$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/490A06B20F6192568F1FE75F8A39FCE7E2AC87F5.cer File: 490A06B20F6192568F1FE75F8A39FCE7E2AC87F5.cer (raw, json) Hash identifier: lbGK271Kmh6qxN7CCeB3xeK1ZAQy7zUlqex9eEt5/KQ= Subject key identifier: 49:0A:06:B2:0F:61:92:56:8F:1F:E7:5F:8A:39:FC:E7:E2:AC:87:F5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2D44DAA14C5EA0B07DCB3EFEA67465DA05366CA4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6aac3562-d549-43ce-851f-fe924727f918/0/490A06B20F6192568F1FE75F8A39FCE7E2AC87F5.mft caRepository: rsync://repo-rpki.idnic.net/repo/6aac3562-d549-43ce-851f-fe924727f918/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 03:09:03 +0000 Certificate not after: Mon 29 Jul 2024 03:14:03 +0000 Subordinate resources: IP: 103.146.30.0/23 IP: 2001:df2:3e80::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 May 2024 03:25:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:44:da:a1:4c:5e:a0:b0:7d:cb:3e:fe:a6:74:65:da:05:36:6c:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 03:09:03 2023 GMT Not After : Jul 29 03:14:03 2024 GMT Subject: CN=490A06B20F6192568F1FE75F8A39FCE7E2AC87F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:17:9e:2c:9a:af:bd:ae:fa:1b:85:b6:93:56: 07:5c:da:64:b8:7b:b5:33:53:3b:98:7a:a5:f1:b7: 6f:90:16:33:a7:b8:dc:95:c9:87:3e:33:a7:91:a7: 31:17:45:07:ee:9e:1a:5a:04:2a:dd:21:c5:93:95: 50:32:9d:d6:05:f6:c2:dc:a5:64:cd:7e:da:db:9d: e3:5c:e4:ec:dc:32:39:4b:a6:c4:4a:6b:7c:8a:53: b3:5c:76:21:c6:05:cd:43:03:d8:73:8c:8f:90:ea: 17:67:d9:ed:be:e9:88:24:9c:b0:58:96:e2:3c:8a: 00:d9:3c:7c:a8:df:7b:cd:8a:fe:a9:d7:1b:f9:16: 64:46:9a:ad:fd:6e:d5:cf:38:7d:22:7f:6d:2b:75: 16:f3:4c:c4:8c:1f:b7:b7:32:06:c6:a6:7c:c9:d1: 8e:a9:04:2b:b5:09:d9:41:5d:68:90:9d:56:0a:d5: a9:ee:ef:65:17:9c:49:bd:5a:79:5a:93:d0:e6:72: 01:a8:85:4d:6b:8c:91:ab:45:df:64:43:c7:dd:86: 36:9a:22:13:0c:d7:d4:22:14:0e:41:58:b8:47:8a: 2c:90:20:6d:d4:4c:c8:6a:88:be:b4:8a:50:cb:55: dd:c9:5b:8e:bf:45:87:71:c7:e7:4a:d4:3d:78:8b: b0:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 49:0A:06:B2:0F:61:92:56:8F:1F:E7:5F:8A:39:FC:E7:E2:AC:87:F5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6aac3562-d549-43ce-851f-fe924727f918/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6aac3562-d549-43ce-851f-fe924727f918/0/490A06B20F6192568F1FE75F8A39FCE7E2AC87F5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.146.30.0/23 IPv6: 