$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CA978B7ACEF55A251B74721E04A034CA3601A88B.cer File: CA978B7ACEF55A251B74721E04A034CA3601A88B.cer (raw, json) Hash identifier: +UBNa5AMoH2bu1Mi3rC4Gh6ZxXi+m7EYnbuhPEbe/c4= Subject key identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 241BEE20EF8E58F9DB5DEB30CBBC3871F8641FB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft caRepository: rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 19 Nov 2024 09:24:18 +0000 Certificate not after: Tue 18 Nov 2025 09:29:18 +0000 Subordinate resources: IP: 103.83.236.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:1b:ee:20:ef:8e:58:f9:db:5d:eb:30:cb:bc:38:71:f8:64:1f:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 19 09:24:18 2024 GMT Not After : Nov 18 09:29:18 2025 GMT Subject: CN=CA978B7ACEF55A251B74721E04A034CA3601A88B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:4e:a1:0f:c1:82:af:be:57:88:07:3c:e4:6a: 24:68:d3:56:c3:0c:1f:8e:85:60:8d:ac:e1:28:4d: 91:34:31:95:37:9e:e1:b6:9d:37:f9:16:11:24:69: 1e:1c:6b:08:db:64:d3:d9:2e:06:28:bc:7a:a8:bd: af:7b:5b:08:c0:26:6d:38:93:44:b9:07:3a:09:12: 35:aa:33:b3:b7:d4:f0:5b:ab:a6:82:10:d3:d0:cd: a1:8f:2f:eb:8e:60:3c:81:a9:00:04:aa:be:16:9e: 10:63:71:78:a0:42:f3:ab:b6:e8:d3:76:6c:b7:73: 21:d6:7c:49:dc:5b:32:e7:8c:cd:31:ef:45:d0:c0: 4e:5c:21:29:c1:05:dc:04:22:b3:0b:98:9d:04:29: 9a:d0:6d:47:71:33:b7:6c:71:9a:f5:d9:85:d8:d7: 5b:1f:fb:ea:a1:6b:5c:6c:2f:27:94:c1:99:ca:60: 1e:c5:8f:ef:d5:57:73:4d:f9:df:35:b2:be:c4:6f: d5:e7:3b:4b:61:dc:00:89:3e:27:d6:7f:9a:50:97: e8:0d:f8:3a:39:88:db:f0:6a:08:7d:9c:d5:51:8a: 89:54:e1:6a:02:c0:ff:54:2a:a4:41:5a:08:b0:6a: 34:c6:37:00:10:c2:9c:61:e6:a5:17:cf:c2:42:48: d9:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CA:97:8B:7A:CE:F5:5A:25:1B:74:72:1E:04:A0:34:CA:36:01:A8:8B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bfa3cff7-2aa1-44df-914c-f19184f6f3b1/0/CA978B7ACEF55A251B74721E04A034CA3601A88B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.83.236.0/23 Signature Algorithm: sha256WithRSAEncryption 09:9a:a8:e8:a4:9d:d2:15:17:0e:d2:26:bd:01:89:61:35:a9: 28:97:b8:21:b3:0a:8c:13:b8:6f:c2:09:0c:45:38:82:18:61: 48:44:cf:62:b0:cf:b0:45:27:4e:c6:ca:9d:60:49:bb:3b:9f: 19:64:fc:5f:32:c6:12:51:9f:f3:7f:2c:a0:02:fb:ce:43:f8: 2d:2b:da:87:6a:88:75:fb:84:1c:e9:1c:f3:13:0f:63:3c:7a: 6d:6b:0e:a3:5a:25:f1:8d:4e:17:48:51:7e:6c:4e:2d:73:b8: 78:21:85:53:a0:ec:bc:f0:a5:e8:a1:37:54:d3:f3:60:75:31: 64:9c:d9:b8:7d:37:d1:e1:cc:9c:c8:df:5e:3e:9f:d8:08:93: 08:5e:0b:6c:7d:8a:5d:bd:63:db:d2:21:23:bc:ed:9a:1c:32: d0:7c:74:68:34:5e:c6:b6:75:15:e5:dd:d8:44:5e:06:10:aa: 74:d0:c8:33:f0:56:16:50:9c:ce:19:14:92:e8:a6:a6:cb:f8: 1e:b4:7b:7c:d0:d0:c5:1e:a0:75:65:94:8b:3b:0c:2a:18:01: 3b:04:55:63:fc:fc:e5:ea:9c:7f:e6:3f:da:a4:9d:27:8a:b9: 62:af:07:06:af:aa:7f:85:bd:cf:da:a5:6d:fb:5f:5e:1d:19: a3:fb:7e:ac -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJBvuIO+OWPnbXeswy7w4cfhkH7AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTExOTA5MjQxOFoX DTI1MTExODA5MjkxOFowMzExMC8GA1UEAxMoQ0E5NzhCN0FDRUY1NUEyNTFCNzQ3 MjFFMDRBMDM0Q0EzNjAxQTg4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFOoQ/Bgq++V4gHPORqJGjTVsMMH46FYI2s4ShNkTQxlTee4badN/kWESRp HhxrCNtk09kuBii8eqi9r3tbCMAmbTiTRLkHOgkSNaozs7fU8FurpoIQ09DNoY8v 645gPIGpAASqvhaeEGNxeKBC86u26NN2bLdzIdZ8SdxbMueMzTHvRdDATlwhKcEF 3AQiswuYnQQpmtBtR3Ezt2xxmvXZhdjXWx/76qFrXGwvJ5TBmcpgHsWP79VXc035 3zWyvsRv1ec7S2HcAIk+J9Z/mlCX6A34OjmI2/BqCH2c1VGKiVThagLA/1QqpEFa CLBqNMY3ABDCnGHmpRfPwkJI2QUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMqXi3rO9VolG3RyHgSgNMo2AaiLMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZmEzY2ZmNy0yYWExLTQ0ZGYtOTE0Yy1mMTkxODRmNmYzYjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYTNjZmY3 LTJhYTEtNDRkZi05MTRjLWYxOTE4NGY2ZjNiMS8wL0NBOTc4QjdBQ0VGNTVBMjUx Qjc0NzIxRTA0QTAzNENBMzYwMUE4OEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnU+wwDQYJKoZIhvcNAQELBQADggEBAAmaqOikndIVFw7SJr0BiWE1qSiXuCGz CowTuG/CCQxFOIIYYUhEz2Kwz7BFJ07Gyp1gSbs7nxlk/F8yxhJRn/N/LKAC+85D +C0r2odqiHX7hBzpHPMTD2M8em1rDqNaJfGNThdIUX5sTi1zuHghhVOg7Lzwpeih N1TT82B1MWSc2bh9N9HhzJzI314+n9gIkwheC2x9il29Y9vSISO87ZocMtB8dGg0 Xsa2dRXl3dhEXgYQqnTQyDPwVhZQnM4ZFJLopqbL+B60e3zQ0MUeoHVllIs7DCoY ATsEVWP8/OXqnH/mP9qknSeKuWKvBwavqn+Fvc/apW37X14dGaP7fqw= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:33 2024 by rpki-client on console-ams.rpki-client.org