$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A.cer File: A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A.cer (raw, json) Hash identifier: o5/ldugefFzZn7SulZNfC5h1xRmN05td3nG2njAHdsg= Subject key identifier: A7:D5:3E:B5:45:1E:AF:8A:CA:B6:38:48:7F:BD:EB:40:17:7A:0F:8A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4666B579ADB7CF4320EE49121DD3FBF54BCD393F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7620b423-dd5d-448f-bbd3-04530ec1715d/0/A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A.mft caRepository: rsync://repo-rpki.idnic.net/repo/7620b423-dd5d-448f-bbd3-04530ec1715d/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 30 Oct 2024 16:43:46 +0000 Certificate not after: Wed 29 Oct 2025 16:48:46 +0000 Subordinate resources: IP: 103.190.62.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:66:b5:79:ad:b7:cf:43:20:ee:49:12:1d:d3:fb:f5:4b:cd:39:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 16:43:46 2024 GMT Not After : Oct 29 16:48:46 2025 GMT Subject: CN=A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e1:be:52:ba:92:e5:de:2b:8d:f5:3f:1e:1d: 08:5d:68:80:14:d8:91:e9:33:2d:c6:b9:41:b3:23: 6b:7e:c8:c7:91:5c:be:93:4d:69:81:cd:d3:aa:23: e7:a2:e5:25:b1:ce:cb:86:17:be:6e:bd:cd:92:f6: 1f:80:17:97:85:31:a5:6c:67:19:e7:fb:95:12:de: 25:ee:6e:d5:20:8b:b4:90:44:56:e0:80:47:18:66: 19:5c:6e:d8:03:1d:2e:22:42:4f:04:1a:b5:96:9d: 4d:c7:26:b1:9e:ef:2d:b7:c8:6f:5e:b2:d1:2b:3c: b6:01:40:bd:fa:b5:17:2e:46:34:d4:f3:59:18:cd: a2:2d:63:72:5e:89:d4:38:7b:aa:10:26:62:7a:7a: 38:8c:7a:50:03:80:ad:2b:97:67:4a:f0:04:73:eb: f6:52:dd:49:09:48:3f:15:68:b3:32:e3:93:22:7c: e6:49:04:af:82:0b:31:b6:fb:ab:e0:a2:a3:26:22: 87:c2:1b:cd:7d:f1:ea:4b:37:58:1a:d0:bf:c0:0f: 22:d2:0f:cd:72:bf:df:cb:ba:d8:13:81:17:6c:d9: 2e:2f:df:92:f1:a2:ea:f5:21:f1:98:02:e8:96:28: b8:dd:05:e0:b5:ab:79:19:51:e5:15:56:45:35:a0: 21:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A7:D5:3E:B5:45:1E:AF:8A:CA:B6:38:48:7F:BD:EB:40:17:7A:0F:8A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7620b423-dd5d-448f-bbd3-04530ec1715d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7620b423-dd5d-448f-bbd3-04530ec1715d/0/A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.62.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:6b:a4:a5:11:66:ac:4c:9c:53:bb:ab:c3:66:ba:24:48:16: 4b:4d:64:b4:6f:a5:6a:fa:30:36:40:87:ad:6f:fb:d7:1c:56: 0e:c4:5c:55:4c:2e:b4:e8:a3:dd:2a:a9:18:97:57:47:3d:02: d1:bb:7e:9d:ba:ce:66:5c:ed:0b:2c:76:39:99:b3:de:35:be: 9c:ff:b8:d2:af:5d:e6:07:f1:50:41:83:e4:b9:26:94:5d:57: df:29:93:34:ba:a0:5b:88:dd:3d:06:35:a9:8e:4a:ab:f7:7e: d7:77:a2:19:90:87:ec:f0:bc:3c:98:ff:76:a2:00:29:63:e0: c5:2f:0a:37:b5:74:0a:ce:75:b7:93:74:04:8f:5a:3a:c9:4c: 4c:cf:9e:78:7c:97:f6:7f:5f:73:59:7a:98:89:9c:5d:8f:4b: b8:66:f3:e6:c8:5d:97:33:7f:cf:85:db:f2:06:49:c9:1f:0f: d4:e5:0b:f4:1f:2e:52:d2:6d:42:55:6a:1e:1e:25:e4:50:5f: 08:4f:c7:bd:a0:f7:b6:4b:5a:e6:cf:01:ad:67:fa:45:4f:f8: e3:50:b0:e9:3e:fd:57:e4:ff:61:55:02:dc:fd:9a:8e:2a:5b: 4b:24:cd:f0:48:db:1b:b2:09:7a:0e:98:29:10:69:43:bc:16: b1:44:23:7b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURma1ea23z0Mg7kkSHdP79UvNOT8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAzMDE2NDM0NloX DTI1MTAyOTE2NDg0NlowMzExMC8GA1UEAxMoQTdENTNFQjU0NTFFQUY4QUNBQjYz ODQ4N0ZCREVCNDAxNzdBMEY4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALHhvlK6kuXeK431Px4dCF1ogBTYkekzLca5QbMja37Ix5FcvpNNaYHN06oj 56LlJbHOy4YXvm69zZL2H4AXl4UxpWxnGef7lRLeJe5u1SCLtJBEVuCARxhmGVxu 2AMdLiJCTwQatZadTccmsZ7vLbfIb16y0Ss8tgFAvfq1Fy5GNNTzWRjNoi1jcl6J 1Dh7qhAmYnp6OIx6UAOArSuXZ0rwBHPr9lLdSQlIPxVoszLjkyJ85kkEr4ILMbb7 q+CioyYih8IbzX3x6ks3WBrQv8APItIPzXK/38u62BOBF2zZLi/fkvGi6vUh8ZgC 6JYouN0F4LWreRlR5RVWRTWgIa8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKfVPrVFHq+KyrY4SH+960AXeg+KMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NjIwYjQyMy1kZDVkLTQ0OGYtYmJkMy0wNDUzMGVjMTcxNWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2MjBiNDIz LWRkNWQtNDQ4Zi1iYmQzLTA0NTMwZWMxNzE1ZC8wL0E3RDUzRUI1NDUxRUFGOEFD QUI2Mzg0ODdGQkRFQjQwMTc3QTBGOEEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvj4wDQYJKoZIhvcNAQELBQADggEBAH5rpKURZqxMnFO7q8NmuiRIFktNZLRv pWr6MDZAh61v+9ccVg7EXFVMLrToo90qqRiXV0c9AtG7fp26zmZc7QssdjmZs941 vpz/uNKvXeYH8VBBg+S5JpRdV98pkzS6oFuI3T0GNamOSqv3ftd3ohmQh+zwvDyY /3aiAClj4MUvCje1dArOdbeTdASPWjrJTEzPnnh8l/Z/X3NZepiJnF2PS7hm8+bI XZczf8+F2/IGSckfD9TlC/QfLlLSbUJVah4eJeRQXwhPx72g97ZLWubPAa1n+kVP +ONQsOk+/Vfk/2FVAtz9mo4qW0skzfBI2xuyCXoOmCkQaUO8FrFEI3s= -----END CERTIFICATE-----Generated at Mon Nov 25 13:01:52 2024 by rpki-client on console-fra.rpki-client.org