$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3703AC4154F05B1E642F31DEF71A238407E82D59.cer File: 3703AC4154F05B1E642F31DEF71A238407E82D59.cer (raw, json) Hash identifier: 2HnRJwYzarhYVdopqbl0/flrFOOOQb2ThAE36QoGgrc= Subject key identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 15A4FF1CD251437084F55B1D59D81ED4B1B835DE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft caRepository: rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 04 Oct 2023 23:14:25 +0000 Certificate not after: Wed 02 Oct 2024 23:19:25 +0000 Subordinate resources: IP: 103.160.40.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:a4:ff:1c:d2:51:43:70:84:f5:5b:1d:59:d8:1e:d4:b1:b8:35:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 4 23:14:25 2023 GMT Not After : Oct 2 23:19:25 2024 GMT Subject: CN=3703AC4154F05B1E642F31DEF71A238407E82D59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:86:01:86:e8:f4:4a:02:e1:2d:03:b8:9b:a5: 4d:aa:cc:fd:5b:ba:cf:df:09:64:77:3d:83:4a:5a: 2c:71:b8:1b:7c:3b:0e:e9:b2:6a:a8:1f:89:73:30: d3:05:0f:8e:b2:56:a8:5e:01:74:11:e9:a3:f5:91: fc:3a:f3:6a:fb:27:f4:0c:0f:1c:92:32:d9:69:d1: 7a:ca:b8:bf:08:42:57:c9:5d:9e:0f:a3:07:35:46: da:92:41:1f:f8:73:06:d1:a2:e8:d1:4d:75:0b:5d: a2:ef:b9:6e:2b:6d:5f:51:6c:cf:f6:d7:62:79:e2: 35:d1:88:f5:dc:1e:73:c1:36:57:fb:92:e4:68:00: b1:dc:ff:d0:26:af:c3:f4:c8:df:df:15:51:c0:f9: bf:5f:ba:74:67:a1:04:e9:d6:54:10:60:f5:86:ab: f8:32:9e:10:e2:8b:37:0b:cb:b2:46:e6:40:3a:43: fb:d7:40:c4:b2:da:e9:33:01:e8:25:e8:91:5f:20: 68:02:3c:03:d6:d1:49:8f:8a:b6:5f:70:ca:86:e2: 48:39:5f:74:e4:d5:fc:61:33:74:2a:cd:13:65:04: 24:40:9e:8e:42:c9:06:3e:94:76:81:58:a4:e8:73: 4d:96:a3:24:42:3e:e5:35:c9:e8:2b:26:73:06:75: c0:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 37:03:AC:41:54:F0:5B:1E:64:2F:31:DE:F7:1A:23:84:07:E8:2D:59 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4a099adf-7e12-4e83-95c2-dd7f77494788/0/3703AC4154F05B1E642F31DEF71A238407E82D59.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.40.0/23 Signature Algorithm: sha256WithRSAEncryption 99:04:3d:7d:42:70:a0:88:be:03:b8:2c:94:84:17:bc:de:93: 58:25:63:e0:83:14:e2:23:30:73:3d:0d:87:bc:29:1e:79:88: 86:45:8f:3f:88:d9:67:62:fa:74:51:31:1f:bd:ce:b2:3f:9e: 11:19:2e:ce:81:87:53:74:4d:1e:4e:2e:f1:68:b5:c8:24:e9: ae:59:31:a5:2b:6e:23:c1:fa:8f:b5:30:dc:e2:ed:28:3c:80: b3:88:7c:60:e4:96:6a:44:64:20:85:26:46:6f:a7:d7:8c:85: e1:e1:34:b0:b7:bb:b6:a8:54:fc:95:44:13:f5:c8:45:b2:88: e9:19:1d:b5:35:04:75:e7:02:a2:53:a1:7e:d4:3f:27:37:fe: 86:b8:c1:04:35:e8:0a:f3:6f:8d:9d:13:e3:74:6a:3e:e6:63: 5f:e3:c4:3d:1f:dd:c7:da:06:98:ab:98:b4:b0:e9:ab:f6:da: 6a:02:07:eb:2a:f1:62:26:f5:38:6b:a1:51:11:fc:3b:1c:cb: 23:6c:a8:a2:54:03:0b:4e:8b:42:73:80:42:b6:34:66:33:3d: 5a:59:17:42:8a:d3:2d:d3:d2:b7:b8:c4:bb:46:75:e0:9d:e2: 96:00:2d:fe:cd:31:e1:f9:7f:f8:56:d0:df:c8:ad:01:e1:de: 12:35:cb:4e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUFaT/HNJRQ3CE9VsdWdge1LG4Nd4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNDIzMTQyNVoX DTI0MTAwMjIzMTkyNVowMzExMC8GA1UEAxMoMzcwM0FDNDE1NEYwNUIxRTY0MkYz MURFRjcxQTIzODQwN0U4MkQ1OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANGGAYbo9EoC4S0DuJulTarM/Vu6z98JZHc9g0paLHG4G3w7DumyaqgfiXMw 0wUPjrJWqF4BdBHpo/WR/Drzavsn9AwPHJIy2WnResq4vwhCV8ldng+jBzVG2pJB H/hzBtGi6NFNdQtdou+5bittX1Fsz/bXYnniNdGI9dwec8E2V/uS5GgAsdz/0Cav w/TI398VUcD5v1+6dGehBOnWVBBg9Yar+DKeEOKLNwvLskbmQDpD+9dAxLLa6TMB 6CXokV8gaAI8A9bRSY+Ktl9wyobiSDlfdOTV/GEzdCrNE2UEJECejkLJBj6UdoFY pOhzTZajJEI+5TXJ6CsmcwZ1wM0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDcDrEFU8FseZC8x3vcaI4QH6C1ZMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YTA5OWFkZi03ZTEyLTRlODMtOTVjMi1kZDdmNzc0OTQ3ODgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMDk5YWRm LTdlMTItNGU4My05NWMyLWRkN2Y3NzQ5NDc4OC8wLzM3MDNBQzQxNTRGMDVCMUU2 NDJGMzFERUY3MUEyMzg0MDdFODJENTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnoCgwDQYJKoZIhvcNAQELBQADggEBAJkEPX1CcKCIvgO4LJSEF7zek1glY+CD FOIjMHM9DYe8KR55iIZFjz+I2Wdi+nRRMR+9zrI/nhEZLs6Bh1N0TR5OLvFotcgk 6a5ZMaUrbiPB+o+1MNzi7Sg8gLOIfGDklmpEZCCFJkZvp9eMheHhNLC3u7aoVPyV RBP1yEWyiOkZHbU1BHXnAqJToX7UPyc3/oa4wQQ16Arzb42dE+N0aj7mY1/jxD0f 3cfaBpirmLSw6av22moCB+sq8WIm9ThroVER/DscyyNsqKJUAwtOi0JzgEK2NGYz PVpZF0KK0y3T0re4xLtGdeCd4pYALf7NMeH5f/hW0N/IrQHh3hI1y04= -----END CERTIFICATE-----Generated at Mon May 6 01:46:01 2024 by rpki-client on console-ams.rpki-client.org