$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A500108F09BF54E5603B5C1F6E6325A561FE7126.cer File: A500108F09BF54E5603B5C1F6E6325A561FE7126.cer (raw, json) Hash identifier: 43yhphyQWUdrDkjtzLpfKvTV7lEY1e2v/rLJyLcvmo0= Subject key identifier: A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2B979B09ED718DA4A13CEBF02E4AAA94226647E7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.mft caRepository: rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 03:18:40 +0000 Certificate not after: Mon 29 Jul 2024 03:23:40 +0000 Subordinate resources: IP: 103.112.162.0/23 IP: 103.133.222.0/23 IP: 2001:df4:b100::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:97:9b:09:ed:71:8d:a4:a1:3c:eb:f0:2e:4a:aa:94:22:66:47:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 03:18:40 2023 GMT Not After : Jul 29 03:23:40 2024 GMT Subject: CN=A500108F09BF54E5603B5C1F6E6325A561FE7126 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e8:08:7c:6b:20:49:ed:10:fe:40:03:13:6d: 74:91:9b:dd:0c:ff:de:d2:3a:ef:48:d5:56:42:b3: 8f:77:c5:5e:2f:5c:07:fe:70:6c:20:18:8a:ec:63: 09:65:7c:a8:44:3f:7f:5f:a4:7e:12:7c:8b:5c:d4: 29:16:f9:df:87:35:b2:f1:e8:7e:83:c1:6f:ff:bc: ad:2f:b4:0a:0c:50:0a:ac:c6:6d:ed:f4:ed:0f:38: 7b:ac:38:ee:df:b9:e0:cd:8a:7a:31:9f:11:cf:3b: d5:b9:87:e7:a7:65:09:d4:25:13:29:bb:66:7b:31: f7:75:f3:b0:3b:89:94:e6:ca:ab:34:84:d2:19:2a: 35:5e:a6:bb:c9:f8:3e:39:1b:15:78:47:b6:d7:be: b1:15:c5:73:3b:91:7a:02:ed:7e:2e:12:af:47:54: fe:60:a9:9d:f2:ad:54:8a:4d:69:c7:0b:08:e0:e4: 28:2c:17:95:24:b1:a3:a7:98:42:49:a8:7a:72:bb: 7c:6f:52:83:2b:cb:c5:8d:be:be:59:47:f9:b4:01: c3:16:c5:5a:74:8b:56:0a:a0:37:fc:1e:84:01:ab: 2f:96:28:7d:2c:14:45:99:65:c6:42:90:83:74:19: 5d:58:5f:e5:f9:e4:7a:26:02:22:22:03:8c:73:d7: 46:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A5:00:10:8F:09:BF:54:E5:60:3B:5C:1F:6E:63:25:A5:61:FE:71:26 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2fd80d96-ef1b-44b2-903a-7f6da941a836/0/A500108F09BF54E5603B5C1F6E6325A561FE7126.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.112.162.0/23 103.133.222.0/23 IPv6: 2001:df4:b100::/48 Signature Algorithm: sha256WithRSAEncryption 46:1d:e0:40:34:3a:bf:6b:63:98:cc:06:7d:a0:f9:e6:0e:13: aa:a6:75:97:0a:88:c0:9d:2e:b4:af:81:19:f0:a1:3c:bf:f3: b2:c5:fc:14:6f:5e:b2:2a:40:d5:0b:b1:02:2d:2e:3c:a9:3e: 50:ec:85:d1:42:33:b6:23:7d:10:dc:8f:a4:48:54:c5:86:46: f5:39:14:54:87:5f:78:a2:c1:8c:be:6d:1a:ad:fd:1b:f2:8a: f0:97:db:e5:43:4a:fe:73:f2:3a:2a:15:fe:e0:24:e1:f0:51: 9c:53:dd:85:4c:d7:ee:c1:e8:85:5e:92:a3:1a:13:b4:88:97: b8:20:70:e1:e9:e2:d3:90:6b:a0:41:8b:26:bb:38:df:55:1e: ac:13:33:26:0d:4b:93:d2:55:60:07:40:fc:a0:c5:ac:42:27: db:91:82:3f:f3:32:3d:eb:24:8c:bc:8b:c2:19:fe:0a:12:36: 04:f0:7d:84:b7:40:5d:b3:59:ff:3e:21:85:8a:89:d7:02:03: 49:fa:6b:1e:08:3b:08:d7:2c:ea:9e:d9:10:a8:90:83:e1:86: f6:19:f7:f8:5e:36:1d:9a:fc:cf:e9:34:61:e7:09:7e:3c:0b: 1f:1b:e4:85:ff:34:5e:d8:51:d5:6e:d5:41:09:10:05:2a:ed: 42:f3:29:24 -----BEGIN CERTIFICATE----- MIIF3DCCBMSgAwIBAgIUK5ebCe1xjaShPOvwLkqqlCJmR+cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTAzMTg0MFoX DTI0MDcyOTAzMjM0MFowMzExMC8GA1UEAxMoQTUwMDEwOEYwOUJGNTRFNTYwM0I1 QzFGNkU2MzI1QTU2MUZFNzEyNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJvoCHxrIEntEP5AAxNtdJGb3Qz/3tI670jVVkKzj3fFXi9cB/5wbCAYiuxj CWV8qEQ/f1+kfhJ8i1zUKRb534c1svHofoPBb/+8rS+0CgxQCqzGbe307Q84e6w4 7t+54M2KejGfEc871bmH56dlCdQlEym7Znsx93XzsDuJlObKqzSE0hkqNV6mu8n4 PjkbFXhHtte+sRXFczuRegLtfi4Sr0dU/mCpnfKtVIpNaccLCODkKCwXlSSxo6eY QkmoenK7fG9SgyvLxY2+vllH+bQBwxbFWnSLVgqgN/wehAGrL5YofSwURZllxkKQ g3QZXVhf5fnkeiYCIiIDjHPXRl0CAwEAAaOCAs8wggLLMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKUAEI8Jv1TlYDtcH25jJaVh/nEmMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZmQ4MGQ5Ni1lZjFiLTQ0YjItOTAzYS03ZjZkYTk0MWE4MzYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmZDgwZDk2 LWVmMWItNDRiMi05MDNhLTdmNmRhOTQxYTgzNi8wL0E1MDAxMDhGMDlCRjU0RTU2 MDNCNUMxRjZFNjMyNUE1NjFGRTcxMjYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMBIEAgABMAwD BAFncKIDBAFnhd4wDwQCAAIwCQMHACABDfSxADANBgkqhkiG9w0BAQsFAAOCAQEA Rh3gQDQ6v2tjmMwGfaD55g4TqqZ1lwqIwJ0utK+BGfChPL/zssX8FG9esipA1Qux Ai0uPKk+UOyF0UIztiN9ENyPpEhUxYZG9TkUVIdfeKLBjL5tGq39G/KK8Jfb5UNK /nPyOioV/uAk4fBRnFPdhUzX7sHohV6SoxoTtIiXuCBw4eni05BroEGLJrs431Ue rBMzJg1Lk9JVYAdA/KDFrEIn25GCP/MyPeskjLyLwhn+ChI2BPB9hLdAXbNZ/z4h hYqJ1wIDSfprHgg7CNcs6p7ZEKiQg+GG9hn3+F42HZr8z+k0YecJfjwLHxvkhf80 XthR1W7VQQkQBSrtQvMpJA== -----END CERTIFICATE-----Generated at Tue May 7 16:42:38 2024 by rpki-client on console-ams.rpki-client.org