$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AD5F121BCE742FD0358AE347D984F209BC381871.cer File: AD5F121BCE742FD0358AE347D984F209BC381871.cer (raw, json) Hash identifier: pFjm69Yi5dVQSZcVtYkZTOz6PyjfPeOhgG9/FQQvCVo= Subject key identifier: AD:5F:12:1B:CE:74:2F:D0:35:8A:E3:47:D9:84:F2:09:BC:38:18:71 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0C84594522B6282F7C02D4A2EFDA9F7F66E51566 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/AD5F121BCE742FD0358AE347D984F209BC381871.mft caRepository: rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 19 Aug 2023 07:59:05 +0000 Certificate not after: Sat 17 Aug 2024 08:04:05 +0000 Subordinate resources: IP: 103.170.24.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:84:59:45:22:b6:28:2f:7c:02:d4:a2:ef:da:9f:7f:66:e5:15:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 19 07:59:05 2023 GMT Not After : Aug 17 08:04:05 2024 GMT Subject: CN=AD5F121BCE742FD0358AE347D984F209BC381871 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:93:14:a3:38:b3:1c:c1:0e:99:3c:b8:06:69: fa:95:77:5e:a1:e6:72:4e:03:59:a0:e6:ee:9a:32: 71:23:7d:72:b6:14:ce:f9:f9:6c:26:08:21:fe:4b: 0d:71:79:31:6e:34:9f:2b:8b:5f:bc:4a:c4:c5:18: 34:9f:0e:3a:ec:ef:13:a0:8b:9c:2a:41:a3:81:05: 84:05:cd:ac:60:76:27:b5:fb:de:72:4e:11:6c:1f: 3b:e3:d1:fb:fc:5b:3d:50:1b:8f:8e:71:c1:e8:61: 1c:4b:5d:9c:98:7d:c2:44:0c:d8:d0:cf:1b:6e:35: 6c:bb:39:b5:38:17:bd:9d:af:2c:44:8b:35:0c:fa: 07:f7:fc:da:d6:69:44:80:fe:9d:c1:03:41:c8:e9: 63:ca:41:0b:43:32:44:34:e9:9a:42:4a:01:f9:95: fc:4c:29:f1:ce:e2:3d:ce:d6:c1:b8:26:e3:3a:4b: 9b:81:3b:f2:f1:77:28:ad:a6:3a:6b:51:8e:70:43: 7d:e4:a8:5b:dc:7b:2e:65:df:d1:12:eb:ef:fb:12: 8c:72:df:1a:01:5b:a3:d3:42:22:74:f7:ca:b3:f5: 30:f9:ef:db:c3:ca:04:e3:71:d9:55:01:f2:cd:19: 08:72:41:ec:71:22:39:4a:74:69:e2:01:54:70:63: 71:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AD:5F:12:1B:CE:74:2F:D0:35:8A:E3:47:D9:84:F2:09:BC:38:18:71 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7b40b09e-e9f8-4826-92b5-ba9d57579b26/0/AD5F121BCE742FD0358AE347D984F209BC381871.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.170.24.0/23 Signature Algorithm: sha256WithRSAEncryption 28:f8:5a:66:f9:7c:27:5c:73:8f:df:fe:8c:85:8e:65:8e:a6: 34:70:a8:f4:91:1f:9a:8a:a2:a4:6f:f5:30:51:06:e7:f3:c2: 30:30:c5:98:73:1b:af:05:5b:9b:36:bb:38:64:b6:cf:60:da: e1:1d:0b:3a:e4:26:44:c6:e4:10:6b:1a:41:51:ac:09:2a:2b: 7c:27:94:35:db:2e:44:16:d4:7c:00:d7:03:56:79:43:68:f5: 1b:70:b3:45:92:ac:31:49:81:76:27:15:8a:60:41:13:af:0c: f8:e8:bf:de:cf:a5:5a:b1:ad:57:ad:2f:51:b4:27:7d:84:29: 87:bc:f4:a0:b0:58:63:f0:a8:74:34:54:79:c6:b2:3c:17:68: f4:f8:81:ea:f4:5e:7c:bd:6c:4c:49:c2:e1:ef:b8:b0:d6:72: e7:55:95:75:24:82:a3:ec:e6:3f:9b:43:51:47:82:ea:b4:1f: e0:29:d7:d6:df:62:4d:f1:d7:17:25:a5:d3:29:db:2a:cd:9a: ea:a5:c1:a4:77:29:72:99:9c:a6:5e:2c:b0:47:05:c7:b3:c1: 3b:40:80:68:30:8b:af:fb:28:9c:d7:af:c4:ae:e4:7d:f4:f0: 35:ad:0c:08:76:18:03:de:98:13:3b:12:de:8e:c4:1e:c8:26: 07:7a:35:e6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDIRZRSK2KC98AtSi79qff2blFWYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxOTA3NTkwNVoX DTI0MDgxNzA4MDQwNVowMzExMC8GA1UEAxMoQUQ1RjEyMUJDRTc0MkZEMDM1OEFF MzQ3RDk4NEYyMDlCQzM4MTg3MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOCTFKM4sxzBDpk8uAZp+pV3XqHmck4DWaDm7poycSN9crYUzvn5bCYIIf5L DXF5MW40nyuLX7xKxMUYNJ8OOuzvE6CLnCpBo4EFhAXNrGB2J7X73nJOEWwfO+PR +/xbPVAbj45xwehhHEtdnJh9wkQM2NDPG241bLs5tTgXvZ2vLESLNQz6B/f82tZp RID+ncEDQcjpY8pBC0MyRDTpmkJKAfmV/Ewp8c7iPc7Wwbgm4zpLm4E78vF3KK2m OmtRjnBDfeSoW9x7LmXf0RLr7/sSjHLfGgFbo9NCInT3yrP1MPnv28PKBONx2VUB 8s0ZCHJB7HEiOUp0aeIBVHBjcZ0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK1fEhvOdC/QNYrjR9mE8gm8OBhxMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YjQwYjA5ZS1lOWY4LTQ4MjYtOTJiNS1iYTlkNTc1NzliMjYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiNDBiMDll LWU5ZjgtNDgyNi05MmI1LWJhOWQ1NzU3OWIyNi8wL0FENUYxMjFCQ0U3NDJGRDAz NThBRTM0N0Q5ODRGMjA5QkMzODE4NzEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqhgwDQYJKoZIhvcNAQELBQADggEBACj4Wmb5fCdcc4/f/oyFjmWOpjRwqPSR H5qKoqRv9TBRBufzwjAwxZhzG68FW5s2uzhkts9g2uEdCzrkJkTG5BBrGkFRrAkq K3wnlDXbLkQW1HwA1wNWeUNo9Rtws0WSrDFJgXYnFYpgQROvDPjov97PpVqxrVet L1G0J32EKYe89KCwWGPwqHQ0VHnGsjwXaPT4ger0Xny9bExJwuHvuLDWcudVlXUk gqPs5j+bQ1FHguq0H+Ap19bfYk3x1xclpdMp2yrNmuqlwaR3KXKZnKZeLLBHBcez wTtAgGgwi6/7KJzXr8Su5H308DWtDAh2GAPemBM7Et6OxB7IJgd6NeY= -----END CERTIFICATE-----Generated at Wed May 8 04:37:55 2024 by rpki-client on console-fra.rpki-client.org