$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D84954514E2FF8171F1DC8D8C911A96481911DBB.cer File: D84954514E2FF8171F1DC8D8C911A96481911DBB.cer (raw, json) Hash identifier: Gv4a38jK4R2Yv6sMId1FFGLbpWmamh+76XueSPbNkhY= Subject key identifier: D8:49:54:51:4E:2F:F8:17:1F:1D:C8:D8:C9:11:A9:64:81:91:1D:BB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 72D65E0E7129792168B5FB79BB4ED0A2304FF8D6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/D84954514E2FF8171F1DC8D8C911A96481911DBB.mft caRepository: rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 13 May 2024 16:09:18 +0000 Certificate not after: Mon 12 May 2025 16:14:18 +0000 Subordinate resources: IP: 103.175.87.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:d6:5e:0e:71:29:79:21:68:b5:fb:79:bb:4e:d0:a2:30:4f:f8:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 13 16:09:18 2024 GMT Not After : May 12 16:14:18 2025 GMT Subject: CN=D84954514E2FF8171F1DC8D8C911A96481911DBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:3e:e6:49:8a:c4:9d:b7:3f:e4:cf:cc:c7:71: 7a:b4:42:3c:ce:23:2c:8c:dc:a1:b1:19:df:04:93: 3e:b7:66:63:24:65:86:4f:61:78:d7:95:41:4c:f4: 1c:02:b9:20:cd:1c:d1:57:9a:88:19:e6:b2:c3:5e: ca:b6:82:be:28:c9:bd:4a:cf:0d:c3:2d:4a:35:fb: 70:2d:54:4e:7e:e0:a2:1c:7a:67:3e:e8:74:a8:4f: 28:b1:77:dc:8c:1f:13:83:ae:e2:61:db:64:3b:df: b8:a9:c6:e9:c5:17:1e:cf:f4:82:33:34:70:57:df: a0:94:44:2b:c8:42:87:27:1d:7c:76:4d:df:25:21: 3b:ef:ac:3b:9d:f2:fb:a0:08:8a:ed:5a:53:75:59: fa:84:41:4a:79:c3:4a:71:14:d6:b6:99:6e:8d:a3: 7a:7a:13:5c:00:63:04:86:1b:a8:4f:de:e7:94:63: 50:1b:a3:93:19:b9:a0:c1:ec:b5:e2:36:22:77:a0: 93:f5:12:fb:1a:92:46:23:d4:43:76:6e:34:76:14: d4:8d:be:79:c5:c9:af:18:1a:24:a3:64:43:86:b4: b9:3d:5d:1f:1d:fa:a2:b6:1a:55:a8:86:ee:b4:99: 44:e5:2c:a4:87:a0:82:e0:f3:71:c3:18:ce:a2:50: e8:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D8:49:54:51:4E:2F:F8:17:1F:1D:C8:D8:C9:11:A9:64:81:91:1D:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f5b8459a-e351-4c8d-bc29-5fd08c4c5941/0/D84954514E2FF8171F1DC8D8C911A96481911DBB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.87.0/24 Signature Algorithm: sha256WithRSAEncryption 52:fb:be:d3:fe:0e:5c:0a:ba:43:1f:01:00:4f:5d:03:fe:cc: 6f:71:75:dd:41:f0:19:a9:3d:f5:1b:02:60:c8:10:4f:3f:d9: 4b:72:a0:42:0e:c5:42:5c:41:62:66:e9:8d:36:1c:6d:18:bd: 66:87:eb:d8:af:3e:dc:ad:0c:70:4c:e2:91:c8:6e:78:24:ec: 8c:73:d6:97:18:de:79:61:27:f7:46:11:70:16:20:58:bd:10: b1:33:19:b8:29:05:82:68:63:c5:b9:5e:b0:19:52:6e:11:e4: a4:69:84:29:9f:92:f8:5a:62:08:4b:a2:f2:35:14:1b:f0:da: 5d:66:02:42:00:1e:f0:10:5d:83:44:fd:cc:ff:9b:ae:82:6c: 19:70:49:07:99:7a:6a:7c:95:3e:28:29:ff:66:7c:89:14:e3: da:29:eb:23:a9:f1:40:f9:5f:90:b6:9c:8b:29:80:1a:45:b6: 88:e9:08:3f:b1:8a:c0:19:71:43:49:7f:84:d7:4e:a4:51:81: 17:f1:b4:51:01:2a:4b:15:69:23:bb:13:f5:38:d2:8c:25:0a: 92:b0:0b:7c:b1:75:92:83:15:1f:4d:d1:5b:93:b0:5e:7e:9c: 4c:f3:43:7a:4a:c7:7b:96:d8:ef:6c:54:50:79:b3:81:a1:a2: 1a:cc:37:1b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUctZeDnEpeSFotft5u07QojBP+NYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUxMzE2MDkxOFoX DTI1MDUxMjE2MTQxOFowMzExMC8GA1UEAxMoRDg0OTU0NTE0RTJGRjgxNzFGMURD OEQ4QzkxMUE5NjQ4MTkxMURCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMM+5kmKxJ23P+TPzMdxerRCPM4jLIzcobEZ3wSTPrdmYyRlhk9heNeVQUz0 HAK5IM0c0VeaiBnmssNeyraCvijJvUrPDcMtSjX7cC1UTn7gohx6Zz7odKhPKLF3 3IwfE4Ou4mHbZDvfuKnG6cUXHs/0gjM0cFffoJREK8hChycdfHZN3yUhO++sO53y +6AIiu1aU3VZ+oRBSnnDSnEU1raZbo2jenoTXABjBIYbqE/e55RjUBujkxm5oMHs teI2Inegk/US+xqSRiPUQ3ZuNHYU1I2+ecXJrxgaJKNkQ4a0uT1dHx36orYaVaiG 7rSZROUspIegguDzccMYzqJQ6DkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNhJVFFOL/gXHx3I2MkRqWSBkR27MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mNWI4NDU5YS1lMzUxLTRjOGQtYmMyOS01ZmQwOGM0YzU5NDEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y1Yjg0NTlh LWUzNTEtNGM4ZC1iYzI5LTVmZDA4YzRjNTk0MS8wL0Q4NDk1NDUxNEUyRkY4MTcx RjFEQzhEOEM5MTFBOTY0ODE5MTFEQkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnr1cwDQYJKoZIhvcNAQELBQADggEBAFL7vtP+DlwKukMfAQBPXQP+zG9xdd1B 8BmpPfUbAmDIEE8/2UtyoEIOxUJcQWJm6Y02HG0YvWaH69ivPtytDHBM4pHIbngk 7Ixz1pcY3nlhJ/dGEXAWIFi9ELEzGbgpBYJoY8W5XrAZUm4R5KRphCmfkvhaYghL ovI1FBvw2l1mAkIAHvAQXYNE/cz/m66CbBlwSQeZemp8lT4oKf9mfIkU49op6yOp 8UD5X5C2nIspgBpFtojpCD+xisAZcUNJf4TXTqRRgRfxtFEBKksVaSO7E/U40owl CpKwC3yxdZKDFR9N0VuTsF5+nEzzQ3pKx3uW2O9sVFB5s4GhohrMNxs= -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:34 2024 by rpki-client on console-ams.rpki-client.org