$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.cer File: AFFB903F876CB3B8748A1C899458FF38A0D06D4B.cer (raw, json) Hash identifier: YLi57Jcze6RYYvGzJkljlEPTzGNciNvs/0NemcEf6Do= Subject key identifier: AF:FB:90:3F:87:6C:B3:B8:74:8A:1C:89:94:58:FF:38:A0:D0:6D:4B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6EF692B83C7E0556B932915F4A8203BFAD054482 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.mft caRepository: rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 18 Apr 2024 10:47:17 +0000 Certificate not after: Thu 17 Apr 2025 10:52:17 +0000 Subordinate resources: IP: 103.184.63.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:f6:92:b8:3c:7e:05:56:b9:32:91:5f:4a:82:03:bf:ad:05:44:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 18 10:47:17 2024 GMT Not After : Apr 17 10:52:17 2025 GMT Subject: CN=AFFB903F876CB3B8748A1C899458FF38A0D06D4B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9b:2b:c2:4c:bb:ed:2f:9a:19:f9:60:b2:fa: fe:46:03:8f:0f:32:21:ed:a0:8e:59:b3:f1:06:b0: 35:40:23:ce:8d:b2:7f:4b:ec:8d:b9:fa:38:60:14: a7:c7:19:0e:a8:68:5d:d9:9c:6b:8c:71:6e:08:e9: 39:35:c1:1a:3d:2a:e8:b3:92:5c:dc:4f:06:97:03: 2c:76:0f:9c:24:e3:48:bc:0a:2c:68:6b:f2:15:47: 7f:16:92:61:0f:e3:57:8d:e2:d0:2a:44:d8:95:cb: 21:a5:15:89:a3:8b:e9:fd:5c:a1:5b:08:0a:b5:4a: df:5c:bf:e7:e1:6e:c1:db:ef:75:3c:39:1c:5e:6c: 4d:17:d0:89:3f:e0:0a:1f:1f:91:7e:41:07:67:70: 61:8c:a2:1d:54:98:09:5a:75:ee:b7:31:aa:16:20: 36:32:9f:32:ed:92:c8:85:a8:14:e1:61:41:19:60: 65:bf:21:a3:3a:f5:55:38:78:0e:6d:78:0c:8b:08: f1:16:99:42:9e:56:0a:2a:20:17:d7:16:a8:fd:7d: 09:56:67:66:48:ba:0e:15:44:29:2a:93:18:85:74: c0:08:91:4c:c8:51:c2:5d:d1:2e:10:06:8d:59:e8: ea:77:81:ee:d5:c8:61:0f:35:0d:61:a7:e6:90:87: 38:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AF:FB:90:3F:87:6C:B3:B8:74:8A:1C:89:94:58:FF:38:A0:D0:6D:4B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/94c4314f-d3b8-4e06-b245-4a0270b22ada/0/AFFB903F876CB3B8748A1C899458FF38A0D06D4B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.63.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:df:f0:3f:ca:41:7c:7c:d6:98:b5:09:cd:1f:f5:fb:33:76: 6b:eb:45:ac:97:67:86:3f:6e:1c:cc:b4:5f:df:24:51:3c:75: cb:9d:fa:f2:ca:ef:b8:ab:29:04:70:8b:93:5f:96:ae:a2:de: 45:0a:63:e3:c9:40:4e:10:8b:54:d1:4f:25:cd:a2:31:00:e7: 6e:0b:9c:56:3a:97:e2:4d:fb:29:28:f6:e6:9e:88:77:15:37: 78:6f:d1:d6:7e:2f:66:9a:81:d4:cf:f6:4b:32:1a:86:ed:f2: 29:6f:33:c4:ad:71:72:6c:05:d4:81:50:c4:2c:3b:a3:e3:f5: 3e:b7:0c:f8:21:27:6c:c5:9b:cb:1c:f1:f4:63:8f:ec:27:da: f3:84:a1:db:17:a0:35:e1:b0:98:5a:88:d2:0e:a6:cc:c9:b2: ca:02:4b:df:7a:b0:80:93:d8:93:30:f6:0c:52:cb:e0:2a:76: 18:27:08:65:11:bc:87:c9:01:99:3c:d5:71:23:59:b9:6f:e0: 69:cf:c3:2c:73:71:7d:4e:f6:a8:9c:2d:3d:56:d1:de:e2:36: 56:01:39:b7:19:58:f5:45:3b:e1:bc:9a:13:b3:f9:cf:62:a8: a5:f0:c1:3b:64:2c:db:90:93:df:31:7b:7f:7d:27:e2:78:3d: 12:30:60:d8 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbvaSuDx+BVa5MpFfSoIDv60FRIIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxODEwNDcxN1oX DTI1MDQxNzEwNTIxN1owMzExMC8GA1UEAxMoQUZGQjkwM0Y4NzZDQjNCODc0OEEx Qzg5OTQ1OEZGMzhBMEQwNkQ0QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKibK8JMu+0vmhn5YLL6/kYDjw8yIe2gjlmz8QawNUAjzo2yf0vsjbn6OGAU p8cZDqhoXdmca4xxbgjpOTXBGj0q6LOSXNxPBpcDLHYPnCTjSLwKLGhr8hVHfxaS YQ/jV43i0CpE2JXLIaUViaOL6f1coVsICrVK31y/5+FuwdvvdTw5HF5sTRfQiT/g Ch8fkX5BB2dwYYyiHVSYCVp17rcxqhYgNjKfMu2SyIWoFOFhQRlgZb8hozr1VTh4 Dm14DIsI8RaZQp5WCiogF9cWqP19CVZnZki6DhVEKSqTGIV0wAiRTMhRwl3RLhAG jVno6neB7tXIYQ81DWGn5pCHOCcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK/7kD+HbLO4dIociZRY/zig0G1LMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85NGM0MzE0Zi1kM2I4LTRlMDYtYjI0NS00YTAyNzBiMjJhZGEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk0YzQzMTRm LWQzYjgtNGUwNi1iMjQ1LTRhMDI3MGIyMmFkYS8wL0FGRkI5MDNGODc2Q0IzQjg3 NDhBMUM4OTk0NThGRjM4QTBEMDZENEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnuD8wDQYJKoZIhvcNAQELBQADggEBAD/f8D/KQXx81pi1Cc0f9fszdmvrRayX Z4Y/bhzMtF/fJFE8dcud+vLK77irKQRwi5Nflq6i3kUKY+PJQE4Qi1TRTyXNojEA 524LnFY6l+JN+yko9uaeiHcVN3hv0dZ+L2aagdTP9ksyGobt8ilvM8StcXJsBdSB UMQsO6Pj9T63DPghJ2zFm8sc8fRjj+wn2vOEodsXoDXhsJhaiNIOpszJssoCS996 sICT2JMw9gxSy+AqdhgnCGURvIfJAZk81XEjWblv4GnPwyxzcX1O9qicLT1W0d7i NlYBObcZWPVFO+G8mhOz+c9iqKXwwTtkLNuQk98xe399J+J4PRIwYNg= -----END CERTIFICATE-----Generated at Wed May 8 14:59:54 2024 by rpki-client on console-ams.rpki-client.org