$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280.cer File: E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280.cer (raw, json) Hash identifier: 6+D5iCpcR1V9MIy6pKpy+b0eVc11vxsMA20d7JRK7wg= Subject key identifier: E8:4D:B4:4F:00:08:62:4F:8E:76:93:BC:3B:E1:F9:BF:CD:DF:A2:80 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58E1D39CE813BE1724EB356FC0F51637B8B4AAE8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0eb96005-83a9-41e4-af5b-f3eaa8f23651/0/E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280.mft caRepository: rsync://repo-rpki.idnic.net/repo/0eb96005-83a9-41e4-af5b-f3eaa8f23651/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 04 Aug 2024 23:50:31 +0000 Certificate not after: Sun 03 Aug 2025 23:55:31 +0000 Subordinate resources: IP: 103.120.138.0/24 IP: 2001:df6:1d00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 Nov 2024 22:23:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e1:d3:9c:e8:13:be:17:24:eb:35:6f:c0:f5:16:37:b8:b4:aa:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 4 23:50:31 2024 GMT Not After : Aug 3 23:55:31 2025 GMT Subject: CN=E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:38:a1:86:3f:3e:b1:eb:7c:1e:cb:09:fb:d1: 02:fa:70:51:8e:14:75:3e:97:39:79:c2:0a:12:76: d3:8a:54:14:c9:97:2a:12:8e:33:8b:35:4f:68:3a: 8a:a0:73:32:1d:fa:c2:e3:65:bc:1f:89:3f:38:21: a1:c0:8b:af:32:99:b6:01:c8:3b:84:51:e3:02:ea: c4:cb:70:2e:a0:1b:b9:89:26:dc:a0:aa:ad:7e:af: 16:59:13:47:7c:e4:71:ad:39:2d:88:27:85:47:51: f1:a9:d4:45:ea:44:a8:98:33:05:12:9d:31:b4:6d: ba:8e:19:3b:07:16:19:7c:f6:b6:7d:c5:01:1b:13: ad:7e:af:fa:8d:d5:72:44:30:15:57:90:18:68:d5: 88:ae:c2:a0:0d:da:72:bc:92:09:e7:c8:da:c8:aa: ff:5e:33:b6:4b:0e:43:ef:86:0f:1d:4a:fb:20:c2: 41:cb:db:34:16:b5:c6:69:44:35:eb:aa:0c:28:cd: 60:7f:4d:93:1c:46:b3:44:5e:c1:7a:e1:c7:d8:c2: 7d:7d:74:41:67:e4:a0:35:83:4e:76:0d:cb:e0:c3: 11:a7:73:c5:0d:3f:6d:5b:82:6a:b7:a9:5c:55:95: d5:d0:fa:2a:78:26:16:61:cb:8a:67:7f:c3:99:73: ab:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E8:4D:B4:4F:00:08:62:4F:8E:76:93:BC:3B:E1:F9:BF:CD:DF:A2:80 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0eb96005-83a9-41e4-af5b-f3eaa8f23651/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0eb96005-83a9-41e4-af5b-f3eaa8f23651/0/E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.138.0/24 IPv6: 2001:df6:1d00::/48 Signature Algorithm: sha256WithRSAEncryption 41:5a:c6:e3:e5:3c:29:a0:82:1c:5e:38:ae:23:cc:9b:2c:01: 4d:2a:c5:2c:34:d2:4d:bf:4b:7a:65:cf:5a:7d:a7:b1:23:47: 17:89:35:0e:88:50:6f:29:63:55:5c:f0:db:fe:3e:0d:6e:28: 8e:dc:2f:81:8b:2e:a4:b2:0d:2d:18:38:38:1f:c6:13:0a:b4: 2e:3f:6b:a9:d5:fe:da:02:95:3a:67:01:31:34:18:66:68:0a: 67:c7:4c:99:93:aa:d3:84:cd:f5:46:9b:e9:9d:2e:10:09:94: 6d:36:f6:82:ba:69:c6:e5:c2:4e:0c:af:45:8a:67:83:8e:ca: 55:1b:02:d4:bc:c7:57:1d:ce:b2:1e:cb:ab:68:3e:58:c5:69: 19:83:ef:b9:b8:61:de:d4:36:e6:ef:d2:ec:18:1f:cb:07:3c: 4c:aa:4a:51:5a:64:bf:fb:c9:32:74:f2:30:af:d6:c4:df:ca: da:7b:e4:69:54:23:d7:bb:ef:2e:84:58:e7:7e:0f:b6:23:17: ad:a1:92:a5:ec:83:d0:be:02:cd:40:1d:aa:96:53:07:c5:cd: bb:24:a4:14:cc:8e:aa:48:d3:08:76:10:60:c4:ed:81:2f:1a: 2c:24:7a:36:61:93:79:d7:f0:11:73:e2:aa:99:ee:da:50:ba: 95:52:c4:e7 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUWOHTnOgTvhck6zVvwPUWN7i0qugwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDgwNDIzNTAzMVoX DTI1MDgwMzIzNTUzMVowMzExMC8GA1UEAxMoRTg0REI0NEYwMDA4NjI0RjhFNzY5 M0JDM0JFMUY5QkZDRERGQTI4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKY4oYY/PrHrfB7LCfvRAvpwUY4UdT6XOXnCChJ204pUFMmXKhKOM4s1T2g6 iqBzMh36wuNlvB+JPzghocCLrzKZtgHIO4RR4wLqxMtwLqAbuYkm3KCqrX6vFlkT R3zkca05LYgnhUdR8anURepEqJgzBRKdMbRtuo4ZOwcWGXz2tn3FARsTrX6v+o3V ckQwFVeQGGjViK7CoA3acrySCefI2siq/14ztksOQ++GDx1K+yDCQcvbNBa1xmlE NeuqDCjNYH9NkxxGs0RewXrhx9jCfX10QWfkoDWDTnYNy+DDEadzxQ0/bVuCarep XFWV1dD6KngmFmHLimd/w5lzqwUCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOhNtE8ACGJPjnaTvDvh+b/N36KAMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZWI5NjAwNS04M2E5LTQxZTQtYWY1Yi1mM2VhYThmMjM2NTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlYjk2MDA1 LTgzYTktNDFlNC1hZjViLWYzZWFhOGYyMzY1MS8wL0U4NERCNDRGMDAwODYyNEY4 RTc2OTNCQzNCRTFGOUJGQ0RERkEyODAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABneIowDwQCAAIwCQMHACABDfYdADANBgkqhkiG9w0BAQsFAAOCAQEAQVrG4+U8 KaCCHF44riPMmywBTSrFLDTSTb9LemXPWn2nsSNHF4k1DohQbyljVVzw2/4+DW4o jtwvgYsupLINLRg4OB/GEwq0Lj9rqdX+2gKVOmcBMTQYZmgKZ8dMmZOq04TN9Uab 6Z0uEAmUbTb2grppxuXCTgyvRYpng47KVRsC1LzHVx3Osh7Lq2g+WMVpGYPvubhh 3tQ25u/S7Bgfywc8TKpKUVpkv/vJMnTyMK/WxN/K2nvkaVQj17vvLoRY534PtiMX raGSpeyD0L4CzUAdqpZTB8XNuySkFMyOqkjTCHYQYMTtgS8aLCR6NmGTedfwEXPi qpnu2lC6lVLE5w== -----END CERTIFICATE-----Generated at Mon Nov 25 13:14:34 2024 by rpki-client on console-ams.rpki-client.org