$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer File: FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer (raw, json) Hash identifier: TfBHPc8h+MVDZ81615IiHRG01/gASUT54XgcnvQtEN0= Subject key identifier: FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 790EE697EEF153DB520C32BCD28CA64E214DCBAB Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.mft caRepository: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 17 May 2024 15:33:32 +0000 Certificate not after: Fri 16 May 2025 15:38:32 +0000 Subordinate resources: IP: 103.177.14.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:0e:e6:97:ee:f1:53:db:52:0c:32:bc:d2:8c:a6:4e:21:4d:cb:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 17 15:33:32 2024 GMT Not After : May 16 15:38:32 2025 GMT Subject: CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:be:74:c0:5e:fb:e7:66:4a:a1:09:31:c0:96: 29:4d:3e:d2:6e:74:73:89:2b:8e:8f:79:a8:ec:0c: 2f:8f:a5:e7:ef:c9:25:2c:27:75:75:9a:bd:cf:1e: 53:ef:9a:ca:d5:a3:ae:84:6b:82:f3:1d:64:fb:a4: b0:01:12:2d:60:6c:21:13:e5:e3:a5:a6:6d:57:45: 7f:75:80:fe:97:45:61:d3:22:db:b6:c4:3e:e8:56: b9:a6:15:1c:69:58:03:3f:49:ce:77:29:e1:1d:e9: 80:a2:c6:34:4b:67:9e:49:1a:2f:4a:ea:8e:80:8f: 53:30:a6:ce:06:41:df:69:52:b4:b4:a0:46:6f:c4: 62:cb:83:44:c8:70:f0:0f:9b:a1:fe:3a:d2:89:35: cd:b2:46:09:3b:84:4b:47:d7:f4:bd:55:fc:d8:6e: 40:e6:9e:ab:fb:42:3c:cf:69:49:b1:3d:71:4e:30: dd:e0:81:69:f9:ba:83:49:cc:52:43:e1:2b:33:1c: 73:69:2e:03:56:2c:32:2f:7f:9b:99:c2:d8:25:c9: fc:e0:8a:5e:49:90:4e:21:d6:b9:8f:ea:23:f3:9e: 2f:0f:d5:c3:75:71:53:16:83:42:a0:11:79:e3:9d: 42:94:30:5c:a9:d9:35:c2:46:f3:f0:a6:13:a1:f3: 0b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.14.0/23 Signature Algorithm: sha256WithRSAEncryption 4c:cd:74:e8:7d:09:c5:e4:0d:72:0f:fb:ce:e0:67:4c:84:6d: c7:c1:5c:39:13:09:0d:53:97:e4:76:f5:1f:89:93:cb:6d:ba: 59:b2:9c:87:6b:8c:a7:03:44:f6:f0:2e:fc:57:21:1f:da:9f: d0:cb:a6:83:e5:39:4c:6a:27:b1:03:8e:2c:37:70:50:ad:3f: 3e:a1:5d:bb:8f:c8:2b:2a:96:cb:fe:de:60:14:17:68:04:5e: 38:81:f6:ce:11:8f:d6:26:b1:78:5f:37:59:9e:c0:bf:95:80: 58:d4:a0:77:39:18:6f:f9:f2:f7:d9:2d:2d:e2:2b:60:20:8c: a3:c8:0d:c0:de:98:fc:69:d0:8a:30:3c:3e:39:78:4b:87:f3: 7f:11:b5:e6:76:0b:ee:36:47:ff:a0:6b:df:07:3b:cb:2d:c5: 39:a5:09:55:b7:04:a0:a7:bb:b9:1d:83:e4:ea:bd:e0:51:e2: be:a3:e1:e2:05:df:4a:b8:9c:67:26:30:bb:80:c9:de:6a:db: 29:b0:47:96:da:78:3a:c9:2b:6f:ac:88:a3:55:2e:47:88:f2: 43:7e:ab:c4:70:8d:c8:5a:49:94:19:e7:c2:a9:1b:4c:54:f2: b0:98:a0:e9:10:14:bf:9f:1a:39:f2:0c:03:08:64:89:3c:74: 07:09:36:bb -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUeQ7ml+7xU9tSDDK80oymTiFNy6swDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUxNzE1MzMzMloX DTI1MDUxNjE1MzgzMlowMzExMC8GA1UEAxMoRkY3NzUwN0U2RDFGMEUwQjZFQjAx MTJFOUNGQkQxQUYxQzFGNkRENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMu+dMBe++dmSqEJMcCWKU0+0m50c4krjo95qOwML4+l5+/JJSwndXWavc8e U++aytWjroRrgvMdZPuksAESLWBsIRPl46WmbVdFf3WA/pdFYdMi27bEPuhWuaYV HGlYAz9Jzncp4R3pgKLGNEtnnkkaL0rqjoCPUzCmzgZB32lStLSgRm/EYsuDRMhw 8A+bof460ok1zbJGCTuES0fX9L1V/NhuQOaeq/tCPM9pSbE9cU4w3eCBafm6g0nM UkPhKzMcc2kuA1YsMi9/m5nC2CXJ/OCKXkmQTiHWuY/qI/OeLw/Vw3VxUxaDQqAR eeOdQpQwXKnZNcJG8/CmE6HzC0UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFP93UH5tHw4LbrARLpz70a8cH23UMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mYmUwNDAzOC1hMWI2LTQzMmMtODU0Yi1jYzZlOGNmMzJlMDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiZTA0MDM4 LWExYjYtNDMyYy04NTRiLWNjNmU4Y2YzMmUwNi8wL0ZGNzc1MDdFNkQxRjBFMEI2 RUIwMTEyRTlDRkJEMUFGMUMxRjZERDQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsQ4wDQYJKoZIhvcNAQELBQADggEBAEzNdOh9CcXkDXIP+87gZ0yEbcfBXDkT CQ1Tl+R29R+Jk8ttulmynIdrjKcDRPbwLvxXIR/an9DLpoPlOUxqJ7EDjiw3cFCt Pz6hXbuPyCsqlsv+3mAUF2gEXjiB9s4Rj9YmsXhfN1mewL+VgFjUoHc5GG/58vfZ LS3iK2AgjKPIDcDemPxp0IowPD45eEuH838RteZ2C+42R/+ga98HO8stxTmlCVW3 BKCnu7kdg+TqveBR4r6j4eIF30q4nGcmMLuAyd5q2ymwR5baeDrJK2+siKNVLkeI 8kN+q8RwjchaSZQZ58KpG0xU8rCYoOkQFL+fGjnyDAMIZIk8dAcJNrs= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:53 2024 by rpki-client on console-ams.rpki-client.org