$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/21AC220B77A77D0516BC73B4C29C8363DD00911B.cer File: 21AC220B77A77D0516BC73B4C29C8363DD00911B.cer (raw, json) Hash identifier: APTA73jgHG4s7MZvSe88Ce5qfW2i/DQ/3ZVRbv4BL88= Subject key identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1EEA8B2097E4352F599ED75C2B3DB24F35DD9FB8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft caRepository: rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 17 Oct 2023 10:32:12 +0000 Certificate not after: Tue 15 Oct 2024 10:37:12 +0000 Subordinate resources: IP: 103.94.168.0/22 IP: 103.119.140.0 -- 103.119.147.255 IP: 202.10.56.0/22 IP: 2401:48c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 20:46:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:ea:8b:20:97:e4:35:2f:59:9e:d7:5c:2b:3d:b2:4f:35:dd:9f:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 17 10:32:12 2023 GMT Not After : Oct 15 10:37:12 2024 GMT Subject: CN=21AC220B77A77D0516BC73B4C29C8363DD00911B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:eb:38:c7:01:28:91:28:bd:01:1c:a0:98:9c: df:d7:be:6e:a8:9a:02:1f:e4:11:df:b8:42:36:4d: 22:37:85:6d:4c:d8:22:1c:57:78:36:63:88:4c:6e: 86:6e:57:06:91:10:f4:f9:1f:aa:e5:65:46:4e:6e: 88:06:ea:75:c3:5d:b1:96:a2:6a:85:3e:7e:3b:33: 74:33:ff:78:ef:05:9b:d7:28:95:54:3e:d8:62:d8: 58:5b:f3:0e:4f:7f:d0:21:7c:82:6a:96:99:40:12: 07:8c:e7:cd:bd:9b:62:8f:92:ee:01:40:03:72:76: fa:29:59:22:69:1d:a6:31:d8:6a:0b:cd:2e:9f:91: 01:12:83:cb:48:c9:b3:53:54:f1:21:67:87:1a:1d: 14:f1:70:ee:7d:e3:ec:46:99:04:d2:e9:97:ca:34: 0e:4e:8b:ee:62:48:63:22:8d:fd:a1:64:b2:de:ce: 7a:7c:4c:1f:d9:cc:5d:c5:74:7d:ec:b8:cc:ea:0c: 43:1b:28:5e:63:4b:53:83:ac:63:5b:c2:78:a4:99: a1:17:27:b3:88:06:cc:26:64:ae:32:fd:a5:bb:cf: 6a:1b:45:b7:ef:d7:73:96:c4:bf:a1:a6:80:2c:25: 99:f3:03:7a:03:5b:fc:16:3d:e0:59:fc:bb:41:1a: 6e:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 21:AC:22:0B:77:A7:7D:05:16:BC:73:B4:C2:9C:83:63:DD:00:91:1B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bdabc0ba-9222-4c45-8342-eb8643c4967d/0/21AC220B77A77D0516BC73B4C29C8363DD00911B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.94.168.0/22 103.119.140.0-103.119.147.255 202.10.56.0/22 IPv6: 2401:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 55:fc:6b:30:cb:54:e0:6f:1f:e4:8e:f6:a4:70:77:3f:0e:2d: 