$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer File: 95C3BA7F23B6351721F77DA8020731F9DA46B3C8.cer (raw, json) Hash identifier: G25IETeDwsnsQm8j7QavkKmymMmcbtMls3VY+iWI4S0= Subject key identifier: 95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2E67293F4284584C1A925F52ED66F271FE078A1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.mft caRepository: rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 01:50:24 +0000 Certificate not after: Mon 29 Jul 2024 01:55:24 +0000 Subordinate resources: IP: 103.148.84.0/23 IP: 2001:df2:c780::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Apr 2024 05:14:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:67:29:3f:42:84:58:4c:1a:92:5f:52:ed:66:f2:71:fe:07:8a:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 01:50:24 2023 GMT Not After : Jul 29 01:55:24 2024 GMT Subject: CN=95C3BA7F23B6351721F77DA8020731F9DA46B3C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:3c:f7:33:59:8f:1e:3b:d5:ea:e0:74:8b:00: b3:3c:12:e3:30:32:2d:47:eb:c8:1c:0d:27:9e:a3: 02:ac:e8:e6:e0:70:e4:a0:66:e1:e9:7b:16:ec:e2: 43:ab:ec:48:8a:41:99:6c:58:23:2d:81:aa:82:89: 81:6f:97:be:59:92:98:a1:33:23:ab:aa:3f:c3:6e: c2:bf:f8:b6:47:0e:ea:d3:15:a5:5c:a6:17:03:07: 92:95:91:08:c6:32:70:43:69:fd:ad:57:b8:bd:2c: 3c:fb:33:c1:ff:0e:4b:a6:bd:b3:92:d8:50:5b:97: 33:6b:d4:2d:25:8b:c2:16:e9:4a:91:55:4a:04:75: 48:6c:f3:43:de:4a:60:cf:5a:11:70:a8:1f:d7:ae: dd:db:44:d4:a7:00:71:bf:8a:17:73:1d:d5:95:23: 6b:ed:0f:79:32:f4:12:a9:50:36:e2:f9:d7:7a:00: ba:7d:a2:9f:1b:71:c1:09:25:65:5b:46:9d:8c:48: cd:35:87:dc:76:45:49:5a:dd:a1:8a:ae:3f:38:d6: ed:8d:db:50:c9:d1:0a:8a:b6:93:92:e1:69:d2:cd: 5c:1a:74:e2:ac:a7:b3:dd:78:d6:7f:01:8f:9f:77: 74:a2:a0:e0:16:2e:4f:ad:e1:d3:da:5e:da:f3:31: 9c:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 95:C3:BA:7F:23:B6:35:17:21:F7:7D:A8:02:07:31:F9:DA:46:B3:C8 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/140e9c9f-d607-4497-af28-4d2b9092d5a6/0/95C3BA7F23B6351721F77DA8020731F9DA46B3C8.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.148.84.0/23 IPv6: 2001:df2:c780::/48 Signature Algorithm: sha256WithRSAEncryption 12:b4:ac:37:13:25:0c:3a:7d:f0:36:00:6b:91:29:6a:55:5b: 6a:7b:28:7a:55:bb:3b:bd:30:a9:79:fb:88:95:ff:ac:88:91: 1f:ff:72:92:ed:81:f6:1f:6d:e4:f2:68:4d:ac:99:c8:07:f2: db:7e:ee:9d:c6:4b:0a:8f:36:84:5a:ca:bc:b8:12:9a:bc:a9: c0:6d:31:8a:0a:9b:d3:c5:23:30:7d:6b:75:13:bf:4b:d2:e9: 51:2e:74:c2:5e:69:d5:d2:04:a3:a1:a3:27:4a:ad:f0:70:06: 4f:e3:ba:75:a5:67:7d:cb:a6:df:c2:72:aa:13:10:ab:56:7f: fe:af:c0:72:1a:b4:2f:46:ef:48:e7:65:03:7d:aa:61:27:00: 48:94:b6:aa:ad:c6:ae:9e:06:30:8f:d2:f7:b8:be:df:2b:28: 53:d9:00:f4:a7:40:46:07:04:67:a3:93:b4:9a:8b:25:05:99: fd:48:bb:73:25:3c:d5:0c:de:3d:4d:fa:03:72:32:78:bc:a3: 36:8b:d3:7b:dd:84:71:42:4f:7e:ed:52:d7:27:40:a2:28:e3: b6:ec:16:c0:91:71:7a:da:99:93:62:65:73:b1:87:db:aa:0a: c6:6c:59:b6:14:70:50:fd:ed:42:f9:91:ab:c4:3a:fb:ee:44: 9d:a3:0b:f9 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIULmcpP0KEWEwakl9S7Wbycf4HihwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTAxNTAyNFoX DTI0MDcyOTAxNTUyNFowMzExMC8GA1UEAxMoOTVDM0JBN0YyM0I2MzUxNzIxRjc3 REE4MDIwNzMxRjlEQTQ2QjNDODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALc89zNZjx471ergdIsAszwS4zAyLUfryBwNJ56jAqzo5uBw5KBm4el7Fuzi Q6vsSIpBmWxYIy2BqoKJgW+XvlmSmKEzI6uqP8Nuwr/4tkcO6tMVpVymFwMHkpWR CMYycENp/a1XuL0sPPszwf8OS6a9s5LYUFuXM2vULSWLwhbpSpFVSgR1SGzzQ95K YM9aEXCoH9eu3dtE1KcAcb+KF3Md1ZUja+0PeTL0EqlQNuL513oAun2inxtxwQkl ZVtGnYxIzTWH3HZFSVrdoYquPzjW7Y3bUMnRCoq2k5LhadLNXBp04qyns9141n8B j593dKKg4BYuT63h09pe2vMxnG8CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJXDun8jtjUXIfd9qAIHMfnaRrPIMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xNDBlOWM5Zi1kNjA3LTQ0OTctYWYyOC00ZDJiOTA5MmQ1YTYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MGU5Yzlm LWQ2MDctNDQ5Ny1hZjI4LTRkMmI5MDkyZDVhNi8wLzk1QzNCQTdGMjNCNjM1MTcy MUY3N0RBODAyMDczMUY5REE0NkIzQzgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnlFQwDwQCAAIwCQMHACABDfLHgDANBgkqhkiG9w0BAQsFAAOCAQEAErSsNxMl DDp98DYAa5EpalVbansoelW7O70wqXn7iJX/rIiRH/9yku2B9h9t5PJoTayZyAfy 237uncZLCo82hFrKvLgSmrypwG0xigqb08UjMH1rdRO/S9LpUS50wl5p1dIEo6Gj J0qt8HAGT+O6daVnfcum38JyqhMQq1Z//q/Achq0L0bvSOdlA32qYScASJS2qq3G rp4GMI/S97i+3ysoU9kA9KdARgcEZ6OTtJqLJQWZ/Ui7cyU81QzePU36A3IyeLyj NovTe92EcUJPfu1S1ydAoijjtuwWwJFxetqZk2Jlc7GH26oKxmxZthRwUP3tQvmR q8Q6++5EnaML+Q== -----END CERTIFICATE-----Generated at Wed Apr 17 23:40:27 2024 by rpki-client on console-fra.rpki-client.org