21:fd:68:d2:0d:df:c9:b1:99:38: 36:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.116.0/24 103.157.55.0/24 IPv6: 2001:df0:1700::/48 Signature Algorithm: sha256WithRSAEncryption 84:03:73:c6:23:72:45:b7:84:2d:6a:19:cb:9d:14:86:b7:ce: 00:0c:df:10:f0:72:fe:ee:eb:89:96:70:98:0a:ea:d6:34:74: 95:f2:0f:c2:5d:19:8d:8c:c6:f9:70:6c:47:8f:ab:57:de:86: 13:16:4b:bc:cb:47:a6:ff:ae:db:38:cd:b8:63:ca:87:94:2b: df:43:ab:7e:6f:84:33:30:cb:d2:39:76:ce:6c:dc:f9:ce:46: bd:e0:19:9e:f1:79:14:3c:9e:f7:3f:fe:9b:78:9b:77:f7:2c: 1a:d3:28:9d:14:a7:d3:39:be:02:99:87:bc:d6:26:29:bb:45: 21:c3:c1:4b:d0:df:57:f2:a0:f9:c6:2a:91:f1:0c:48:0f:70: 91:71:56:5c:a7:50:dc:1d:49:45:35:01:0f:02:68:ce:57:d7: a1:da:d9:10:56:e7:21:de:4c:c8:00:f6:d4:aa:34:10:f9:9a: b4:3a:f0:83:c6:86:7a:8c:75:85:f6:82:69:9c:de:51:bb:4b: da:fa:91:87:4f:82:b2:2c:c9:64:b3:95:65:b3:69:29:da:f6: bd:91:ed:e4:29:8f:46:13:87:2d:f8:20:ec:08:88:a7:16:1a: 80:b2:fb:35:62:cb:5b:91:94:52:43:d9:f8:13:bf:10:49:91: 3e:e5:1e:a2 -----BEGIN CERTIFICATE----- MIIF3DCCBMSgAwIBAgIUES1YRY94pAXh9MzQxxZFYgFfuQ0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgxODA0MTkyOVoX DTI1MDgxNzA0MjQyOVowMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEz MjVDOUJENUMzMzc2RjNGRTBCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALs0ikcL+OT6rb+smXxbsjOnu7rhtcHhX3wy0JCIr2+kb6t8AnWO+vMMTVm3 9w2SfeUD8T2pVsqFWq7yP9UE0gqITWfU45B9xVKYtwT2LnDvHT7tRZ6Vnfe09nnO ykxMHJvxfwODNeoOBowqgKNmYAyTpNc9fwyYiUGArpaZdS8ctdKWh+C0ZhmseiAX nhMsvpdiTTE0Q5V0ynFDUiv1OlCkk0rgdS5ovxwemE5Oyl3hygfddraBKxmZndyM BY98ThIr5x8wuge408+gsV4wQqay7PtmVqa2VcDMup5LJa7cS93OyWLWc6wp/HsF ZWjBkfxORbwh/WjSDd/JsZk4Nk8CAwEAAaOCAs8wggLLMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKCipcqMIKfPbaEyXJvVwzdvP+CzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmMzc3NzEx LTFlM2QtNGU1YS1hNGFjLTA1YTFjNTAyYWQyOC8wL0EwQTJBNUNBOEMyMEE3Q0Y2 REExMzI1QzlCRDVDMzM3NkYzRkUwQjMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMBIEAgABMAwD BABnVHQDBABnnTcwDwQCAAIwCQMHACABDfAXADANBgkqhkiG9w0BAQsFAAOCAQEA hANzxiNyRbeELWoZy50UhrfOAAzfEPBy/u7riZZwmArq1jR0lfIPwl0ZjYzG+XBs R4+rV96GExZLvMtHpv+u2zjNuGPKh5Qr30Orfm+EMzDL0jl2zmzc+c5GveAZnvF5 FDye9z/+m3ibd/csGtMonRSn0zm+ApmHvNYmKbtFIcPBS9DfV/Kg+cYqkfEMSA9w kXFWXKdQ3B1JRTUBDwJozlfXodrZEFbnId5MyAD21Ko0EPmatDrwg8aGeox1hfaC aZzeUbtL2vqRh0+CsizJZLOVZbNpKdr2vZHt5CmPRhOHLfgg7AiIpxYagLL7NWLL W5GUUkPZ+BO/EEmRPuUeog== -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:52 2024 by rpki-client on console-fra.rpki-client.org