$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A8104CA9AA31459E18BB7A597857DDA711E3E7FA.cer File: A8104CA9AA31459E18BB7A597857DDA711E3E7FA.cer (raw, json) Hash identifier: Z6YNO2PORQ2OPExx2R5iFPGJdNy9rehztt0oIqR3MPI= Subject key identifier: A8:10:4C:A9:AA:31:45:9E:18:BB:7A:59:78:57:DD:A7:11:E3:E7:FA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1AA8FA92CDC575FB1E0BFBC5C0273CE4866786C5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/9e47847c-bc2c-40da-b2aa-915951428aad/0/A8104CA9AA31459E18BB7A597857DDA711E3E7FA.mft caRepository: rsync://repo-rpki.idnic.net/repo/9e47847c-bc2c-40da-b2aa-915951428aad/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 27 May 2024 11:50:48 +0000 Certificate not after: Mon 26 May 2025 11:55:48 +0000 Subordinate resources: IP: 103.191.216.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:a8:fa:92:cd:c5:75:fb:1e:0b:fb:c5:c0:27:3c:e4:86:67:86:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 27 11:50:48 2024 GMT Not After : May 26 11:55:48 2025 GMT Subject: CN=A8104CA9AA31459E18BB7A597857DDA711E3E7FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:b6:5d:b3:e8:10:7e:19:38:58:4b:85:2c:e2: 6a:11:76:4e:38:8d:6e:f2:ba:10:ed:36:b2:34:38: 61:e1:2b:b9:fb:29:2e:c3:7a:be:0b:4c:93:0b:56: 64:19:5a:e6:09:bd:7a:82:ad:12:c6:44:8f:c4:82: 54:83:4e:2d:9a:12:fa:5b:1c:80:71:8b:a7:fb:ec: f6:26:8c:34:04:ab:90:87:3d:1a:e5:c9:6d:1f:d4: 74:c5:54:6d:08:63:9e:57:87:d5:55:47:5f:7c:c7: 45:46:38:29:11:f8:e0:14:fd:08:96:ed:9f:e4:ed: 0b:ef:82:78:cb:61:59:12:37:e1:6f:24:09:8b:20: f7:a1:21:3d:f4:5b:b0:e8:33:f7:27:c3:2c:6a:e4: 7b:e0:be:c1:66:96:7f:f4:98:5b:48:7e:22:2e:f2: 74:33:84:53:63:f3:b7:77:c7:cf:73:eb:b5:32:8e: 01:ba:8e:7c:fe:7c:2d:41:71:46:92:48:ca:97:c6: 35:b6:ef:cc:03:7a:a2:7c:50:e0:72:cd:10:24:c1: 4f:69:9d:97:aa:fe:d6:b4:28:66:70:5e:d1:15:05: d0:97:20:ea:69:53:fc:ed:71:dc:9c:be:41:0c:ab: 39:59:7b:cf:98:46:dd:73:88:c6:d3:b6:2e:29:15: be:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A8:10:4C:A9:AA:31:45:9E:18:BB:7A:59:78:57:DD:A7:11:E3:E7:FA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9e47847c-bc2c-40da-b2aa-915951428aad/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9e47847c-bc2c-40da-b2aa-915951428aad/0/A8104CA9AA31459E18BB7A597857DDA711E3E7FA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.216.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:83:8b:6c:ce:49:c0:47:fd:08:20:71:2a:f1:71:a1:0f:82: 78:a8:6f:5e:d9:05:84:38:6e:73:47:a0:ce:02:89:da:1b:ce: 6a:a0:5f:b7:95:6e:42:b7:30:72:83:22:51:32:e9:7e:a4:15: 24:2a:7a:ac:db:cc:d4:ac:d7:74:13:8f:55:9e:9e:ee:49:01: 03:c7:e2:97:ec:d5:a9:4c:7e:bb:d2:72:6c:22:71:ff:d9:6b: f2:7b:49:36:ef:bf:87:cf:cc:da:5e:0a:bf:3a:e8:18:cf:4c: f3:41:07:9c:1c:9b:30:e2:61:43:1d:a7:35:bd:90:c8:dd:53: 13:e2:8c:0f:9b:f5:d2:1b:84:f4:48:f1:4c:5b:11:0a:ad:67: 82:1d:d7:cf:74:4a:cb:7f:e0:88:66:9a:57:ac:d7:ed:ca:23: be:a0:02:46:0b:6f:b9:d9:3d:18:ab:9b:1a:3a:a2:14:e7:68: 90:fa:db:d9:d6:8b:ec:22:54:6f:c9:84:0b:cd:de:e0:aa:84: 8e:57:f5:f3:87:85:1c:92:cc:65:58:78:17:a6:63:e8:82:cf: 08:e3:b4:c5:76:56:f5:ae:12:0e:84:df:e6:e2:86:20:8d:5c: 62:c6:eb:07:d2:64:09:34:17:0f:e8:3f:d3:be:c6:68:9c:fa: ce:0e:c8:0f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGqj6ks3FdfseC/vFwCc85IZnhsUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUyNzExNTA0OFoX DTI1MDUyNjExNTU0OFowMzExMC8GA1UEAxMoQTgxMDRDQTlBQTMxNDU5RTE4QkI3 QTU5Nzg1N0REQTcxMUUzRTdGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK62XbPoEH4ZOFhLhSziahF2TjiNbvK6EO02sjQ4YeErufspLsN6vgtMkwtW ZBla5gm9eoKtEsZEj8SCVINOLZoS+lscgHGLp/vs9iaMNASrkIc9GuXJbR/UdMVU bQhjnleH1VVHX3zHRUY4KRH44BT9CJbtn+TtC++CeMthWRI34W8kCYsg96EhPfRb sOgz9yfDLGrke+C+wWaWf/SYW0h+Ii7ydDOEU2Pzt3fHz3PrtTKOAbqOfP58LUFx RpJIypfGNbbvzAN6onxQ4HLNECTBT2mdl6r+1rQoZnBe0RUF0Jcg6mlT/O1x3Jy+ QQyrOVl7z5hG3XOIxtO2LikVvo0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKgQTKmqMUWeGLt6WXhX3acR4+f6MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85ZTQ3ODQ3Yy1iYzJjLTQwZGEtYjJhYS05MTU5NTE0MjhhYWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllNDc4NDdj LWJjMmMtNDBkYS1iMmFhLTkxNTk1MTQyOGFhZC8wL0E4MTA0Q0E5QUEzMTQ1OUUx OEJCN0E1OTc4NTdEREE3MTFFM0U3RkEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnv9gwDQYJKoZIhvcNAQELBQADggEBAH2Di2zOScBH/QggcSrxcaEPgniob17Z BYQ4bnNHoM4CidobzmqgX7eVbkK3MHKDIlEy6X6kFSQqeqzbzNSs13QTj1Wenu5J AQPH4pfs1alMfrvScmwicf/Za/J7STbvv4fPzNpeCr866BjPTPNBB5wcmzDiYUMd pzW9kMjdUxPijA+b9dIbhPRI8UxbEQqtZ4Id1890Sst/4Ihmmles1+3KI76gAkYL b7nZPRirmxo6ohTnaJD629nWi+wiVG/JhAvN3uCqhI5X9fOHhRySzGVYeBemY+iC zwjjtMV2VvWuEg6E3+bihiCNXGLG6wfSZAk0Fw/oP9O+xmic+s4OyA8= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:26 2024 by rpki-client on console-ams.rpki-client.org