$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AA90F6A6378710CD695B4CC742651F235E503C5B.cer File: AA90F6A6378710CD695B4CC742651F235E503C5B.cer (raw, json) Hash identifier: Z5OyNSqEmoc8ZbXWp1Re/mjQTx720oj3nuHbed04U84= Subject key identifier: AA:90:F6:A6:37:87:10:CD:69:5B:4C:C7:42:65:1F:23:5E:50:3C:5B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B0B0B86AABDFDFF1902123A96C17698733E5D78 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/AA90F6A6378710CD695B4CC742651F235E503C5B.mft caRepository: rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 28 Oct 2024 20:33:44 +0000 Certificate not after: Mon 27 Oct 2025 20:38:44 +0000 Subordinate resources: IP: 180.131.128.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0b:0b:86:aa:bd:fd:ff:19:02:12:3a:96:c1:76:98:73:3e:5d:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 28 20:33:44 2024 GMT Not After : Oct 27 20:38:44 2025 GMT Subject: CN=AA90F6A6378710CD695B4CC742651F235E503C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:de:9e:7b:ce:82:78:d8:1e:64:0f:51:a9:1b: ea:52:75:0e:5a:2e:d6:74:41:ca:04:ab:b0:55:6b: 0f:c9:ae:f9:8b:1e:db:2f:dd:dc:9f:40:33:00:7c: 7c:be:89:4c:ab:0e:d2:40:ec:e1:96:6e:dd:9a:83: 1b:45:0b:ea:e4:14:2a:7b:d3:83:be:63:89:05:9c: 7f:9e:73:62:10:49:df:ca:49:7f:18:a0:49:ad:dd: bb:9d:c7:fe:85:01:35:fa:c6:80:62:6f:ba:df:62: 7e:85:be:b8:7b:be:41:a5:59:d7:43:a6:f0:8e:42: b3:f7:d7:9e:1d:29:d3:bd:3f:dc:08:88:9a:ef:14: 3a:03:60:15:08:cb:ec:c0:ed:9e:11:d5:5e:87:df: 2e:2f:4f:f1:e8:9c:81:3d:93:48:f6:4c:c6:eb:2d: ae:4d:77:fe:56:6a:92:29:45:d8:35:35:54:54:96: 65:1e:7a:8b:eb:4c:e9:46:32:08:1e:d7:b2:8a:12: 0f:04:a0:c8:c5:b1:d5:9b:89:39:be:4b:53:e9:42: 94:25:77:5d:40:c4:79:7a:91:b7:03:64:96:b8:1f: 5e:46:a3:a1:8c:92:df:77:46:f7:5c:cf:8f:78:47: 2b:0f:d8:87:3c:b3:1e:1c:17:9d:ca:24:1c:1a:32: 06:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AA:90:F6:A6:37:87:10:CD:69:5B:4C:C7:42:65:1F:23:5E:50:3C:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/AA90F6A6378710CD695B4CC742651F235E503C5B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.128.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:cb:a6:08:93:6e:39:b1:d4:7c:79:5b:c2:58:ab:6c:d8:25: ca:5c:4b:95:11:8f:0e:b3:19:7b:6d:a4:68:b3:e5:4f:e5:e4: 0d:be:09:65:cc:96:3e:2c:69:f9:9e:fb:69:43:97:17:00:17: f0:9e:1b:91:4f:14:7b:d4:25:33:e4:de:af:43:26:88:8e:ac: 38:e9:e0:8a:d1:38:16:9d:97:d5:4d:bd:e0:0d:52:90:c4:59: af:48:46:04:2e:16:9e:50:59:41:c9:d3:98:ab:18:f0:2e:31: 41:59:f9:ae:22:5f:95:8a:80:52:e8:d0:18:9b:65:84:44:bc: 79:51:db:f1:42:9f:f1:00:47:79:b1:96:3c:4d:d8:a2:41:c0: 5f:05:15:2e:e0:8f:fe:db:00:13:62:09:c8:84:0b:22:f6:96: cb:00:e8:cc:48:c9:f6:ad:3a:79:fe:87:a8:f9:8b:de:c4:f8: 78:a7:f9:1e:57:34:7d:ec:16:b5:3a:d4:a4:53:e0:c7:7e:0b: 9d:73:80:07:73:29:78:83:b3:e9:e9:6f:44:dd:3a:48:e0:03: cd:f7:33:c1:c7:db:91:23:26:48:ba:df:98:f0:16:1b:8b:72: 05:ff:2b:37:18:ab:c9:c4:f3:69:d7:70:8a:59:40:68:e5:30: 62:1b:9d:79 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUewsLhqq9/f8ZAhI6lsF2mHM+XXgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyODIwMzM0NFoX DTI1MTAyNzIwMzg0NFowMzExMC8GA1UEAxMoQUE5MEY2QTYzNzg3MTBDRDY5NUI0 Q0M3NDI2NTFGMjM1RTUwM0M1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJnennvOgnjYHmQPUakb6lJ1Dlou1nRBygSrsFVrD8mu+Yse2y/d3J9AMwB8 fL6JTKsO0kDs4ZZu3ZqDG0UL6uQUKnvTg75jiQWcf55zYhBJ38pJfxigSa3du53H /oUBNfrGgGJvut9ifoW+uHu+QaVZ10Om8I5Cs/fXnh0p070/3AiImu8UOgNgFQjL 7MDtnhHVXoffLi9P8eicgT2TSPZMxustrk13/lZqkilF2DU1VFSWZR56i+tM6UYy CB7XsooSDwSgyMWx1ZuJOb5LU+lClCV3XUDEeXqRtwNklrgfXkajoYyS33dG91zP j3hHKw/YhzyzHhwXncokHBoyBnMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKqQ9qY3hxDNaVtMx0JlHyNeUDxbMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZDAyYTU4ZC1iOTU4LTQyMTktODZkMy02MWU0M2NlZTMxOWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMDJhNThk LWI5NTgtNDIxOS04NmQzLTYxZTQzY2VlMzE5YS8wL0FBOTBGNkE2Mzc4NzEwQ0Q2 OTVCNENDNzQyNjUxRjIzNUU1MDNDNUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC0g4AwDQYJKoZIhvcNAQELBQADggEBAIzLpgiTbjmx1Hx5W8JYq2zYJcpcS5UR jw6zGXttpGiz5U/l5A2+CWXMlj4safme+2lDlxcAF/CeG5FPFHvUJTPk3q9DJoiO rDjp4IrROBadl9VNveANUpDEWa9IRgQuFp5QWUHJ05irGPAuMUFZ+a4iX5WKgFLo 0BibZYREvHlR2/FCn/EAR3mxljxN2KJBwF8FFS7gj/7bABNiCciECyL2lssA6MxI yfatOnn+h6j5i97E+Hin+R5XNH3sFrU61KRT4Md+C51zgAdzKXiDs+npb0TdOkjg A833M8HH25EjJki635jwFhuLcgX/KzcYq8nE82nXcIpZQGjlMGIbnXk= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:45 2024 by rpki-client on console-ams.rpki-client.org