48:e5:d8:d3:cf:39:97:3c:c8:56:a5:33:da:31:f2:fb:f5:d1: b7:3b:bb:91:9f:51:73:bb:e5:30:e2:c3:39:44:f0:90:20:fc: ec:12:32:e0:75:ca:e5:7a:3e:d7:da:9e:04:53:54:86:89:67: 1e:dd:94:07:aa:96:4f:86:04:1c:ae:ac:21:3e:86:30:2e:e6: 4f:c0:77:d9:02:df:b6:c9:e8:27:b4:04:31:3c:37:49:ae:19: c2:d2:f3:e8:35:35:9b:ea:a2:15:24:b2:d0:21:a2:a4:ed:09: 11:0c:54:64:94:12:81:45:c1:db:30:c3:bd:56:ad:98:49:27: c6:9e:65:3a:81:9e:c7:31:e6:86:40:e0:80:6b:71:fa:e9:ca: f4:d2:3b:14:09:21:d0:a8:4b:6c:91:1b:1f:0a:3d:99:6e:c3: 8b:25:16:94:e1:93:65:fc:64:c7:ff:eb:86:f9:d7:94:f3:60: 5f:bb:2e:2b:62:69:18:4a:58:c4:87:49:82:09:c9:1e:ff:90: 0c:a4:f8:8e:06:33:66:21:ab:69:57:c8:25:91:f2:d9:e0:bb: 4d:b4:cb:13:0d:0f:f9:d7:0a:09:4d:8f:4b:5f:c9:75:f1:c5: 33:5e:4f:5e -----BEGIN CERTIFICATE----- MIIF6DCCBNCgAwIBAgIUHuqLIJfkNS9ZntdcKz2yTzXdn7gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxNzEwMzIxMloX DTI0MTAxNTEwMzcxMlowMzExMC8GA1UEAxMoMjFBQzIyMEI3N0E3N0QwNTE2QkM3 M0I0QzI5QzgzNjNERDAwOTExQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnrOMcBKJEovQEcoJic39e+bqiaAh/kEd+4QjZNIjeFbUzYIhxXeDZjiExu hm5XBpEQ9PkfquVlRk5uiAbqdcNdsZaiaoU+fjszdDP/eO8Fm9colVQ+2GLYWFvz Dk9/0CF8gmqWmUASB4znzb2bYo+S7gFAA3J2+ilZImkdpjHYagvNLp+RARKDy0jJ s1NU8SFnhxodFPFw7n3j7EaZBNLpl8o0Dk6L7mJIYyKN/aFkst7OenxMH9nMXcV0 fey4zOoMQxsoXmNLU4OsY1vCeKSZoRcns4gGzCZkrjL9pbvPahtFt+/Xc5bEv6Gm gCwlmfMDegNb/BY94Fn8u0EabtMCAwEAAaOCAtswggLXMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCGsIgt3p30FFrxztMKcg2PdAJEbMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZGFiYzBiYS05MjIyLTRjNDUtODM0Mi1lYjg2NDNjNDk2N2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkYWJjMGJh LTkyMjItNGM0NS04MzQyLWViODY0M2M0OTY3ZC8wLzIxQUMyMjBCNzdBNzdEMDUx NkJDNzNCNEMyOUM4MzYzREQwMDkxMUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwQgYIKwYBBQUHAQcBAf8EMzAxMCAEAgABMBoD BAJnXqgwDAMEAmd3jAMEAmd3kAMEAsoKODANBAIAAjAHAwUAJAFIwDANBgkqhkiG 9w0BAQsFAAOCAQEAVfxrMMtU4G8f5I72pHB3Pw4tSOXY0885lzzIVqUz2jHy+/XR tzu7kZ9Rc7vlMOLDOUTwkCD87BIy4HXK5Xo+19qeBFNUholnHt2UB6qWT4YEHK6s IT6GMC7mT8B32QLftsnoJ7QEMTw3Sa4ZwtLz6DU1m+qiFSSy0CGipO0JEQxUZJQS gUXB2zDDvVatmEknxp5lOoGexzHmhkDggGtx+unK9NI7FAkh0KhLbJEbHwo9mW7D iyUWlOGTZfxkx//rhvnXlPNgX7suK2JpGEpYxIdJggnJHv+QDKT4jgYzZiGraVfI JZHy2eC7TbTLEw0P+dcKCU2PS1/JdfHFM15PXg== -----END CERTIFICATE-----Generated at Thu May 2 10:16:54 2024 by rpki-client on console-ams.rpki-client.org