$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/032056FFABA06741112BA404900B315C87E35361.cer File: 032056FFABA06741112BA404900B315C87E35361.cer (raw, json) Hash identifier: vPvW5BDOv2NubLQNVF86jQoqj9tDX+8zSfwgdzRkV/k= Subject key identifier: 03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7B808B428949622064ACA720225730053CE1AAB1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.mft caRepository: rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 18 Oct 2023 14:41:28 +0000 Certificate not after: Wed 16 Oct 2024 14:46:28 +0000 Subordinate resources: IP: 103.160.178.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:80:8b:42:89:49:62:20:64:ac:a7:20:22:57:30:05:3c:e1:aa:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 18 14:41:28 2023 GMT Not After : Oct 16 14:46:28 2024 GMT Subject: CN=032056FFABA06741112BA404900B315C87E35361 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:44:e0:67:00:a4:37:ca:4d:53:c0:1a:33:f5: 98:19:c9:36:c7:a8:de:8f:1b:70:dd:d9:14:8e:c4: 9f:f9:df:cb:ef:8b:ae:9a:f3:6c:09:77:5a:38:c7: 6b:7e:f0:ec:31:0d:0b:9d:51:81:5c:5f:17:6e:d7: 2f:6e:4c:83:7b:13:ce:92:3e:ec:f5:51:99:d1:51: 2a:1d:dd:51:54:d1:7c:3a:68:f4:2a:21:d0:c9:3e: 89:5b:a5:ea:43:c2:2d:32:df:ad:3b:6f:ed:33:fb: 10:ee:7c:a2:12:7a:a0:0f:6a:b0:3a:86:b9:2c:be: 19:e3:ab:79:64:ad:45:dc:18:ba:0c:27:90:92:81: 4b:5d:ca:7a:e4:f2:15:29:7d:4e:db:ec:2f:31:32: 2e:df:11:96:17:2d:da:36:ce:cf:2f:e6:09:2f:e8: 12:4c:3d:06:1e:9a:fb:ae:ac:1f:ec:6b:54:54:f8: 68:fa:67:ff:50:94:0c:d3:08:4c:d7:47:df:0f:c4: 2b:34:0b:ee:3f:94:3a:41:93:91:70:4c:09:73:ea: ed:38:71:fa:84:15:67:10:67:f4:37:52:f4:38:fd: 63:fe:d9:f5:0c:00:88:7b:bb:0c:32:ea:a4:ae:b6: ea:2b:51:78:05:73:63:52:c5:cd:71:16:7e:da:49: 5e:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 03:20:56:FF:AB:A0:67:41:11:2B:A4:04:90:0B:31:5C:87:E3:53:61 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/20a820b4-82ef-4412-be2e-5d6914bd4844/0/032056FFABA06741112BA404900B315C87E35361.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.178.0/23 Signature Algorithm: sha256WithRSAEncryption 9c:5f:23:61:06:cf:1a:f7:ec:13:4b:cd:41:e3:55:3a:42:1f: 1c:1d:10:f5:2e:6c:a4:7b:d0:2a:0e:1a:0e:04:8b:c7:16:da: 06:34:eb:9d:77:79:ad:22:b4:7b:e1:a6:7d:64:82:97:1e:8e: 7e:34:40:b1:53:13:2c:de:02:8d:b6:88:b4:e3:99:c3:05:a3: 1e:26:4f:36:27:0d:43:8e:1a:d2:89:7c:56:69:a2:e5:17:ba: 92:87:4d:2c:6c:be:e2:5b:e9:cc:a8:09:9f:47:1a:50:dd:20: cc:b8:65:88:e1:34:10:78:32:88:cd:9f:37:03:87:b9:9c:a6: 29:bb:d9:fa:36:42:99:6b:dc:04:22:40:f5:62:84:f4:6b:45: 20:d2:ee:76:87:53:d3:4d:5b:e9:eb:cb:2e:39:af:ba:67:60: ad:b3:3c:3b:8e:05:59:57:ac:6a:ef:0f:23:b6:db:92:2e:45: c0:83:8a:6f:42:2d:82:c0:f7:b7:e4:9e:64:4b:b8:e2:63:f2: 6c:04:9c:8c:d5:26:37:68:f3:19:23:16:e0:2c:71:2e:07:4d: ec:ba:e5:d7:59:9b:10:d7:41:6f:f1:15:54:65:80:2a:58:2a: 07:5a:f0:5d:6c:29:2a:fd:e1:7d:51:98:46:ae:27:b3:8a:46: ff:82:ea:23 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUe4CLQolJYiBkrKcgIlcwBTzhqrEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxODE0NDEyOFoX DTI0MTAxNjE0NDYyOFowMzExMC8GA1UEAxMoMDMyMDU2RkZBQkEwNjc0MTExMkJB NDA0OTAwQjMxNUM4N0UzNTM2MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMxE4GcApDfKTVPAGjP1mBnJNseo3o8bcN3ZFI7En/nfy++LrprzbAl3WjjH a37w7DENC51RgVxfF27XL25Mg3sTzpI+7PVRmdFRKh3dUVTRfDpo9Coh0Mk+iVul 6kPCLTLfrTtv7TP7EO58ohJ6oA9qsDqGuSy+GeOreWStRdwYugwnkJKBS13KeuTy FSl9TtvsLzEyLt8Rlhct2jbOzy/mCS/oEkw9Bh6a+66sH+xrVFT4aPpn/1CUDNMI TNdH3w/EKzQL7j+UOkGTkXBMCXPq7Thx+oQVZxBn9DdS9Dj9Y/7Z9QwAiHu7DDLq pK626itReAVzY1LFzXEWftpJXrMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAMgVv+roGdBESukBJALMVyH41NhMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yMGE4MjBiNC04MmVmLTQ0MTItYmUyZS01ZDY5MTRiZDQ4NDQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIwYTgyMGI0 LTgyZWYtNDQxMi1iZTJlLTVkNjkxNGJkNDg0NC8wLzAzMjA1NkZGQUJBMDY3NDEx MTJCQTQwNDkwMEIzMTVDODdFMzUzNjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnoLIwDQYJKoZIhvcNAQELBQADggEBAJxfI2EGzxr37BNLzUHjVTpCHxwdEPUu bKR70CoOGg4Ei8cW2gY06513ea0itHvhpn1kgpcejn40QLFTEyzeAo22iLTjmcMF ox4mTzYnDUOOGtKJfFZpouUXupKHTSxsvuJb6cyoCZ9HGlDdIMy4ZYjhNBB4MojN nzcDh7mcpim72fo2Qplr3AQiQPVihPRrRSDS7naHU9NNW+nryy45r7pnYK2zPDuO BVlXrGrvDyO225IuRcCDim9CLYLA97fknmRLuOJj8mwEnIzVJjdo8xkjFuAscS4H Tey65ddZmxDXQW/xFVRlgCpYKgda8F1sKSr94X1RmEauJ7OKRv+C6iM= -----END CERTIFICATE-----Generated at Sat Apr 27 21:40:13 2024 by rpki-client on console-ams.rpki-client.org