$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer File: 7D4F0D007B60134996AC3198B9E5B71EAF70E733.cer (raw, json) Hash identifier: 7/2Pp4vvDrtFDgynB61CtpRBK/5mRa5uUQCuG9GhA7w= Subject key identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1E8B8EE5374DA164FB0C0A8FED4F1BFB67467835 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft caRepository: rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 08:00:05 +0000 Certificate not after: Mon 29 Jul 2024 08:05:05 +0000 Subordinate resources: IP: 103.124.136.0/22 IP: 2403:e0c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 09 May 2024 10:44:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:8b:8e:e5:37:4d:a1:64:fb:0c:0a:8f:ed:4f:1b:fb:67:46:78:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 08:00:05 2023 GMT Not After : Jul 29 08:05:05 2024 GMT Subject: CN=7D4F0D007B60134996AC3198B9E5B71EAF70E733 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:57:e8:6b:b2:cb:75:77:74:54:39:ee:b6:47: 86:8a:c6:33:d1:b3:95:3f:10:72:e5:26:73:02:bd: 4d:71:c7:ba:cd:d6:3f:c8:58:7a:42:d2:26:d5:96: cd:50:80:97:73:63:d1:20:53:b1:cc:3e:e3:88:98: 1a:92:70:91:49:f5:37:f3:7e:6a:f5:73:7e:25:c9: bd:73:3e:46:44:7c:82:64:a6:28:05:df:06:4c:44: 25:4c:55:6d:39:bd:80:5e:94:27:06:00:52:28:69: 96:63:f4:83:fb:9b:bf:30:11:90:79:20:b7:36:c7: 05:b2:a1:d8:5e:36:54:13:c9:79:d4:0b:e9:25:14: fc:92:32:c3:56:a6:4c:4a:8a:c5:44:f5:c9:7d:20: a0:8e:13:91:1a:fb:87:94:eb:fa:6a:4b:ec:af:83: 21:4c:e1:75:e2:fe:21:b1:db:53:a6:c5:37:ef:49: f2:95:f3:17:b9:bb:4e:d6:a2:a6:f3:a4:90:76:90: 24:d9:99:11:73:c1:a7:58:ff:ee:6c:2b:7b:6c:a2: 34:c7:78:8f:68:b3:db:ec:53:e7:d3:de:19:6b:b1: b5:cf:b7:d8:e6:43:43:85:31:42:2d:e6:95:a9:1f: 71:ba:bb:38:90:d4:e9:24:d6:8a:fc:28:2f:fa:d5: ad:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 7D:4F:0D:00:7B:60:13:49:96:AC:31:98:B9:E5:B7:1E:AF:70:E7:33 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5aba4e59-fb31-41b5-88e7-0b2ced1f201c/0/7D4F0D007B60134996AC3198B9E5B71EAF70E733.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.124.136.0/22 IPv6: 2403:e0c0::/32 Signature Algorithm: sha256WithRSAEncryption 12:c8:40:42:fc:df:fa:dc:b1:8e:a9:41:90:75:ed:48:30:86: 8a:53:f1:c1:b5:4f:8d:f2:3f:a2:b9:de:b4:2d:31:06:ca:ef: 8f:50:49:89:8a:b8:64:3b:3d:99:a0:c7:05:c1:e1:d9:a8:e5: fc:6d:d5:54:6b:b9:68:8a:a0:fc:0c:c9:d3:8a:0b:81:3b:45: 2c:84:7b:e0:60:da:57:e3:7b:19:3d:17:71:79:70:1b:1b:96: c9:03:35:f6:3b:6e:cf:22:55:4c:87:a6:c6:1c:e9:3c:c8:3e: ac:a1:65:ce:42:94:d5:f5:e0:0f:f3:74:73:34:b8:33:57:69: 99:87:65:3e:f6:bc:a1:fb:81:8e:21:97:00:e4:9d:8e:52:82: 69:0a:85:5a:16:66:a9:fc:3c:88:0b:39:24:ca:20:32:82:97: 24:d3:fc:3f:13:13:dc:bd:15:f6:54:bf:6c:90:ab:53:bc:55: 32:de:6c:cb:a4:d3:68:cd:78:ed:c7:b7:dc:39:b5:f0:83:b8: 31:ae:01:61:e9:0e:1d:9d:a1:87:8d:9c:6d:84:08:fc:65:51: 6c:0e:60:28:42:d3:a3:6f:fc:cf:c2:26:83:74:59:de:74:47: 11:3a:b8:41:57:be:50:30:fb:51:eb:8c:cd:ed:59:de:42:99: 06:fe:01:81 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUHouO5TdNoWT7DAqP7U8b+2dGeDUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA4MDAwNVoX DTI0MDcyOTA4MDUwNVowMzExMC8GA1UEAxMoN0Q0RjBEMDA3QjYwMTM0OTk2QUMz MTk4QjlFNUI3MUVBRjcwRTczMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOFX6Guyy3V3dFQ57rZHhorGM9GzlT8QcuUmcwK9TXHHus3WP8hYekLSJtWW zVCAl3Nj0SBTscw+44iYGpJwkUn1N/N+avVzfiXJvXM+RkR8gmSmKAXfBkxEJUxV bTm9gF6UJwYAUihplmP0g/ubvzARkHkgtzbHBbKh2F42VBPJedQL6SUU/JIyw1am TEqKxUT1yX0goI4TkRr7h5Tr+mpL7K+DIUzhdeL+IbHbU6bFN+9J8pXzF7m7Ttai pvOkkHaQJNmZEXPBp1j/7mwre2yiNMd4j2iz2+xT59PeGWuxtc+32OZDQ4UxQi3m lakfcbq7OJDU6STWivwoL/rVrSkCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFH1PDQB7YBNJlqwxmLnltx6vcOczMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81YWJhNGU1OS1mYjMxLTQxYjUtODhlNy0wYjJjZWQxZjIwMWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVhYmE0ZTU5 LWZiMzEtNDFiNS04OGU3LTBiMmNlZDFmMjAxYy8wLzdENEYwRDAwN0I2MDEzNDk5 NkFDMzE5OEI5RTVCNzFFQUY3MEU3MzMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnfIgwDQQCAAIwBwMFACQD4MAwDQYJKoZIhvcNAQELBQADggEBABLIQEL83/rc sY6pQZB17UgwhopT8cG1T43yP6K53rQtMQbK749QSYmKuGQ7PZmgxwXB4dmo5fxt 1VRruWiKoPwMydOKC4E7RSyEe+Bg2lfjexk9F3F5cBsblskDNfY7bs8iVUyHpsYc 6TzIPqyhZc5ClNX14A/zdHM0uDNXaZmHZT72vKH7gY4hlwDknY5SgmkKhVoWZqn8 PIgLOSTKIDKClyTT/D8TE9y9FfZUv2yQq1O8VTLebMuk02jNeO3Ht9w5tfCDuDGu AWHpDh2doYeNnG2ECPxlUWwOYChC06Nv/M/CJoN0Wd50RxE6uEFXvlAw+1HrjM3t Wd5CmQb+AYE= -----END CERTIFICATE-----Generated at Mon May 6 01:46:56 2024 by rpki-client on console-fra.rpki-client.org