$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer File: D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.cer (raw, json) Hash identifier: qe8e1rkfdm7dSuNRA0cm7P1DFyxjuJsed6kLxd8NQO4= Subject key identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2CB8E01B6DB31485458CCB1BA6761EDBBFE193F1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft caRepository: rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 30 Jul 2023 23:06:54 +0000 Certificate not after: Sun 28 Jul 2024 23:11:54 +0000 Subordinate resources: IP: 103.87.228.0/22 IP: 2400:d940::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Apr 2024 21:55:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:b8:e0:1b:6d:b3:14:85:45:8c:cb:1b:a6:76:1e:db:bf:e1:93:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 23:06:54 2023 GMT Not After : Jul 28 23:11:54 2024 GMT Subject: CN=D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:92:43:1a:f7:44:7a:0f:bc:36:9e:01:ca:69: bb:47:1e:f2:84:34:73:14:54:8c:08:5f:66:3d:4b: d4:b5:c4:ed:7c:a1:fb:ff:f5:b9:fb:7e:7b:f9:25: fc:48:65:f8:18:c6:3b:c4:5d:87:74:6e:3d:40:cb: 8e:0d:38:8d:0d:2e:06:82:54:88:81:66:b2:87:4e: 37:c1:36:3e:95:cb:b0:07:be:01:f9:6e:ca:8e:95: 96:8c:e6:e0:59:0d:cf:e1:3a:f7:da:cb:e4:73:31: db:f1:26:87:cb:05:b8:be:ed:6d:8f:8e:40:81:70: 48:51:62:ff:0b:75:be:41:fa:97:7e:d1:a8:95:9b: 55:78:ea:3b:05:e0:da:9d:57:5d:82:79:55:05:cc: d7:f7:73:09:b3:e8:76:ca:78:75:57:ac:b2:55:74: f1:3f:02:58:e1:83:90:e6:ad:be:cb:b4:ea:f2:e2: ed:33:e6:2d:d4:63:73:62:71:08:93:8e:3e:d9:6c: 7b:aa:23:b3:d4:56:30:fa:15:30:33:be:45:69:ca: 71:db:11:f1:30:02:7f:8c:f2:d7:35:3a:23:8c:34: d7:bd:78:59:de:57:f8:4a:22:2d:05:96:ab:dc:f6: e3:1f:7c:aa:5a:8c:2d:0a:0a:27:2a:25:80:c8:f3: dd:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D3:FB:61:D7:46:A4:47:67:D4:51:8D:6E:9F:D1:FB:D8:D0:BE:92:3F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/73f4ec1c-9535-4cbf-9c7a-fd32c830edba/0/D3FB61D746A44767D4518D6E9FD1FBD8D0BE923F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.228.0/22 IPv6: 2400:d940::/32 Signature Algorithm: sha256WithRSAEncryption 90:26:5d:75:7f:a6:ab:aa:53:fd:1b:77:cd:e6:96:77:a7:b8: 41:24:98:2b:17:33:87:79:11:78:be:66:99:7f:99:c1:b5:fb: 8a:78:7d:fa:ab:51:2e:ea:47:be:99:6b:79:1c:5a:a1:1f:79: e4:39:dd:c2:c6:47:d3:ea:21:a1:90:2f:8f:4c:f3:34:b2:0d: ba:7b:be:af:12:9b:da:20:a5:77:71:92:c6:f3:26:44:49:d0: e3:4b:a0:af:be:1e:6d:89:27:8e:d0:6d:5f:a9:c5:69:de:ff: f9:81:00:37:61:40:be:67:cf:77:d5:1c:d5:b7:61:82:fc:ce: ce:dd:01:43:84:9a:0f:ca:ab:a2:57:f1:e7:ae:39:b6:36:26: ce:3c:44:17:09:89:a0:49:b4:dd:38:08:82:45:de:c5:e0:d2: 67:aa:8a:a9:2c:9a:38:fa:d1:db:1e:37:87:d7:1f:12:f8:af: 5f:a5:ba:e6:eb:f3:10:26:67:cf:19:48:ef:69:fa:42:b4:45: 3a:5d:97:2b:03:cc:03:7a:82:f5:80:f0:fe:cf:d8:2c:5e:5d: 8d:3f:a5:04:ba:a0:e1:0d:39:16:b8:58:84:5a:20:f7:c4:b6: 77:10:52:ef:69:27:ca:c6:87:3a:d4:b0:5b:b5:7c:78:6f:f3: d1:7d:70:ed -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIULLjgG22zFIVFjMsbpnYe27/hk/EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMDIzMDY1NFoX DTI0MDcyODIzMTE1NFowMzExMC8GA1UEAxMoRDNGQjYxRDc0NkE0NDc2N0Q0NTE4 RDZFOUZEMUZCRDhEMEJFOTIzRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2SQxr3RHoPvDaeAcppu0ce8oQ0cxRUjAhfZj1L1LXE7Xyh+//1uft+e/kl /Ehl+BjGO8Rdh3RuPUDLjg04jQ0uBoJUiIFmsodON8E2PpXLsAe+Afluyo6Vlozm 4FkNz+E699rL5HMx2/Emh8sFuL7tbY+OQIFwSFFi/wt1vkH6l37RqJWbVXjqOwXg 2p1XXYJ5VQXM1/dzCbPodsp4dVesslV08T8CWOGDkOatvsu06vLi7TPmLdRjc2Jx CJOOPtlse6ojs9RWMPoVMDO+RWnKcdsR8TACf4zy1zU6I4w01714Wd5X+EoiLQWW q9z24x98qlqMLQoKJyolgMjz3VMCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNP7YddGpEdn1FGNbp/R+9jQvpI/MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83M2Y0ZWMxYy05NTM1LTRjYmYtOWM3YS1mZDMyYzgzMGVkYmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzczZjRlYzFj LTk1MzUtNGNiZi05YzdhLWZkMzJjODMwZWRiYS8wL0QzRkI2MUQ3NDZBNDQ3NjdE NDUxOEQ2RTlGRDFGQkQ4RDBCRTkyM0YubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnV+QwDQQCAAIwBwMFACQA2UAwDQYJKoZIhvcNAQELBQADggEBAJAmXXV/pquq U/0bd83mlnenuEEkmCsXM4d5EXi+Zpl/mcG1+4p4ffqrUS7qR76Za3kcWqEfeeQ5 3cLGR9PqIaGQL49M8zSyDbp7vq8Sm9ogpXdxksbzJkRJ0ONLoK++Hm2JJ47QbV+p xWne//mBADdhQL5nz3fVHNW3YYL8zs7dAUOEmg/Kq6JX8eeuObY2Js48RBcJiaBJ tN04CIJF3sXg0meqiqksmjj60dseN4fXHxL4r1+luubr8xAmZ88ZSO9p+kK0RTpd lysDzAN6gvWA8P7P2CxeXY0/pQS6oOENORa4WIRaIPfEtncQUu9pJ8rGhzrUsFu1 fHhv89F9cO0= -----END CERTIFICATE-----Generated at Sat Apr 27 21:40:23 2024 by rpki-client on console-ams.rpki-client.org