$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer File: 0E8637C23FD7FD1ABF91B025E48040909797EA6C.cer (raw, json) Hash identifier: fGI2XUnQi4C9eJ680InT82LL+V1t8PrQw6U22N+zX3U= Subject key identifier: 0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7F59C90E44670F5AFC2A9394B50BDD8ED9F8DB71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.mft caRepository: rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 03:14:49 +0000 Certificate not after: Mon 29 Jul 2024 03:19:49 +0000 Subordinate resources: IP: 103.77.156.0/22 IP: 2407:9c80::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:59:c9:0e:44:67:0f:5a:fc:2a:93:94:b5:0b:dd:8e:d9:f8:db:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 03:14:49 2023 GMT Not After : Jul 29 03:19:49 2024 GMT Subject: CN=0E8637C23FD7FD1ABF91B025E48040909797EA6C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ff:1d:0c:0d:33:c0:7b:5d:b6:22:1f:75:6c: 90:0d:44:28:75:ae:19:4c:41:52:98:0e:93:76:0b: 66:2b:37:bd:02:fc:b0:f7:be:9f:39:7d:a3:09:ed: 64:2b:0f:67:30:25:a0:a8:52:c9:48:65:83:59:c9: 01:ba:4b:51:a0:0c:2d:b3:7a:6f:8d:20:de:ed:75: e1:71:a7:48:28:79:d7:ab:71:be:63:26:23:14:61: 97:af:c3:44:8f:b9:9b:05:6d:cd:ad:6d:39:89:1f: c0:49:6b:02:c1:42:95:c0:40:f6:ab:49:cc:66:38: 33:04:1d:d0:50:92:d0:49:d0:b7:84:0b:ad:c1:d9: d4:15:dd:37:63:c9:c0:55:9b:8e:fb:3c:15:f6:ac: 58:97:f9:65:c6:05:15:5d:75:da:63:b7:0f:7f:36: 42:a3:0b:17:76:7e:d1:6d:56:76:8f:89:e8:be:86: d6:d9:67:32:76:7c:8b:24:76:27:35:40:28:88:44: 4d:27:aa:f7:0b:f7:2f:e6:05:bd:30:93:e7:2e:8c: 17:08:1d:99:14:f3:10:46:dc:11:f8:84:c7:ae:78: 1c:a4:4e:46:77:74:b2:cc:07:1a:e4:db:af:d3:b1: 66:cd:0d:2e:3f:2c:0f:83:1f:55:e2:03:a9:01:ca: 3c:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 0E:86:37:C2:3F:D7:FD:1A:BF:91:B0:25:E4:80:40:90:97:97:EA:6C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ac3f2288-88cf-4d2b-bba6-a03dd5f83761/0/0E8637C23FD7FD1ABF91B025E48040909797EA6C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.77.156.0/22 IPv6: 2407:9c80::/32 Signature Algorithm: sha256WithRSAEncryption 68:13:e1:73:83:5a:0b:a3:75:0d:cc:61:f7:70:9c:af:63:02: f7:40:ff:74:2c:02:1d:90:2f:2f:88:31:30:9f:d2:1c:11:5c: 00:f1:8d:6a:9b:e9:51:78:39:2e:64:10:f8:5d:e4:4c:2d:01: c6:f0:48:86:6d:00:20:6c:14:c6:5c:44:3f:e9:d2:32:b2:28: ff:42:8f:71:63:f7:8d:1a:b9:c4:cb:d3:63:4f:7d:55:6a:df: 0a:75:2f:19:f4:8d:10:bf:35:15:c1:a7:9d:c1:23:b2:96:9c: 98:ec:32:c2:01:b0:7c:c2:d8:5c:b9:52:62:c4:cc:d9:63:f8: b4:12:38:83:f4:44:6c:5e:68:25:96:2f:23:64:84:28:ec:db: 2e:6b:dd:ff:df:57:56:77:5e:69:d8:ef:1c:0f:97:e1:29:5e: 5f:9b:ef:1d:58:45:d2:28:41:c3:be:52:07:fd:5f:4d:2f:0e: 9c:6f:42:e8:75:36:bf:ef:36:c7:76:b3:4a:d0:cd:12:8e:e2: 23:b5:20:6a:52:87:3e:ec:8a:d2:68:2f:b4:03:43:d7:33:99: ab:5d:49:dd:52:c0:ac:f0:d0:65:72:8c:46:f2:80:f1:21:af: 2f:e7:d8:40:b7:ec:42:59:06:5e:06:2e:84:49:f0:8f:8e:5f: 10:02:56:20 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUf1nJDkRnD1r8KpOUtQvdjtn423EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTAzMTQ0OVoX DTI0MDcyOTAzMTk0OVowMzExMC8GA1UEAxMoMEU4NjM3QzIzRkQ3RkQxQUJGOTFC MDI1RTQ4MDQwOTA5Nzk3RUE2QzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL7/HQwNM8B7XbYiH3VskA1EKHWuGUxBUpgOk3YLZis3vQL8sPe+nzl9ownt ZCsPZzAloKhSyUhlg1nJAbpLUaAMLbN6b40g3u114XGnSCh516txvmMmIxRhl6/D RI+5mwVtza1tOYkfwElrAsFClcBA9qtJzGY4MwQd0FCS0EnQt4QLrcHZ1BXdN2PJ wFWbjvs8FfasWJf5ZcYFFV112mO3D382QqMLF3Z+0W1Wdo+J6L6G1tlnMnZ8iyR2 JzVAKIhETSeq9wv3L+YFvTCT5y6MFwgdmRTzEEbcEfiEx654HKRORnd0sswHGuTb r9OxZs0NLj8sD4MfVeIDqQHKPGUCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFA6GN8I/1/0av5GwJeSAQJCXl+psMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hYzNmMjI4OC04OGNmLTRkMmItYmJhNi1hMDNkZDVmODM3NjEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FjM2YyMjg4 LTg4Y2YtNGQyYi1iYmE2LWEwM2RkNWY4Mzc2MS8wLzBFODYzN0MyM0ZEN0ZEMUFC RjkxQjAyNUU0ODA0MDkwOTc5N0VBNkMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnTZwwDQQCAAIwBwMFACQHnIAwDQYJKoZIhvcNAQELBQADggEBAGgT4XODWguj dQ3MYfdwnK9jAvdA/3QsAh2QLy+IMTCf0hwRXADxjWqb6VF4OS5kEPhd5EwtAcbw SIZtACBsFMZcRD/p0jKyKP9Cj3Fj940aucTL02NPfVVq3wp1Lxn0jRC/NRXBp53B I7KWnJjsMsIBsHzC2Fy5UmLEzNlj+LQSOIP0RGxeaCWWLyNkhCjs2y5r3f/fV1Z3 XmnY7xwPl+EpXl+b7x1YRdIoQcO+Ugf9X00vDpxvQuh1Nr/vNsd2s0rQzRKO4iO1 IGpShz7sitJoL7QDQ9czmatdSd1SwKzw0GVyjEbygPEhry/n2EC37EJZBl4GLoRJ 8I+OXxACViA= -----END CERTIFICATE-----Generated at Wed May 8 09:50:24 2024 by rpki-client on console-fra.rpki-client.org