2001:df2:3e80::/48 Signature Algorithm: sha256WithRSAEncryption 81:ff:a7:98:81:94:60:58:00:af:40:f7:9e:67:f7:b8:f1:2e: 8d:7d:57:95:eb:9f:2c:16:26:07:82:54:7d:d8:18:75:19:c4: 4c:92:45:86:d7:16:e3:00:1f:f9:32:c4:34:96:f4:4e:55:e9: cb:5a:c7:97:00:25:d8:10:8f:17:36:78:e9:55:d8:02:fb:e2: 7d:a5:17:1e:38:9e:77:6f:64:4b:06:13:6a:3c:e1:c9:9b:df: cb:1b:c1:28:7b:9d:5f:38:23:ea:aa:ed:56:cf:bf:d6:0b:2c: 4e:00:67:17:01:61:fe:54:f9:ac:ac:35:e4:a7:73:e0:d1:e6: 44:a1:4b:5f:1b:72:27:a9:59:4a:50:4c:7e:5a:bc:69:b7:15: 70:64:4b:3f:e3:3f:30:bf:2f:ef:ca:a5:f6:e2:7d:95:4e:74: 06:87:6e:6c:3e:fb:a6:1c:62:4e:fc:fb:f3:a9:cf:43:94:91: 41:69:9b:e9:b2:15:8c:63:9b:58:a5:30:a2:44:f7:39:8d:2c: d4:a0:ff:df:d9:71:f6:3f:3a:a8:c3:5f:ad:d1:32:47:9a:57: 55:d0:44:ee:49:c0:70:fb:ea:41:25:c8:4d:21:66:3c:82:aa: 8f:90:3f:ad:b8:ff:bf:62:9f:85:00:09:0a:60:52:56:97:f1: 01:4f:bf:c5 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIULUTaoUxeoLB9yz7+pnRl2gU2bKQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTAzMDkwM1oX DTI0MDcyOTAzMTQwM1owMzExMC8GA1UEAxMoNDkwQTA2QjIwRjYxOTI1NjhGMUZF NzVGOEEzOUZDRTdFMkFDODdGNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ0Xniyar72u+huFtpNWB1zaZLh7tTNTO5h6pfG3b5AWM6e43JXJhz4zp5Gn MRdFB+6eGloEKt0hxZOVUDKd1gX2wtylZM1+2tud41zk7NwyOUumxEprfIpTs1x2 IcYFzUMD2HOMj5DqF2fZ7b7piCScsFiW4jyKANk8fKjfe82K/qnXG/kWZEaarf1u 1c84fSJ/bSt1FvNMxIwft7cyBsamfMnRjqkEK7UJ2UFdaJCdVgrVqe7vZRecSb1a eVqT0OZyAaiFTWuMkatF32RDx92GNpoiEwzX1CIUDkFYuEeKLJAgbdRMyGqIvrSK UMtV3clbjr9Fh3HH50rUPXiLsE0CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEkKBrIPYZJWjx/nX4o5/OfirIf1MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82YWFjMzU2Mi1kNTQ5LTQzY2UtODUxZi1mZTkyNDcyN2Y5MTgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZhYWMzNTYy LWQ1NDktNDNjZS04NTFmLWZlOTI0NzI3ZjkxOC8wLzQ5MEEwNkIyMEY2MTkyNTY4 RjFGRTc1RjhBMzlGQ0U3RTJBQzg3RjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnkh4wDwQCAAIwCQMHACABDfI+gDANBgkqhkiG9w0BAQsFAAOCAQEAgf+nmIGU YFgAr0D3nmf3uPEujX1XleufLBYmB4JUfdgYdRnETJJFhtcW4wAf+TLENJb0TlXp y1rHlwAl2BCPFzZ46VXYAvvifaUXHjied29kSwYTajzhyZvfyxvBKHudXzgj6qrt Vs+/1gssTgBnFwFh/lT5rKw15Kdz4NHmRKFLXxtyJ6lZSlBMflq8abcVcGRLP+M/ ML8v78ql9uJ9lU50BodubD77phxiTvz786nPQ5SRQWmb6bIVjGObWKUwokT3OY0s 1KD/39lx9j86qMNfrdEyR5pXVdBE7knAcPvqQSXITSFmPIKqj5A/rbj/v2KfhQAJ CmBSVpfxAU+/xQ== -----END CERTIFICATE-----Generated at Fri May 3 03:08:26 2024 by rpki-client on console-ams.rpki-client.org