$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer File: 490B3FBCC6F0FC65785096A153DC87BC5057ACE5.cer (raw, json) Hash identifier: ndzEjYkIulftZb9CvTKjzxJUm5PNxg20Si5TG7E7WiI= Subject key identifier: 49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0DF33F118C3081C6F0A44D183B86AA91D2B643 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.mft caRepository: rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 09:59:30 +0000 Certificate not after: Mon 29 Jul 2024 10:04:30 +0000 Subordinate resources: IP: 27.123.0.0/21 IP: 103.18.28.0/22 IP: 150.107.248.0/22 IP: 202.43.114.0/23 IP: 2406:a300::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 05 May 2024 09:07:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:f3:3f:11:8c:30:81:c6:f0:a4:4d:18:3b:86:aa:91:d2:b6:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 09:59:30 2023 GMT Not After : Jul 29 10:04:30 2024 GMT Subject: CN=490B3FBCC6F0FC65785096A153DC87BC5057ACE5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:11:64:e6:40:a3:30:af:03:7e:18:4c:36:30: 64:15:64:91:9a:7e:38:cd:e5:1f:d2:f0:03:79:11: be:bf:5b:b8:f7:51:17:8c:30:78:5c:55:3b:1c:75: eb:4a:64:43:c1:ee:51:9d:1b:22:ac:08:ef:7d:fc: 44:96:cf:30:69:b5:b2:6e:66:32:1d:38:0a:7a:7f: bf:2b:6b:af:bd:f8:62:5c:7b:79:a9:81:03:1c:84: e9:b2:e9:84:e8:81:a9:0a:ff:e0:e2:57:0d:e2:8d: 16:65:70:fc:3d:f6:fa:fc:76:9e:be:6c:c7:d0:39: 76:5d:23:47:9d:8b:70:be:20:a4:20:da:c1:ae:2c: 8e:b6:5a:63:04:06:64:ee:4f:3e:81:22:d0:48:bc: 76:f8:c6:a8:3b:08:2b:19:49:ad:a4:4a:51:cc:34: 7a:d4:d0:da:38:81:80:9c:51:59:ca:5e:6c:36:b1: 61:13:90:8f:96:c4:4e:80:c3:0e:d1:56:73:c5:e8: cf:3e:56:be:ce:7e:4d:d3:18:99:18:98:74:1b:83: fe:e3:a0:a6:6c:7f:c0:d6:9b:20:ad:fd:61:07:5d: 68:30:83:e1:ca:cc:2d:7c:fb:c6:b4:8a:81:c0:26: 2e:39:37:41:5b:72:88:21:91:fb:cd:90:c4:bd:89: a0:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 49:0B:3F:BC:C6:F0:FC:65:78:50:96:A1:53:DC:87:BC:50:57:AC:E5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/77cd68f4-69a5-475f-aee4-3ef4b8d302dd/0/490B3FBCC6F0FC65785096A153DC87BC5057ACE5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 27.123.0.0/21 103.18.28.0/22 150.107.248.0/22 202.43.114.0/23 IPv6: 2406:a300::/32 Signature Algorithm: sha256WithRSAEncryption 0d:38:b2:f0:09:e1:6a:b7:1a:ae:6b:07:58:09:ca:4a:26:f7: af:75:24:c2:2b:24:fe:0a:85:15:96:4c:7a:f5:46:75:23:9d: 8c:43:7a:a1:61:5b:d9:98:5f:86:03:0b:40:1b:b2:a7:62:3a: 30:d4:27:f0:85:c9:69:3e:bd:00:d9:5f:cc:ee:7b:bc:f8:cc: 09:15:5a:b5:0e:74:35:ad:58:5d:a4:12:23:f9:c0:29:87:29: 04:82:0e:50:5f:a0:f2:10:ad:74:2f:6d:00:ec:4f:ae:0c:64: e5:ce:3a:71:83:b0:52:b8:08:d9:4c:7c:92:fe:56:59:e0:b8: d9:b9:37:06:f8:bd:78:0d:d0:5b:b5:82:09:a5:a8:1a:57:bc: