$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer File: 7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.cer (raw, json) Hash identifier: IQoWTgnTbAdvCUi/VwAnzFhD1uP9JNMhdrVpLNeTlQ8= Subject key identifier: 7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5BF268141C2AB4D72A7904A069E44B3418B8B815 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.mft caRepository: rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 06:06:36 +0000 Certificate not after: Mon 29 Jul 2024 06:11:36 +0000 Subordinate resources: IP: 103.19.56.0/22 IP: 2402:32c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 19 Apr 2024 17:30:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:f2:68:14:1c:2a:b4:d7:2a:79:04:a0:69:e4:4b:34:18:b8:b8:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 06:06:36 2023 GMT Not After : Jul 29 06:11:36 2024 GMT Subject: CN=7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:51:38:df:41:66:2f:9e:66:af:3b:93:7f:6b: 2b:13:c0:75:af:64:e9:6a:9c:cd:b6:f1:cb:26:81: 7a:78:66:2e:b2:23:a3:0e:94:9b:a2:a3:a9:5c:65: aa:36:20:2d:19:8a:93:6b:09:62:17:cc:b4:e1:c6: 67:29:df:b6:61:75:77:3f:c6:e9:0d:3c:6a:94:6c: 1b:89:f7:25:9d:ab:b0:fe:67:e3:b3:69:88:6d:be: 9f:de:b5:bf:4f:96:85:bd:64:e9:2e:65:8c:36:d4: d0:86:84:d3:18:08:fd:4c:23:3b:3f:ed:c2:a8:66: d7:19:82:9f:6e:cb:c4:e2:ef:d0:ea:21:da:e9:42: 2d:48:b1:48:00:68:ae:c3:f6:4d:f6:36:03:2a:f4: 4d:db:4e:33:8b:e5:7f:4b:5b:19:8d:76:2e:85:74: d8:a0:42:07:77:7e:3d:55:ed:2b:6f:00:2e:c3:35: 9c:b8:ed:83:89:dd:75:ce:36:5a:1d:e7:cc:06:75: 79:c5:1c:bc:58:18:1e:db:14:0e:07:bc:74:70:15: b1:3e:fa:a1:6e:de:e8:e9:d7:3f:c8:6e:1c:b2:a1: ef:08:3f:b3:a8:4c:34:96:62:43:d2:2b:89:9e:6c: 88:5f:f2:7f:a2:40:2a:e8:4f:5b:9e:3c:eb:83:1c: 44:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 7E:FA:64:C1:15:73:C2:92:E1:92:C2:CD:EA:C4:D5:F8:B8:C2:1D:BD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2d0927e6-8a0a-4fa7-8969-9fb9d694397c/0/7EFA64C11573C292E192C2CDEAC4D5F8B8C21DBD.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.19.56.0/22 IPv6: 2402:32c0::/32 Signature Algorithm: sha256WithRSAEncryption 4a:d9:c8:ee:fa:df:08:b9:e6:2b:f6:16:87:a4:43:e9:02:e1: 88:c0:90:08:ae:53:ac:9c:f7:f9:ba:80:e5:84:60:58:81:d9: 73:17:a0:26:49:af:0a:43:3b:0b:a7:39:5c:5a:bd:62:63:69: c2:c1:4f:0b:e1:e4:80:5a:b6:95:e6:3e:19:37:ef:3e:b2:fd: 21:67:24:11:49:0e:e3:32:f5:f1:90:22:97:9e:44:a5:6d:21: 88:b4:8f:6f:a2:81:9e:d1:68:67:02:c9:12:c9:33:4e:30:7a: ca:61:db:e0:24:fc:3d:28:36:b7:0f:ac:62:c8:db:52:f8:72: d5:ae:cb:b1:78:bd:11:73:c7:12:82:d4:55:b7:a2:fd:fe:b2: b4:bc:8f:81:a2:55:38:5e:f7:99:d3:e5:ac:88:ec:ac:50:40: 07:3a:41:09:f8:5c:50:0f:74:69:9e:a6:0f:77:57:ea:7a:32: 33:2f:cf:1e:a9:0d:6e:c3:02:f2:e6:2c:1a:77:62:f2:ba:8e: af:cd:c5:89:e9:09:e3:38:39:ad:da:41:96:7a:42:93:f6:c6: 2f:54:30:2b:50:d9:a2:9e:1d:d8:c6:e6:d6:0e:38:28:ee:26: 5c:d0:95:18:39:94:21:37:9f:71:a9:90:63:61:05:d9:65:90: 1d:dd:c9:4f -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUW/JoFBwqtNcqeQSgaeRLNBi4uBUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA2MDYzNloX DTI0MDcyOTA2MTEzNlowMzExMC8GA1UEAxMoN0VGQTY0QzExNTczQzI5MkUxOTJD MkNERUFDNEQ1RjhCOEMyMURCRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPRRON9BZi+eZq87k39rKxPAda9k6WqczbbxyyaBenhmLrIjow6Um6KjqVxl qjYgLRmKk2sJYhfMtOHGZynftmF1dz/G6Q08apRsG4n3JZ2rsP5n47NpiG2+n961 v0+Whb1k6S5ljDbU0IaE0xgI/UwjOz/twqhm1xmCn27LxOLv0Ooh2ulCLUixSABo rsP2TfY2Ayr0TdtOM4vlf0tbGY12LoV02KBCB3d+PVXtK28ALsM1nLjtg4nddc42 Wh3nzAZ1ecUcvFgYHtsUDge8dHAVsT76oW7e6OnXP8huHLKh7wg/s6hMNJZiQ9Ir iZ5siF/yf6JAKuhPW54864McRDECAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFH76ZMEVc8KS4ZLCzerE1fi4wh29MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZDA5MjdlNi04YTBhLTRmYTctODk2OS05ZmI5ZDY5NDM5N2MvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkMDkyN2U2 LThhMGEtNGZhNy04OTY5LTlmYjlkNjk0Mzk3Yy8wLzdFRkE2NEMxMTU3M0MyOTJF MTkyQzJDREVBQzRENUY4QjhDMjFEQkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnEzgwDQQCAAIwBwMFACQCMsAwDQYJKoZIhvcNAQELBQADggEBAErZyO763wi5 5iv2FoekQ+kC4YjAkAiuU6yc9/m6gOWEYFiB2XMXoCZJrwpDOwunOVxavWJjacLB Twvh5IBatpXmPhk37z6y/SFnJBFJDuMy9fGQIpeeRKVtIYi0j2+igZ7RaGcCyRLJ M04wesph2+Ak/D0oNrcPrGLI21L4ctWuy7F4vRFzxxKC1FW3ov3+srS8j4GiVThe 95nT5ayI7KxQQAc6QQn4XFAPdGmepg93V+p6MjMvzx6pDW7DAvLmLBp3YvK6jq/N xYnpCeM4Oa3aQZZ6QpP2xi9UMCtQ2aKeHdjG5tYOOCjuJlzQlRg5lCE3n3GpkGNh BdllkB3dyU8= -----END CERTIFICATE-----Generated at Tue Apr 16 14:46:39 2024 by rpki-client on console-ams.rpki-client.org