$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer File: C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.cer (raw, json) Hash identifier: c+tpZ3TL93JMar+e9iAQCLNgOcMHbKn4jSjnL/VyCEA= Subject key identifier: C4:CE:1B:D3:CB:FB:01:5E:60:96:5A:65:E2:FB:31:A6:BA:26:18:9B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1967F50DBEAE0D664ED4AA863881C2F79DBA4B13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.mft caRepository: rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 06:58:50 +0000 Certificate not after: Mon 29 Jul 2024 07:03:50 +0000 Subordinate resources: IP: 103.155.166.0/23 IP: 2406:7240::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 19:50:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:67:f5:0d:be:ae:0d:66:4e:d4:aa:86:38:81:c2:f7:9d:ba:4b:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 06:58:50 2023 GMT Not After : Jul 29 07:03:50 2024 GMT Subject: CN=C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:2f:1c:11:24:ff:8b:2b:32:70:b5:ce:27:5b: 59:c5:8f:a3:ee:e5:29:83:18:ee:38:72:2a:6e:c3: 5c:e5:66:6b:f4:27:ee:97:f2:db:39:53:21:14:e9: dc:57:d0:0c:73:09:70:c8:f8:3a:91:a3:81:53:75: 32:db:3c:4e:18:8b:aa:4a:d0:d9:cc:ea:73:6e:f7: 09:18:68:8a:cd:be:4b:87:0a:84:33:a8:f6:46:fb: 75:5b:41:81:b3:7f:6a:79:83:b4:cb:14:17:d1:02: 94:1d:b9:f5:0c:b8:59:b0:35:86:09:2a:7c:86:d7: 5c:2d:bc:64:38:c9:4a:fc:c1:76:ea:06:28:16:9c: 7e:c6:89:60:c0:16:61:b6:2c:f5:f8:96:af:a5:96: 0c:dd:37:e4:6b:92:9b:ac:6b:1c:32:1b:b0:c9:12: c2:d1:f2:72:99:1b:21:9e:dc:d9:27:06:29:2a:7c: b8:2a:24:d6:0f:08:8b:5e:11:d3:33:e1:1c:4d:2d: f6:45:be:e3:4a:51:06:0c:e7:02:3c:ec:25:47:7f: db:f7:0c:00:fc:cf:93:87:36:ef:a6:24:5e:a5:cb: 6c:26:f9:b1:6c:74:16:d8:59:a7:7d:3f:6b:2f:00: 56:d1:00:4f:79:30:f7:39:40:4a:5d:94:63:39:e9: 8e:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C4:CE:1B:D3:CB:FB:01:5E:60:96:5A:65:E2:FB:31:A6:BA:26:18:9B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4c6b2bd7-d7f1-4815-a60a-cad54029ce88/0/C4CE1BD3CBFB015E60965A65E2FB31A6BA26189B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.155.166.0/23 IPv6: 2406:7240::/32 Signature Algorithm: sha256WithRSAEncryption 32:aa:41:36:75:ae:ec:f1:6e:0f:86:56:11:42:7f:66:94:9b: 2a:8f:f8:05:48:e3:c3:fc:e3:52:e9:ac:05:11:8a:a2:41:8c: d6:27:90:62:ab:f7:43:a2:aa:37:17:65:dc:03:ea:40:13:32: c4:25:e1:3d:e7:db:12:30:ac:e2:a2:a2:fb:af:9d:28:28:c1: d8:51:d5:eb:a0:2c:8b:ac:5b:12:08:39:fe:d7:35:80:71:11: 1a:f8:30:7f:17:e0:11:d8:17:30:b7:b1:e1:f0:ec:05:7e:d0: e3:5c:43:4b:71:cc:dc:1d:a6:6d:58:30:b3:08:cd:f0:e4:41: 29:6f:db:68:f0:91:33:f3:7a:d9:31:3a:58:a7:6f:c9:c4:e3: a7:b0:ca:c9:f3:2f:fd:3b:3e:96:b2:25:07:0a:f4:06:ef:3b: 81:ed:8c:14:2c:83:ce:40:77:87:af:d3:7f:38:b6:57:77:cd: 4a:a0:c0:63:ab:92:0f:ea:2d:bf:05:51:ab:f6:0c:b6:5f:d2: 85:64:94:42:24:fc:67:58:8a:25:ed:c0:c3:65:25:6a:cb:73: ba:39:6c:04:2e:26:22:1b:bb:f6:c9:57:03:46:64:f2:ef:e6: 1e:e1:5c:4b:95:74:15:2b:eb:64:ba:d3:99:13:4f:0c:d6:17: 55:1d:56:22 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUGWf1Db6uDWZO1KqGOIHC9526SxMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA2NTg1MFoX DTI0MDcyOTA3MDM1MFowMzExMC8GA1UEAxMoQzRDRTFCRDNDQkZCMDE1RTYwOTY1 QTY1RTJGQjMxQTZCQTI2MTg5QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALIvHBEk/4srMnC1zidbWcWPo+7lKYMY7jhyKm7DXOVma/Qn7pfy2zlTIRTp 3FfQDHMJcMj4OpGjgVN1Mts8ThiLqkrQ2czqc273CRhois2+S4cKhDOo9kb7dVtB gbN/anmDtMsUF9EClB259Qy4WbA1hgkqfIbXXC28ZDjJSvzBduoGKBacfsaJYMAW YbYs9fiWr6WWDN035GuSm6xrHDIbsMkSwtHycpkbIZ7c2ScGKSp8uCok1g8Ii14R 0zPhHE0t9kW+40pRBgznAjzsJUd/2/cMAPzPk4c276YkXqXLbCb5sWx0FthZp30/ ay8AVtEAT3kw9zlASl2UYznpjtsCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMTOG9PL+wFeYJZaZeL7Maa6JhibMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YzZiMmJkNy1kN2YxLTQ4MTUtYTYwYS1jYWQ1NDAyOWNlODgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRjNmIyYmQ3 LWQ3ZjEtNDgxNS1hNjBhLWNhZDU0MDI5Y2U4OC8wL0M0Q0UxQkQzQ0JGQjAxNUU2 MDk2NUE2NUUyRkIzMUE2QkEyNjE4OUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnm6YwDQQCAAIwBwMFACQGckAwDQYJKoZIhvcNAQELBQADggEBADKqQTZ1ruzx bg+GVhFCf2aUmyqP+AVI48P841LprAURiqJBjNYnkGKr90OiqjcXZdwD6kATMsQl 4T3n2xIwrOKiovuvnSgowdhR1eugLIusWxIIOf7XNYBxERr4MH8X4BHYFzC3seHw 7AV+0ONcQ0txzNwdpm1YMLMIzfDkQSlv22jwkTPzetkxOlinb8nE46ewysnzL/07 PpayJQcK9AbvO4HtjBQsg85Ad4ev0384tld3zUqgwGOrkg/qLb8FUav2DLZf0oVk lEIk/GdYiiXtwMNlJWrLc7o5bAQuJiIbu/bJVwNGZPLv5h7hXEuVdBUr62S605kT TwzWF1UdViI= -----END CERTIFICATE-----Generated at Sat May 4 17:59:18 2024 by rpki-client on console-fra.rpki-client.org