af:76:69:4a:6a:9b:03:22:e0:ea:b4:91:e9:e6:8a:d3:c7:2a: 2d:dd:97:31:08:a1:75:bf:4f:c1:c2:4e:70:52:58:ec:ae:8b: f5:50:36:1b:b1:73:0c:7d:6a:92:90:1f:a9:7d:e9:32:f7:de: b0:e9:89:34:00:03:50:4d:a7:e3:bb:52:3e:35:35:f8:7a:6f: 03:e8:a7:f7:e1:fc:05:da:4c:e1:02:cf:d1:32:b0:f5:f2:47: b7:0b:0d:03:a8:70:5c:b1:69:98:e5:5b:93:54:27:37:42:42: 64:f5:d4:6f -----BEGIN CERTIFICATE----- MIIF5TCCBM2gAwIBAgITDfM/EYwwgcbwpE0YO4aqkdK2QzANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTE4NjIxNDAwMDAxMTAvBgNVBAUTKEJBOEY3N0QyMUU1 OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIwHhcNMjMwNzMxMDk1OTMwWhcN MjQwNzI5MTAwNDMwWjAzMTEwLwYDVQQDEyg0OTBCM0ZCQ0M2RjBGQzY1Nzg1MDk2 QTE1M0RDODdCQzUwNTdBQ0U1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0xFk5kCjMK8DfhhMNjBkFWSRmn44zeUf0vADeRG+v1u491EXjDB4XFU7HHXr SmRDwe5RnRsirAjvffxEls8wabWybmYyHTgKen+/K2uvvfhiXHt5qYEDHITpsumE 6IGpCv/g4lcN4o0WZXD8Pfb6/HaevmzH0Dl2XSNHnYtwviCkINrBriyOtlpjBAZk 7k8+gSLQSLx2+MaoOwgrGUmtpEpRzDR61NDaOIGAnFFZyl5sNrFhE5CPlsROgMMO 0VZzxejPPla+zn5N0xiZGJh0G4P+46CmbH/A1psgrf1hB11oMIPhyswtfPvGtIqB wCYuOTdBW3KIIZH7zZDEvYmgGQIDAQABo4IC2TCCAtUwDwYDVR0TAQH/BAUwAwEB /zAdBgNVHQ4EFgQUSQs/vMbw/GV4UJahU9yHvFBXrOUwHwYDVR0jBBgwFoAUuo93 0h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgEGMGkGA1UdHwRiMGAwXqBc oFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzIv QkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgzMzc2Qi5jcmwwfgYI KwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0 L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvdW85 MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCCASkGCCsGAQUFBwELBIIBGzCC ARcwUwYIKwYBBQUHMAWGR3JzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv Lzc3Y2Q2OGY0LTY5YTUtNDc1Zi1hZWU0LTNlZjRiOGQzMDJkZC8wMIGABggrBgEF BQcwCoZ0cnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vNzdjZDY4ZjQt NjlhNS00NzVmLWFlZTQtM2VmNGI4ZDMwMmRkLzAvNDkwQjNGQkNDNkYwRkM2NTc4 NTA5NkExNTNEQzg3QkM1MDU3QUNFNS5tZnQwPQYIKwYBBQUHMA2GMWh0dHBzOi8v cmVwby1ycGtpLmlkbmljLm5ldC9ycmRwL25vdGlmaWNhdGlvbi54bWwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjBABggrBgEFBQcBBwEB/wQxMC8wHgQCAAEwGAME Axt7AAMEAmcSHAMEApZr+AMEAcorcjANBAIAAjAHAwUAJAajADANBgkqhkiG9w0B AQsFAAOCAQEADTiy8AnharcarmsHWAnKSib3r3Ukwisk/gqFFZZMevVGdSOdjEN6 oWFb2ZhfhgMLQBuyp2I6MNQn8IXJaT69ANlfzO57vPjMCRVatQ50Na1YXaQSI/nA KYcpBIIOUF+g8hCtdC9tAOxPrgxk5c46cYOwUrgI2Ux8kv5WWeC42bk3Bvi9eA3Q W7WCCaWoGle8r3ZpSmqbAyLg6rSR6eaK08cqLd2XMQihdb9PwcJOcFJY7K6L9VA2 G7FzDH1qkpAfqX3pMvfesOmJNAADUE2n47tSPjU1+HpvA+in9+H8BdpM4QLP0TKw 9fJHtwsNA6hwXLFpmOVbk1QnN0JCZPXUbw== -----END CERTIFICATE-----Generated at Thu May 2 05:09:52 2024 by rpki-client on console-ams.rpki-client.org