$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/ACDA022F7F3E28A6E131DA80D4C418E83CD07C73.cer File: ACDA022F7F3E28A6E131DA80D4C418E83CD07C73.cer (raw, json) Hash identifier: GxqkpItQ7MKiDQcETSPn9YCie6Gz43YiM9hOxKUsFxc= Subject key identifier: AC:DA:02:2F:7F:3E:28:A6:E1:31:DA:80:D4:C4:18:E8:3C:D0:7C:73 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7C694ACC70D967F3D29BBEF943896D66C3F71FC3 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6febb68a-8a5d-411c-8bb3-833423100b6e/0/ACDA022F7F3E28A6E131DA80D4C418E83CD07C73.mft caRepository: rsync://repo-rpki.idnic.net/repo/6febb68a-8a5d-411c-8bb3-833423100b6e/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 01 Mar 2024 19:09:33 +0000 Certificate not after: Fri 28 Feb 2025 19:14:33 +0000 Subordinate resources: IP: 116.58.192.0/21 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:69:4a:cc:70:d9:67:f3:d2:9b:be:f9:43:89:6d:66:c3:f7:1f:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 1 19:09:33 2024 GMT Not After : Feb 28 19:14:33 2025 GMT Subject: CN=ACDA022F7F3E28A6E131DA80D4C418E83CD07C73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:43:bd:56:81:5c:b3:76:3c:20:de:a6:b1:7b: 25:dc:24:d5:43:d2:21:ef:90:04:e1:b9:e0:fa:68: e8:b4:7b:4e:24:be:02:8b:43:2c:89:c0:4e:0b:77: e7:6d:13:08:81:42:65:ff:ee:74:ab:9c:2e:6a:0e: 22:a6:e9:e3:c3:1d:f5:fb:9b:16:08:81:3b:a0:86: c6:93:51:ad:44:7b:f5:e4:1b:4d:6d:92:72:cd:99: 6f:b2:6b:de:9c:73:24:dc:a3:c0:ca:51:f2:0b:70: 05:76:a0:20:62:e7:9a:e0:2b:d7:42:7e:53:1c:ae: 27:78:ed:b4:69:66:ed:7d:f4:ca:b8:61:9b:de:01: 35:d9:eb:1e:8c:96:1a:9a:34:28:b5:ee:21:c1:d9: 62:57:e5:eb:08:bb:fb:ef:1e:5d:f2:f9:47:75:28: 78:11:f2:77:07:a6:48:f4:52:3e:5b:1f:f2:c2:5b: ee:77:9f:2d:9f:f6:e4:6f:ad:a9:73:5b:b0:08:79: d3:c0:61:14:06:f9:89:1b:b3:27:a6:b0:b2:f8:3c: 48:10:c5:d6:38:b3:14:54:00:2e:8b:2d:63:88:dd: ac:a1:f1:5f:91:96:6c:1d:71:1e:4a:bc:9d:a6:37: 1f:50:46:34:b3:ec:a1:d0:07:76:ca:c1:63:ef:a6: 5b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AC:DA:02:2F:7F:3E:28:A6:E1:31:DA:80:D4:C4:18:E8:3C:D0:7C:73 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6febb68a-8a5d-411c-8bb3-833423100b6e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6febb68a-8a5d-411c-8bb3-833423100b6e/0/ACDA022F7F3E28A6E131DA80D4C418E83CD07C73.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 116.58.192.0/21 Signature Algorithm: sha256WithRSAEncryption 89:36:aa:28:65:b6:1a:4b:36:7f:b3:f4:e2:51:09:46:89:b5: 5e:b5:37:fc:56:69:b1:cb:ba:ca:ff:09:06:f1:95:8c:6c:29: d0:b3:17:a0:57:48:ed:ea:ec:99:a8:83:a3:12:f1:0f:11:96: 14:d5:eb:85:3b:4e:44:1d:1f:2a:03:7b:88:a5:62:df:a2:c9: 18:a7:bd:0b:6c:d2:db:b5:bc:86:f9:cf:10:d5:db:7a:e0:00: c6:d9:07:84:f7:16:4c:30:24:43:1a:de:c6:b2:45:ef:2f:bb: 78:b8:63:eb:c8:9f:aa:9e:b6:03:96:15:99:5f:fa:df:94:3a: 0e:7c:1d:30:65:8d:78:96:12:69:2c:a2:54:4d:1a:a3:f5:7d: 85:23:7c:60:8b:a2:6a:e5:44:7c:68:af:70:21:fe:24:5c:85: e2:9b:90:dd:29:9a:cb:ed:5f:b6:12:8b:d4:a4:a5:f5:f3:97: e4:c5:65:cd:86:63:29:46:10:89:a1:7e:f4:4d:37:8c:6b:47: 45:bb:66:1e:78:18:30:95:fb:77:09:f5:53:20:81:4c:2a:c6: 2a:58:3b:a5:d5:aa:5b:eb:e0:e3:77:2c:56:99:63:d7:d6:c6: 8c:93:bd:b6:3d:f5:27:61:72:70:7e:48:55:0b:bc:e7:12:2f: 6f:7f:8d:c8 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUfGlKzHDZZ/PSm775Q4ltZsP3H8MwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwMTE5MDkzM1oX DTI1MDIyODE5MTQzM1owMzExMC8GA1UEAxMoQUNEQTAyMkY3RjNFMjhBNkUxMzFE QTgwRDRDNDE4RTgzQ0QwN0M3MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM5DvVaBXLN2PCDeprF7Jdwk1UPSIe+QBOG54Ppo6LR7TiS+AotDLInATgt3 520TCIFCZf/udKucLmoOIqbp48Md9fubFgiBO6CGxpNRrUR79eQbTW2Scs2Zb7Jr 3pxzJNyjwMpR8gtwBXagIGLnmuAr10J+UxyuJ3jttGlm7X30yrhhm94BNdnrHoyW Gpo0KLXuIcHZYlfl6wi7++8eXfL5R3UoeBHydwemSPRSPlsf8sJb7nefLZ/25G+t qXNbsAh508BhFAb5iRuzJ6awsvg8SBDF1jizFFQALostY4jdrKHxX5GWbB1xHkq8 naY3H1BGNLPsodAHdsrBY++mW2ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKzaAi9/Piim4THagNTEGOg80HxzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82ZmViYjY4YS04YTVkLTQxMWMtOGJiMy04MzM0MjMxMDBiNmUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZmZWJiNjhh LThhNWQtNDExYy04YmIzLTgzMzQyMzEwMGI2ZS8wL0FDREEwMjJGN0YzRTI4QTZF MTMxREE4MEQ0QzQxOEU4M0NEMDdDNzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAN0OsAwDQYJKoZIhvcNAQELBQADggEBAIk2qihlthpLNn+z9OJRCUaJtV61N/xW abHLusr/CQbxlYxsKdCzF6BXSO3q7Jmog6MS8Q8RlhTV64U7TkQdHyoDe4ilYt+i yRinvQts0tu1vIb5zxDV23rgAMbZB4T3FkwwJEMa3sayRe8vu3i4Y+vIn6qetgOW FZlf+t+UOg58HTBljXiWEmksolRNGqP1fYUjfGCLomrlRHxor3Ah/iRcheKbkN0p msvtX7YSi9SkpfXzl+TFZc2GYylGEImhfvRNN4xrR0W7Zh54GDCV+3cJ9VMggUwq xipYO6XVqlvr4ON3LFaZY9fWxoyTvbY99SdhcnB+SFULvOcSL29/jcg= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:26 2024 by rpki-client on console-ams.rpki-client.org