$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/FA86E23853549D2EF1D9F9C9222147A550E36A38.cer File: FA86E23853549D2EF1D9F9C9222147A550E36A38.cer (raw, json) Hash identifier: hKRS/jEggJfOUaMJbwzB9E3heHQ0ykRLsJM/Yo1GUU8= Subject key identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 34C2CD99ADE5FE01965AC865E72A6B7192291545 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft caRepository: rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 23 Oct 2024 01:23:52 +0000 Certificate not after: Wed 22 Oct 2025 01:28:52 +0000 Subordinate resources: IP: 103.55.28.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 06:34:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:c2:cd:99:ad:e5:fe:01:96:5a:c8:65:e7:2a:6b:71:92:29:15:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000 Validity Not Before: Oct 23 01:23:52 2024 GMT Not After : Oct 22 01:28:52 2025 GMT Subject: CN=FA86E23853549D2EF1D9F9C9222147A550E36A38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7a:91:34:8d:cd:6c:85:44:37:fc:d1:7a:f8: 8e:45:ac:56:1e:d4:26:49:47:cc:27:1c:de:06:95: b2:98:c1:b1:7e:80:5e:24:5c:1e:09:64:2b:4d:5b: 0b:ed:82:5a:16:1b:73:b3:59:e7:34:c2:a4:aa:0e: 3e:4c:b5:24:42:5d:11:3b:c0:24:1b:51:a5:ca:c2: 66:23:a8:ca:80:f6:ef:2a:57:c3:5f:2e:6c:73:ea: 49:6a:f4:a2:5d:ca:cd:08:21:bc:b3:e8:72:34:bc: 25:f2:3f:aa:f7:77:ac:20:1f:79:75:3d:8f:88:4a: 5a:a5:1a:bf:51:91:66:b3:82:a3:0e:4a:5e:0d:01: dc:4c:aa:f9:d9:e0:cf:4d:10:4d:19:ec:37:df:13: 8a:fa:ea:5f:d4:3c:44:94:70:13:1d:f6:16:d9:ee: 5b:36:f4:ee:61:65:95:51:f8:0a:a5:8b:da:62:9c: d4:61:b3:75:bd:3e:9d:5a:55:96:7f:f2:15:4a:57: 19:1f:e5:a6:91:85:94:9e:24:c4:cd:fd:1d:ff:a8: 51:b9:70:ba:05:a0:e5:52:cd:91:63:8d:05:84:60: 70:ba:ef:b1:b6:37:80:ab:51:7a:b2:85:46:fc:34: 09:36:0b:de:c5:93:63:aa:24:34:9d:0c:c3:6f:d3: cb:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FA:86:E2:38:53:54:9D:2E:F1:D9:F9:C9:22:21:47:A5:50:E3:6A:38 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e504793c-c209-469a-8e3c-eb3f5a83863f/0/FA86E23853549D2EF1D9F9C9222147A550E36A38.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.28.0/23 Signature Algorithm: sha256WithRSAEncryption 15:f9:a6:1d:fe:f8:c0:3c:10:41:eb:86:e7:cf:40:d7:10:bb: bb:c4:2a:d5:37:7a:88:42:48:99:e2:31:26:6d:fb:43:c9:ef: c8:4b:d1:55:ec:c8:41:52:2b:db:61:41:86:25:be:32:3d:bb: 77:80:5b:43:fd:c0:50:55:a5:d3:be:94:15:d0:96:bd:18:2d: cf:6c:7c:26:e3:8c:86:e2:81:62:54:9a:6a:c9:d7:dd:be:8c: 0b:2c:df:34:bc:9e:f7:32:7a:7b:48:a8:18:98:33:6a:aa:56: 32:11:12:a7:25:b7:65:be:c5:7e:67:a9:47:17:3d:02:c8:9b: 46:87:17:ae:7b:bd:ca:7e:44:f4:62:53:f7:8a:1a:fc:f1:d4: 86:7a:4c:80:17:69:81:73:45:d0:f6:02:2e:e9:95:af:3a:07: d3:0a:f1:e9:5e:95:ec:46:b2:6f:de:90:37:b7:ea:7f:e4:d9: d3:dc:29:de:b7:5d:2e:99:17:aa:ca:18:7b:9b:17:e8:b5:9f: cc:4c:d9:8a:07:06:00:70:6a:12:4d:a7:56:2f:71:3c:a5:d3: 5c:0d:46:e3:3e:a5:bc:a8:ed:39:66:ad:73:60:ae:ad:c3:95: a8:c3:61:b5:fe:61:ff:cc:4e:4e:b0:37:9c:99:93:43:6e:96: bc:ab:b4:4b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUNMLNma3l/gGWWshl5yprcZIpFUUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MTAyMzAxMjM1MloX DTI1MTAyMjAxMjg1MlowMzExMC8GA1UEAxMoRkE4NkUyMzg1MzU0OUQyRUYxRDlG OUM5MjIyMTQ3QTU1MEUzNkEzODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALh6kTSNzWyFRDf80Xr4jkWsVh7UJklHzCcc3gaVspjBsX6AXiRcHglkK01b C+2CWhYbc7NZ5zTCpKoOPky1JEJdETvAJBtRpcrCZiOoyoD27ypXw18ubHPqSWr0 ol3KzQghvLPocjS8JfI/qvd3rCAfeXU9j4hKWqUav1GRZrOCow5KXg0B3Eyq+dng z00QTRnsN98TivrqX9Q8RJRwEx32FtnuWzb07mFllVH4CqWL2mKc1GGzdb0+nVpV ln/yFUpXGR/lppGFlJ4kxM39Hf+oUblwugWg5VLNkWONBYRgcLrvsbY3gKtRerKF Rvw0CTYL3sWTY6okNJ0Mw2/Ty1MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPqG4jhTVJ0u8dn5ySIhR6VQ42o4MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNTA0NzkzYy1jMjA5LTQ2OWEtOGUzYy1lYjNmNWE4Mzg2M2YvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U1MDQ3OTNj LWMyMDktNDY5YS04ZTNjLWViM2Y1YTgzODYzZi8wL0ZBODZFMjM4NTM1NDlEMkVG MUQ5RjlDOTIyMjE0N0E1NTBFMzZBMzgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnNxwwDQYJKoZIhvcNAQELBQADggEBABX5ph3++MA8EEHrhufPQNcQu7vEKtU3 eohCSJniMSZt+0PJ78hL0VXsyEFSK9thQYYlvjI9u3eAW0P9wFBVpdO+lBXQlr0Y Lc9sfCbjjIbigWJUmmrJ192+jAss3zS8nvcyentIqBiYM2qqVjIREqclt2W+xX5n qUcXPQLIm0aHF657vcp+RPRiU/eKGvzx1IZ6TIAXaYFzRdD2Ai7pla86B9MK8ele lexGsm/ekDe36n/k2dPcKd63XS6ZF6rKGHubF+i1n8xM2YoHBgBwahJNp1YvcTyl 01wNRuM+pbyo7TlmrXNgrq3DlajDYbX+Yf/MTk6wN5yZk0NulryrtEs= -----END CERTIFICATE-----Generated at Sun Feb 16 21:08:23 2025 by rpki-client