$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer File: 10CA1776EFA8AF35292E76AE2B09C23427C191A6.cer (raw, json) Hash identifier: MnkJxbZBDJGZ566OktEkntl8NM39RGoofODVB02K0do= Subject key identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 066C90E959D115EFD09EF473E87CD6F454CED943 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft caRepository: rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 03:28:33 +0000 Certificate not after: Mon 29 Jul 2024 03:33:33 +0000 Subordinate resources: IP: 45.64.96.0/22 IP: 103.28.148.0/23 IP: 103.31.250.0/23 IP: 2001:df0:273::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 20:46:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:6c:90:e9:59:d1:15:ef:d0:9e:f4:73:e8:7c:d6:f4:54:ce:d9:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 03:28:33 2023 GMT Not After : Jul 29 03:33:33 2024 GMT Subject: CN=10CA1776EFA8AF35292E76AE2B09C23427C191A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:86:82:9f:2b:60:c1:a8:98:94:91:8f:5c:d5: 73:23:b7:94:eb:e6:b6:58:1c:60:51:32:e5:8d:08: de:a4:a4:2a:28:8b:21:51:99:be:b6:76:10:b2:6c: 18:e3:0b:4f:ec:27:76:c2:97:17:b2:16:5c:f9:a1: 26:08:ea:66:97:49:e5:13:64:d7:d8:f6:6b:34:40: d3:39:51:2d:e2:76:4b:e3:1c:d0:87:66:63:b7:95: c8:aa:5f:3a:f0:90:f8:27:09:28:80:cc:56:c3:31: eb:c0:cb:15:4b:d9:94:f5:fb:18:81:52:63:f3:f3: 23:f9:2c:88:d3:de:7b:1a:04:72:5e:93:f7:6c:b3: 22:ce:e9:fc:5e:ed:5b:46:55:ed:ac:12:4d:04:fb: 9d:7a:24:33:be:ac:c0:f0:60:9c:5e:76:f6:36:2d: 56:d7:2c:3e:b0:18:d3:0a:18:7b:9a:08:95:dd:e5: 3c:25:88:6b:69:d4:1a:a1:9a:c8:43:30:d8:42:b1: f6:7d:6b:cd:0b:65:d6:47:f5:c9:83:29:99:82:fd: ad:07:cd:de:3e:9a:7a:7a:72:21:81:e6:17:77:0f: c3:8f:11:17:0c:31:87:9d:b8:be:d4:e7:4a:69:02: 14:c2:9a:a1:b3:a7:58:03:6b:ce:b9:a8:42:c7:d3: 2d:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 10:CA:17:76:EF:A8:AF:35:29:2E:76:AE:2B:09:C2:34:27:C1:91:A6 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4bc6aa03-1b4d-438e-a9f3-efeaae6b0921/0/10CA1776EFA8AF35292E76AE2B09C23427C191A6.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.64.96.0/22 103.28.148.0/23 103.31.250.0/23 IPv6: 2001:df0:273::/48 Signature Algorithm: sha256WithRSAEncryption 1c:d9:e9:7e:da:56:0e:ee:17:7e:d2:7d:86:7d:35:c3:e1:ad: 95:85:6d:1f:75:56:97:4b:ad:b5:ff:65:0e:21:4f:e3:47:5d: a7:c2:98:cd:1b:e0:e9:82:bb:0b:5d:23:7c:87:30:98:66:df: f9:3c:86:e1:e0:3a:77:80:f6:e7:aa:d9:13:4a:95:ea:e0:9d: 0b:b2:04:ef:89:ed:f5:82:b0:3f:d1:eb:61:01:a6:46:b1:ce: 50:f6:0a:58:50:d0:9b:53:6a:61:5c:6a:54:14:08:0f:8e:73: 3a:c0:2d:23:29:9f:32:28:91:b7:3c:c5:ac:84:2c:a6:81:be: 24:d8:51:b8:0e:6f:9c:ed:06:51:31:a3:06:43:1d:b5:27:e7: 0f:a7:bb:86:50:35:02:77:b5:3e:b2:6e:09:ae:4c:2b:c7:97: 69:c7:a0:b2:79:71:ed:f1:64:89:1e:04:36:f3:db:c4:40:07: 11:8e:78:5d:e7:ce:ae:96:8c:da:4c:10:9a:4c:2a:7d:2a:6a: 43:0b:82:1b:33:46:8b:05:4e:64:63:45:b6:38:84:6a:9d:75: 7a:7b:83:00:ce:04:18:7f:fa:ff:51:78:d5:e3:44:40:c8:b8: 88:9a:f7:c5:a7:51:46:9d:e6:bf:64:23:ec:3f:3f:bd:15:bb: 3b:ad:f6:ba -----BEGIN CERTIFICATE----- MIIF4jCCBMqgAwIBAgIUBmyQ6VnRFe/QnvRz6HzW9FTO2UMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTAzMjgzM1oX DTI0MDcyOTAzMzMzM1owMzExMC8GA1UEAxMoMTBDQTE3NzZFRkE4QUYzNTI5MkU3 NkFFMkIwOUMyMzQyN0MxOTFBNjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyGgp8rYMGomJSRj1zVcyO3lOvmtlgcYFEy5Y0I3qSkKiiLIVGZvrZ2ELJs GOMLT+wndsKXF7IWXPmhJgjqZpdJ5RNk19j2azRA0zlRLeJ2S+Mc0IdmY7eVyKpf OvCQ+CcJKIDMVsMx68DLFUvZlPX7GIFSY/PzI/ksiNPeexoEcl6T92yzIs7p/F7t W0ZV7awSTQT7nXokM76swPBgnF529jYtVtcsPrAY0woYe5oIld3lPCWIa2nUGqGa yEMw2EKx9n1rzQtl1kf1yYMpmYL9rQfN3j6aenpyIYHmF3cPw48RFwwxh524vtTn SmkCFMKaobOnWANrzrmoQsfTLSECAwEAAaOCAtUwggLRMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBDKF3bvqK81KS52risJwjQnwZGmMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YmM2YWEwMy0xYjRkLTQzOGUtYTlmMy1lZmVhYWU2YjA5MjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRiYzZhYTAz LTFiNGQtNDM4ZS1hOWYzLWVmZWFhZTZiMDkyMS8wLzEwQ0ExNzc2RUZBOEFGMzUy OTJFNzZBRTJCMDlDMjM0MjdDMTkxQTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwPAYIKwYBBQUHAQcBAf8ELTArMBgEAgABMBID BAItQGADBAFnHJQDBAFnH/owDwQCAAIwCQMHACABDfACczANBgkqhkiG9w0BAQsF AAOCAQEAHNnpftpWDu4XftJ9hn01w+GtlYVtH3VWl0uttf9lDiFP40ddp8KYzRvg 6YK7C10jfIcwmGbf+TyG4eA6d4D256rZE0qV6uCdC7IE74nt9YKwP9HrYQGmRrHO UPYKWFDQm1NqYVxqVBQID45zOsAtIymfMiiRtzzFrIQspoG+JNhRuA5vnO0GUTGj BkMdtSfnD6e7hlA1Ane1PrJuCa5MK8eXacegsnlx7fFkiR4ENvPbxEAHEY54XefO rpaM2kwQmkwqfSpqQwuCGzNGiwVOZGNFtjiEap11enuDAM4EGH/6/1F41eNEQMi4 iJr3xadRRp3mv2Qj7D8/vRW7O632ug== -----END CERTIFICATE-----Generated at Thu May 2 10:16:53 2024 by rpki-client on console-ams.rpki-client.org