$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A203777786215EACE763209954A241380D9D9512.cer File: A203777786215EACE763209954A241380D9D9512.cer (raw, json) Hash identifier: oRJge+VvwEw6Cjq1PYNzSe/YnmsrKIaQoluVhw/N45I= Subject key identifier: A2:03:77:77:86:21:5E:AC:E7:63:20:99:54:A2:41:38:0D:9D:95:12 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 465F81F0F4B84908D4AD0A864D2E558BDDEA3488 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.mft caRepository: rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 22 Apr 2024 14:51:25 +0000 Certificate not after: Mon 21 Apr 2025 14:56:25 +0000 Subordinate resources: IP: 103.189.165.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:5f:81:f0:f4:b8:49:08:d4:ad:0a:86:4d:2e:55:8b:dd:ea:34:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 22 14:51:25 2024 GMT Not After : Apr 21 14:56:25 2025 GMT Subject: CN=A203777786215EACE763209954A241380D9D9512 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:f3:0f:19:3d:1d:51:dd:cd:25:84:7b:15:b0: 3d:5d:4b:c5:95:c9:85:02:5f:89:35:39:42:8d:f3: d0:43:a6:5a:c6:67:30:33:13:29:c6:37:f4:74:1f: 8b:f8:63:be:d8:64:53:75:44:7a:0f:05:80:84:e7: 84:05:a1:d3:bd:ec:73:cd:c5:83:af:af:51:5c:bf: 68:b9:89:25:8b:df:99:88:33:2e:7b:96:9e:fd:32: 12:01:ac:a5:1f:f3:02:b3:24:b1:e1:06:c8:ea:3c: 74:83:3c:b1:01:59:48:e3:18:2c:18:bc:08:d4:aa: c5:19:f9:d9:67:8b:a3:57:51:92:50:1b:f8:4a:e9: 07:d6:0c:59:40:f6:76:cc:71:3c:dc:10:30:6e:23: cc:15:ca:b0:5a:1a:43:7a:5b:7c:e9:4d:c6:1f:8f: 2b:01:e2:63:13:1d:02:08:4a:c1:1e:35:12:c9:42: 06:e5:94:72:37:55:dc:6b:09:3e:b3:3c:6f:b9:4a: ec:35:22:99:ac:15:7f:b6:26:51:e7:53:98:99:f5: ee:7f:81:4c:dd:72:6a:04:30:2f:1a:49:0a:a7:c3: bd:e5:38:1d:bb:15:27:67:5d:38:70:83:3d:83:b0: 2b:91:0c:a1:ca:97:44:73:31:c7:59:36:d2:bf:9d: 1b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A2:03:77:77:86:21:5E:AC:E7:63:20:99:54:A2:41:38:0D:9D:95:12 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/82f6c516-ef11-4c15-8b33-2eb10403043b/0/A203777786215EACE763209954A241380D9D9512.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.165.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:d3:55:65:62:87:15:a7:68:0f:9c:c4:7d:c9:64:4b:61:7b: 04:e7:f1:26:32:44:ed:18:8d:69:a1:b8:9f:27:7a:1c:7e:3e: 74:6f:bd:ba:de:2f:60:c3:cc:a4:f9:7b:92:5a:56:95:8c:29: 3d:e9:ef:f9:27:93:48:df:08:83:f4:6b:22:63:8f:79:4d:20: 0e:b1:b5:67:06:40:bd:26:c4:02:92:71:6d:22:11:37:50:a0: 07:7a:16:35:91:9f:78:f3:a4:3f:53:6f:05:29:27:e9:2a:ae: 02:5d:b1:fc:65:51:a0:a7:ff:d4:81:f2:b7:26:7f:bf:3f:ae: 01:bc:7f:a6:0d:5a:50:8b:26:6a:23:b3:6b:da:f1:51:1b:20: f2:de:d5:a9:0d:aa:e3:af:62:9f:78:41:1a:34:f5:6b:c5:c0: 5a:4b:70:91:03:39:cd:f2:82:37:e0:c4:b4:53:3f:84:72:d7: 0f:89:ee:e3:ed:c2:dd:07:17:59:5f:de:c8:70:4a:a0:24:e0: 3b:23:00:95:a8:fc:e2:cb:1c:14:cd:aa:b0:0c:47:40:1b:72: 36:4d:28:f9:59:dc:13:ee:72:7b:6b:9c:9f:3a:7e:ab:38:62: 61:09:8e:be:00:c8:c1:6c:19:56:51:df:af:99:72:bf:0b:bc: c3:79:ad:73 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURl+B8PS4SQjUrQqGTS5Vi93qNIgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyMjE0NTEyNVoX DTI1MDQyMTE0NTYyNVowMzExMC8GA1UEAxMoQTIwMzc3Nzc4NjIxNUVBQ0U3NjMy MDk5NTRBMjQxMzgwRDlEOTUxMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN/zDxk9HVHdzSWEexWwPV1LxZXJhQJfiTU5Qo3z0EOmWsZnMDMTKcY39HQf i/hjvthkU3VEeg8FgITnhAWh073sc83Fg6+vUVy/aLmJJYvfmYgzLnuWnv0yEgGs pR/zArMkseEGyOo8dIM8sQFZSOMYLBi8CNSqxRn52WeLo1dRklAb+ErpB9YMWUD2 dsxxPNwQMG4jzBXKsFoaQ3pbfOlNxh+PKwHiYxMdAghKwR41EslCBuWUcjdV3GsJ PrM8b7lK7DUimawVf7YmUedTmJn17n+BTN1yagQwLxpJCqfDveU4HbsVJ2ddOHCD PYOwK5EMocqXRHMxx1k20r+dG8cCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKIDd3eGIV6s52MgmVSiQTgNnZUSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84MmY2YzUxNi1lZjExLTRjMTUtOGIzMy0yZWIxMDQwMzA0M2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyZjZjNTE2 LWVmMTEtNGMxNS04YjMzLTJlYjEwNDAzMDQzYi8wL0EyMDM3Nzc3ODYyMTVFQUNF NzYzMjA5OTU0QTI0MTM4MEQ5RDk1MTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnvaUwDQYJKoZIhvcNAQELBQADggEBAE/TVWVihxWnaA+cxH3JZEthewTn8SYy RO0YjWmhuJ8nehx+PnRvvbreL2DDzKT5e5JaVpWMKT3p7/knk0jfCIP0ayJjj3lN IA6xtWcGQL0mxAKScW0iETdQoAd6FjWRn3jzpD9TbwUpJ+kqrgJdsfxlUaCn/9SB 8rcmf78/rgG8f6YNWlCLJmojs2va8VEbIPLe1akNquOvYp94QRo09WvFwFpLcJED Oc3ygjfgxLRTP4Ry1w+J7uPtwt0HF1lf3shwSqAk4DsjAJWo/OLLHBTNqrAMR0Ab cjZNKPlZ3BPucntrnJ86fqs4YmEJjr4AyMFsGVZR36+Zcr8LvMN5rXM= -----END CERTIFICATE-----Generated at Wed May 8 10:06:51 2024 by rpki-client on console-ams.rpki-client.org