$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer File: 0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.cer (raw, json) Hash identifier: wC6pZgKaeBlBzUyoQbpYPVjhkk85ALKod17Qm1dpZnw= Subject key identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6A02A0816B0999BF49D52BFF99414EFB6141DED0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft caRepository: rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 08:19:49 +0000 Certificate not after: Mon 29 Jul 2024 08:24:49 +0000 Subordinate resources: IP: 110.76.144.0/21 IP: 117.103.168.0/21 IP: 2406:9300::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:02:a0:81:6b:09:99:bf:49:d5:2b:ff:99:41:4e:fb:61:41:de:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 08:19:49 2023 GMT Not After : Jul 29 08:24:49 2024 GMT Subject: CN=0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:cc:93:d1:15:b2:69:90:ae:93:96:b3:e7:81: fa:7b:d6:e8:b9:23:55:1d:d8:0a:0b:83:09:6c:a5: c4:0b:5a:64:9f:3d:b4:8e:23:c0:b8:42:f0:32:cd: ee:b9:29:56:6a:6d:c7:f0:a7:7b:c4:80:da:5d:94: 24:f5:39:09:32:b5:a2:22:3a:93:ce:d2:78:61:68: b0:fc:e5:09:88:36:c5:bc:42:79:ab:7d:65:d3:b2: a8:6d:f4:4c:72:19:e3:21:2b:4d:92:aa:73:08:7c: 4e:f4:8f:2d:d1:c6:3d:b8:85:37:f0:22:d5:1a:fb: 27:11:65:91:20:a8:0c:5e:7b:b4:26:f1:b3:b9:b3: 82:e2:4e:c1:30:15:bc:e2:a4:1f:62:67:dd:23:41: 8e:a8:4f:0c:21:f0:50:fb:b1:bf:ce:97:fe:34:89: 3b:20:e4:29:a7:1e:79:5f:10:3d:f7:43:7c:b1:63: 6b:5a:4b:de:56:2c:43:18:94:a1:98:8f:ea:17:5c: 49:88:7b:cf:a8:a6:07:ca:1c:d4:00:64:00:3c:f6: 10:fa:26:70:67:0b:78:68:e8:01:35:b1:b2:ee:36: e5:e6:30:a0:44:3f:bb:9d:8f:8b:c8:a2:f9:12:60: 3e:1a:7f:2b:51:fc:22:3b:4a:a8:68:69:1c:39:d2: 11:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0F:D0:44:D6:13:48:C8:8D:DC:FF:C4:F3:C3:3B:FB:C4:51:BC:17:A2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/8b548bad-7fed-41fd-b42e-780372c45255/0/0FD044D61348C88DDCFFC4F3C33BFBC451BC17A2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.76.144.0/21 117.103.168.0/21 IPv6: 2406:9300::/32 Signature Algorithm: sha256WithRSAEncryption 19:e4:81:b0:98:32:29:63:72:67:08:cf:90:03:2d:b0:b1:26: 29:90:ee:69:f5:54:86:d1:4c:56:9a:be:3b:8a:ed:49:dc:5c: e8:f4:60:4d:c3:e9:07:ae:92:39:1b:62:5e:4d:2b:c3:bf:1f: db:d1:5f:9e:b2:cb:fe:82:06:c8:01:5e:95:59:45:50:e4:5c: 9a:85:43:0a:5f:de:84:1c:be:8f:c8:2d:18:7b:1f:d7:a4:e8: c5:b1:3e:29:4f:5e:fe:2b:63:04:87:96:e1:30:c5:b6:c8:25: 0c:03:9f:fd:48:35:bd:22:2e:e9:5a:0e:35:49:41:b9:60:79: 06:ac:73:8c:ef:f2:5c:b3:57:14:ee:fa:cb:ab:52:ba:68:59: 66:e0:5f:2b:38:d4:be:9e:bb:50:5a:6e:ed:72:87:fd:ee:43: 41:9d:ed:55:bf:e4:42:d7:55:8c:8c:5f:2f:6e:95:21:ae:6e: ad:cd:9c:ac:3e:c1:28:e4:87:a7:29:d8:13:e3:9a:8c:8c:02: 1f:f5:7c:1d:37:32:c8:74:9b:bb:ae:21:a3:c6:6e:fd:f3:49: 97:e5:f5:97:b7:c3:7c:14:68:fe:14:1e:bd:eb:ea:bc:7c:d3: ee:ce:ee:d1:63:de:0b:ad:0a:97:f1:11:45:df:67:bd:87:9b: c4:f8:a4:4b -----BEGIN CERTIFICATE----- MIIF2jCCBMKgAwIBAgIUagKggWsJmb9J1Sv/mUFO+2FB3tAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA4MTk0OVoX DTI0MDcyOTA4MjQ0OVowMzExMC8GA1UEAxMoMEZEMDQ0RDYxMzQ4Qzg4RERDRkZD NEYzQzMzQkZCQzQ1MUJDMTdBMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKXMk9EVsmmQrpOWs+eB+nvW6LkjVR3YCguDCWylxAtaZJ89tI4jwLhC8DLN 7rkpVmptx/Cne8SA2l2UJPU5CTK1oiI6k87SeGFosPzlCYg2xbxCeat9ZdOyqG30 THIZ4yErTZKqcwh8TvSPLdHGPbiFN/Ai1Rr7JxFlkSCoDF57tCbxs7mzguJOwTAV vOKkH2Jn3SNBjqhPDCHwUPuxv86X/jSJOyDkKaceeV8QPfdDfLFja1pL3lYsQxiU oZiP6hdcSYh7z6imB8oc1ABkADz2EPomcGcLeGjoATWxsu425eYwoEQ/u52Pi8ii +RJgPhp/K1H8IjtKqGhpHDnSEf8CAwEAAaOCAs0wggLJMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFA/QRNYTSMiN3P/E88M7+8RRvBeiMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84YjU0OGJhZC03ZmVkLTQxZmQtYjQyZS03ODAzNzJjNDUyNTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhiNTQ4YmFk LTdmZWQtNDFmZC1iNDJlLTc4MDM3MmM0NTI1NS8wLzBGRDA0NEQ2MTM0OEM4OERE Q0ZGQzRGM0MzM0JGQkM0NTFCQzE3QTIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNAYIKwYBBQUHAQcBAf8EJTAjMBIEAgABMAwD BANuTJADBAN1Z6gwDQQCAAIwBwMFACQGkwAwDQYJKoZIhvcNAQELBQADggEBABnk gbCYMiljcmcIz5ADLbCxJimQ7mn1VIbRTFaavjuK7UncXOj0YE3D6QeukjkbYl5N K8O/H9vRX56yy/6CBsgBXpVZRVDkXJqFQwpf3oQcvo/ILRh7H9ek6MWxPilPXv4r YwSHluEwxbbIJQwDn/1INb0iLulaDjVJQblgeQasc4zv8lyzVxTu+surUrpoWWbg Xys41L6eu1Babu1yh/3uQ0Gd7VW/5ELXVYyMXy9ulSGubq3NnKw+wSjkh6cp2BPj moyMAh/1fB03Msh0m7uuIaPGbv3zSZfl9Ze3w3wUaP4UHr3r6rx80+7O7tFj3gut CpfxEUXfZ72Hm8T4pEs= -----END CERTIFICATE-----Generated at Fri May 3 04:42:14 2024 by rpki-client on console-fra.rpki-client.org