$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer File: A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.cer (raw, json) Hash identifier: yuNlU3cO1BsWMeANxKeJJYXoJRl0zaU35125sZXd0Lw= Subject key identifier: A8:E6:49:2B:5E:FE:93:62:C2:CC:DB:1C:25:DA:02:2A:2E:15:77:82 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3D51F7C2D07625EAF8A268705437CF1D269B277F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.mft caRepository: rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 19 Nov 2024 12:08:47 +0000 Certificate not after: Tue 18 Nov 2025 12:13:47 +0000 Subordinate resources: IP: 2001:df3:d1c0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:51:f7:c2:d0:76:25:ea:f8:a2:68:70:54:37:cf:1d:26:9b:27:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 19 12:08:47 2024 GMT Not After : Nov 18 12:13:47 2025 GMT Subject: CN=A8E6492B5EFE9362C2CCDB1C25DA022A2E157782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:6b:9a:ae:20:0e:ec:61:e1:0a:8d:d9:4e:b4: c9:20:05:1e:f2:d9:96:3e:05:c2:9b:3b:8e:7f:ff: 7d:cf:38:f1:ff:f5:52:6a:91:d3:04:21:c3:7b:7f: c9:5a:9a:be:5b:55:57:60:8f:2a:b5:73:17:c2:77: 5f:92:f1:84:45:8f:2b:73:a2:10:c6:24:69:b5:fd: 6a:cf:92:7f:95:68:b1:2c:4f:56:65:cc:c7:44:c1: 94:c3:2a:09:c3:00:a1:ec:cf:15:9d:14:6a:5e:be: c1:33:06:a2:40:80:40:ce:71:6f:00:f2:6f:13:07: 50:1e:69:1f:35:e1:b3:04:36:11:e1:64:32:4a:79: 94:31:c6:16:f7:de:05:35:3c:e1:88:f1:65:e4:a5: 18:78:6e:09:65:49:ef:31:76:2b:f7:0d:9b:18:6c: 27:2a:0f:7c:0d:36:5b:6b:8f:9a:2d:96:8c:e7:50: d6:07:d3:23:d9:8d:cc:7b:c8:29:be:f9:23:13:25: bf:31:63:9c:cf:38:1c:5c:81:ad:7a:4e:47:30:01: 87:1f:cb:ef:b1:2d:3a:b1:63:b3:ff:13:19:13:a7: 55:57:8f:f9:5f:d5:48:01:c7:f9:c4:46:13:99:ee: a1:4e:77:ff:c2:fb:ab:2d:7e:74:97:56:d4:e6:b1: 34:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A8:E6:49:2B:5E:FE:93:62:C2:CC:DB:1C:25:DA:02:2A:2E:15:77:82 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d7dd2519-3078-47d3-9e86-48fd3bde76c8/1/A8E6492B5EFE9362C2CCDB1C25DA022A2E157782.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:df3:d1c0::/48 Signature Algorithm: sha256WithRSAEncryption 16:45:34:fa:fd:e1:bc:2c:06:9a:c6:bd:10:db:29:7f:96:86: 2f:29:30:49:d0:70:6b:37:83:f0:3c:a8:25:e9:78:fd:03:fa: 4b:71:ac:d8:9b:1d:55:5e:77:5a:23:ae:60:63:6b:7f:d9:f0: 13:c9:c5:de:47:6c:4e:50:b3:e7:d3:da:c7:57:a8:51:7b:6d: 7a:1d:9e:e5:68:d7:e5:ec:b9:4e:30:14:d6:6d:0b:1a:5e:4e: 09:25:c6:8f:2e:a7:5a:f2:8e:de:18:26:c8:d8:83:a7:4d:38: c6:b7:9b:d2:86:78:3c:ad:0e:5a:6a:49:da:05:65:07:87:84: e9:40:da:f0:e7:2a:08:58:eb:71:e1:a7:c6:62:40:dd:22:0a: 83:10:69:f3:4d:8d:c6:10:2e:05:eb:20:b2:f4:1c:d0:b6:5c: 4f:ed:ac:b1:ab:79:c8:ed:46:56:08:91:56:89:20:e5:81:b9: 17:44:a5:83:f6:52:c2:84:38:7e:83:5a:c9:7e:21:c6:e1:d5: 16:ad:51:13:99:2d:57:90:bd:a1:f3:bf:04:a9:91:6c:6c:bf: 75:ac:99:72:00:51:77:97:6b:3f:61:8b:f0:75:d5:0c:b3:6c: b3:f4:bf:d2:bc:20:8a:24:9b:7b:41:48:c1:74:91:07:0f:8d: 7f:fa:06:07 -----BEGIN CERTIFICATE----- MIIFyDCCBLCgAwIBAgIUPVH3wtB2Jer4omhwVDfPHSabJ38wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExOTEyMDg0N1oX DTI1MTExODEyMTM0N1owMzExMC8GA1UEAxMoQThFNjQ5MkI1RUZFOTM2MkMyQ0NE QjFDMjVEQTAyMkEyRTE1Nzc4MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMNrmq4gDuxh4QqN2U60ySAFHvLZlj4Fwps7jn//fc848f/1UmqR0wQhw3t/ yVqavltVV2CPKrVzF8J3X5LxhEWPK3OiEMYkabX9as+Sf5VosSxPVmXMx0TBlMMq CcMAoezPFZ0Ual6+wTMGokCAQM5xbwDybxMHUB5pHzXhswQ2EeFkMkp5lDHGFvfe BTU84YjxZeSlGHhuCWVJ7zF2K/cNmxhsJyoPfA02W2uPmi2WjOdQ1gfTI9mNzHvI Kb75IxMlvzFjnM84HFyBrXpORzABhx/L77EtOrFjs/8TGROnVVeP+V/VSAHH+cRG E5nuoU53/8L7qy1+dJdW1OaxNNcCAwEAAaOCArswggK3MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKjmSSte/pNiwszbHCXaAiouFXeCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kN2RkMjUxOS0zMDc4LTQ3ZDMtOWU4Ni00OGZkM2JkZTc2YzgvMTCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3ZGQyNTE5 LTMwNzgtNDdkMy05ZTg2LTQ4ZmQzYmRlNzZjOC8xL0E4RTY0OTJCNUVGRTkzNjJD MkNDREIxQzI1REEwMjJBMkUxNTc3ODIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkD BwAgAQ3z0cAwDQYJKoZIhvcNAQELBQADggEBABZFNPr94bwsBprGvRDbKX+Whi8p MEnQcGs3g/A8qCXpeP0D+ktxrNibHVVed1ojrmBja3/Z8BPJxd5HbE5Qs+fT2sdX qFF7bXodnuVo1+XsuU4wFNZtCxpeTgklxo8up1ryjt4YJsjYg6dNOMa3m9KGeDyt DlpqSdoFZQeHhOlA2vDnKghY63Hhp8ZiQN0iCoMQafNNjcYQLgXrILL0HNC2XE/t rLGrecjtRlYIkVaJIOWBuRdEpYP2UsKEOH6DWsl+Icbh1RatUROZLVeQvaHzvwSp kWxsv3WsmXIAUXeXaz9hi/B11QyzbLP0v9K8IIokm3tBSMF0kQcPjX/6Bgc= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:45 2024 by rpki-client on console-ams.rpki-client.org