$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer File: 007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.cer (raw, json) Hash identifier: LogxYHlGlyq/s6i9nYOVkrIiY+59I/Q+7MJHaZzxGA8= Subject key identifier: 00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6E3409FDFC44F43926C5C8E2D341396C59822E13 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.mft caRepository: rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 06 Nov 2023 06:09:59 +0000 Certificate not after: Mon 04 Nov 2024 06:14:59 +0000 Subordinate resources: IP: 103.58.104.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:34:09:fd:fc:44:f4:39:26:c5:c8:e2:d3:41:39:6c:59:82:2e:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 6 06:09:59 2023 GMT Not After : Nov 4 06:14:59 2024 GMT Subject: CN=007C91B049F735F71F2BE8CF92AEAA538D6B1F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b8:86:6b:a2:42:39:83:c2:bc:30:20:8e:ab: 65:67:fb:51:bb:1a:cd:a3:05:19:e4:30:7c:fc:6c: 34:5b:e2:95:39:f5:1e:4e:30:6c:d7:e0:fc:0a:97: 46:3a:50:e2:4e:e0:3f:5c:ca:be:a2:91:fa:47:e9: ad:60:e8:98:fb:94:57:04:86:0e:4f:71:9b:4c:fd: 77:a2:30:1d:56:4b:3e:03:98:e1:86:ab:f7:4a:2b: 32:45:4f:77:b4:70:8a:a4:79:2d:67:5c:91:e6:da: 22:87:03:73:e1:97:f4:96:7f:b7:3e:10:7a:e8:9d: 72:b4:57:30:95:53:3e:d0:46:87:98:cf:15:11:af: da:78:c2:dc:5a:8d:17:15:8f:dd:8f:50:6c:fe:6a: 98:ec:b5:75:fa:d2:d7:74:a1:e4:0b:02:ac:10:94: 0d:7d:9a:f1:25:9d:bb:40:66:ab:ff:7c:70:89:2b: f4:5e:32:d6:9f:f0:1a:72:15:6b:4f:21:e4:cf:fb: b2:5a:4e:f6:99:7a:eb:9e:7c:76:40:85:14:a4:08: db:cb:cd:91:89:8b:e6:c7:2d:fb:f5:b8:1b:56:44: ac:dd:b5:09:3a:e2:1e:39:60:3e:ba:4d:39:9a:7e: e7:d3:6f:ec:75:d1:a2:72:f9:be:ac:6f:4a:12:4e: 1c:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 00:7C:91:B0:49:F7:35:F7:1F:2B:E8:CF:92:AE:AA:53:8D:6B:1F:0B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/871ada9e-e2a9-400e-8dff-9be481aba583/0/007C91B049F735F71F2BE8CF92AEAA538D6B1F0B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.58.104.0/22 Signature Algorithm: sha256WithRSAEncryption 63:13:5e:7e:5d:69:5c:99:c6:f8:74:e2:f3:93:bd:90:22:99: 80:f7:bb:70:62:8c:1f:c5:0f:bb:b6:da:8b:48:19:d1:fa:31: d1:fc:8d:b4:f8:30:9f:dc:6f:60:40:53:06:7a:fb:be:e0:0f: 30:2e:f0:a0:19:25:41:27:d7:89:e9:0f:62:7a:d1:aa:e3:65: 3d:54:40:b4:f2:10:8e:8a:3a:a6:93:63:60:a6:14:06:26:22: 93:4f:17:0a:1f:5d:c7:40:60:da:8f:bf:57:85:94:8a:02:82: ff:7d:d9:1b:b8:08:e5:09:38:44:a3:71:4e:25:c1:98:72:0f: cf:bc:4f:67:bd:0e:e9:ac:f9:1d:05:30:3c:6d:cf:b6:59:19: 5b:c3:c5:02:34:35:f2:78:ae:7f:46:fe:a4:ce:88:b9:f2:1b: 05:32:2f:f2:97:2d:46:9d:4a:c8:9a:6d:cb:93:a0:be:6f:5e: 83:a9:a3:57:78:19:09:a9:e2:8d:4d:86:de:cd:88:95:88:2c: 0c:15:a9:ed:65:4e:73:f8:b8:ff:9a:a2:6f:84:1e:5d:8d:6b: 0a:38:b4:69:f4:48:08:37:de:99:1b:1c:4e:05:d2:42:12:b1: c2:61:a5:e3:dc:d5:73:bd:c6:33:66:e3:2e:4a:88:a1:a5:61: cd:6b:86:c6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUbjQJ/fxE9Dkmxcji00E5bFmCLhMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwNjA2MDk1OVoX DTI0MTEwNDA2MTQ1OVowMzExMC8GA1UEAxMoMDA3QzkxQjA0OUY3MzVGNzFGMkJF OENGOTJBRUFBNTM4RDZCMUYwQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALu4hmuiQjmDwrwwII6rZWf7UbsazaMFGeQwfPxsNFvilTn1Hk4wbNfg/AqX RjpQ4k7gP1zKvqKR+kfprWDomPuUVwSGDk9xm0z9d6IwHVZLPgOY4Yar90orMkVP d7RwiqR5LWdckebaIocDc+GX9JZ/tz4QeuidcrRXMJVTPtBGh5jPFRGv2njC3FqN FxWP3Y9QbP5qmOy1dfrS13Sh5AsCrBCUDX2a8SWdu0Bmq/98cIkr9F4y1p/wGnIV a08h5M/7slpO9pl66558dkCFFKQI28vNkYmL5sct+/W4G1ZErN21CTriHjlgPrpN OZp+59Nv7HXRonL5vqxvShJOHCcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAB8kbBJ9zX3Hyvoz5KuqlONax8LMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84NzFhZGE5ZS1lMmE5LTQwMGUtOGRmZi05YmU0ODFhYmE1ODMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3MWFkYTll LWUyYTktNDAwZS04ZGZmLTliZTQ4MWFiYTU4My8wLzAwN0M5MUIwNDlGNzM1Rjcx RjJCRThDRjkyQUVBQTUzOEQ2QjFGMEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnOmgwDQYJKoZIhvcNAQELBQADggEBAGMTXn5daVyZxvh04vOTvZAimYD3u3Bi jB/FD7u22otIGdH6MdH8jbT4MJ/cb2BAUwZ6+77gDzAu8KAZJUEn14npD2J60arj ZT1UQLTyEI6KOqaTY2CmFAYmIpNPFwofXcdAYNqPv1eFlIoCgv992Ru4COUJOESj cU4lwZhyD8+8T2e9Dums+R0FMDxtz7ZZGVvDxQI0NfJ4rn9G/qTOiLnyGwUyL/KX LUadSsiabcuToL5vXoOpo1d4GQmp4o1Nht7NiJWILAwVqe1lTnP4uP+aom+EHl2N awo4tGn0SAg33pkbHE4F0kISscJhpePc1XO9xjNm4y5KiKGlYc1rhsY= -----END CERTIFICATE-----Generated at Wed May 8 04:37:45 2024 by rpki-client on console-fra.rpki-client.org