$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1678F34665D7A5281AECD895B892F07EA136CF72.cer File: 1678F34665D7A5281AECD895B892F07EA136CF72.cer (raw, json) Hash identifier: qQpFVZy2HSHc6EKipCIhutPWu0FvI+V+km/BxOmPVCk= Subject key identifier: 16:78:F3:46:65:D7:A5:28:1A:EC:D8:95:B8:92:F0:7E:A1:36:CF:72 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2DA1701A4115CFFCF38567ACEE66833C8A285C0F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.mft caRepository: rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 10:28:15 +0000 Certificate not after: Mon 29 Jul 2024 10:33:15 +0000 Subordinate resources: IP: 202.129.224.0/22 IP: 2001:df3:e600::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:a1:70:1a:41:15:cf:fc:f3:85:67:ac:ee:66:83:3c:8a:28:5c:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 10:28:15 2023 GMT Not After : Jul 29 10:33:15 2024 GMT Subject: CN=1678F34665D7A5281AECD895B892F07EA136CF72 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:c9:e3:e4:f2:01:6b:51:ac:3f:a6:9d:89:0b: 39:0b:14:f0:be:3d:aa:a6:4e:0b:29:f8:a6:33:c7: b3:5a:dc:c3:5b:82:c3:6e:45:99:f5:8d:fa:0b:05: 8d:da:47:c3:7f:97:ee:d8:08:75:ab:66:ee:47:46: 4a:50:bd:9a:08:65:79:60:69:c9:12:29:83:4c:44: a5:e6:95:ea:6c:6b:4d:81:84:92:f7:69:72:20:af: 72:d4:5e:8d:3f:b0:a8:6d:78:24:b7:63:00:1a:6b: 4d:a0:5b:fd:db:20:70:c6:ec:f3:18:d8:be:42:87: 20:c4:c8:ce:4a:a3:58:4a:89:96:65:f8:f7:37:e5: 0a:ff:ea:18:16:f8:7e:9a:a1:25:31:b7:6d:61:5b: 6e:4b:38:d7:be:f3:94:c4:f8:48:0b:e5:73:04:5c: d8:36:90:7d:7a:a4:30:45:84:15:2c:64:39:7f:30: af:dd:5a:43:1f:66:2b:0e:90:45:aa:05:6f:3e:f4: 55:4f:5a:5a:79:7e:fd:37:33:75:9b:bf:34:90:e0: fd:fa:80:b6:55:7b:6a:36:34:60:7b:08:21:35:b5: fa:60:6e:17:32:3d:fa:cb:36:a8:6b:ad:48:a1:de: c2:ca:59:6d:0f:0c:3f:08:13:c3:29:f9:1e:6c:69: 2d:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 16:78:F3:46:65:D7:A5:28:1A:EC:D8:95:B8:92:F0:7E:A1:36:CF:72 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4793686b-3384-4412-8e7c-e9d1b852aa1e/0/1678F34665D7A5281AECD895B892F07EA136CF72.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.129.224.0/22 IPv6: 2001:df3:e600::/48 Signature Algorithm: sha256WithRSAEncryption 9a:4b:b3:f4:f6:c0:9d:68:51:16:1e:92:16:ed:29:cd:34:f2: 84:30:92:01:bc:c8:b5:fc:37:83:74:88:2e:7c:ed:15:55:ca: 26:cf:dd:3c:08:43:c0:8e:3f:b3:41:8e:9a:8a:48:fe:72:79: 3b:ca:e3:02:77:3e:2a:39:b1:56:c9:d0:6b:3e:e3:a2:5a:ee: 76:31:26:91:4d:17:5d:50:4c:2e:7b:60:3d:75:45:73:f9:38: b0:fe:1b:9e:e2:43:ec:5c:6e:cd:94:45:b5:92:a1:c3:63:4d: 9e:a2:24:25:8d:da:26:1b:61:17:36:80:a4:f6:53:1f:5f:d4: de:f2:e7:fd:c9:c3:33:37:36:6a:9d:42:62:ac:aa:de:2c:8d: 0f:85:7e:17:93:33:f8:76:36:3e:97:fe:e4:2e:60:00:03:ff: bc:ed:7c:34:f1:f6:a3:4a:be:2a:49:dc:76:a9:82:d5:50:87: 33:c8:14:a2:49:f3:30:ff:d4:d6:36:e1:ef:73:1f:f4:a9:ec: 19:94:23:de:60:81:ca:50:31:e4:e8:59:71:0e:e4:4f:a7:c4: 3a:a4:8f:ad:08:2a:1d:b0:c0:ef:21:a3:cf:7b:92:99:d3:7b: c5:9f:b1:df:b2:4c:fb:a7:ee:df:27:20:cd:cb:84:8e:02:a8: 53:ff:d0:8b -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIULaFwGkEVz/zzhWes7maDPIooXA8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTEwMjgxNVoX DTI0MDcyOTEwMzMxNVowMzExMC8GA1UEAxMoMTY3OEYzNDY2NUQ3QTUyODFBRUNE ODk1Qjg5MkYwN0VBMTM2Q0Y3MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPJ4+TyAWtRrD+mnYkLOQsU8L49qqZOCyn4pjPHs1rcw1uCw25FmfWN+gsF jdpHw3+X7tgIdatm7kdGSlC9mghleWBpyRIpg0xEpeaV6mxrTYGEkvdpciCvctRe jT+wqG14JLdjABprTaBb/dsgcMbs8xjYvkKHIMTIzkqjWEqJlmX49zflCv/qGBb4 fpqhJTG3bWFbbks4177zlMT4SAvlcwRc2DaQfXqkMEWEFSxkOX8wr91aQx9mKw6Q RaoFbz70VU9aWnl+/TczdZu/NJDg/fqAtlV7ajY0YHsIITW1+mBuFzI9+ss2qGut SKHewspZbQ8MPwgTwyn5HmxpLckCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBZ480Zl16UoGuzYlbiS8H6hNs9yMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NzkzNjg2Yi0zMzg0LTQ0MTItOGU3Yy1lOWQxYjg1MmFhMWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ3OTM2ODZi LTMzODQtNDQxMi04ZTdjLWU5ZDFiODUyYWExZS8wLzE2NzhGMzQ2NjVEN0E1Mjgx QUVDRDg5NUI4OTJGMDdFQTEzNkNGNzIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BALKgeAwDwQCAAIwCQMHACABDfPmADANBgkqhkiG9w0BAQsFAAOCAQEAmkuz9PbA nWhRFh6SFu0pzTTyhDCSAbzItfw3g3SILnztFVXKJs/dPAhDwI4/s0GOmopI/nJ5 O8rjAnc+KjmxVsnQaz7jolrudjEmkU0XXVBMLntgPXVFc/k4sP4bnuJD7FxuzZRF tZKhw2NNnqIkJY3aJhthFzaApPZTH1/U3vLn/cnDMzc2ap1CYqyq3iyND4V+F5Mz +HY2Ppf+5C5gAAP/vO18NPH2o0q+KkncdqmC1VCHM8gUoknzMP/U1jbh73Mf9Kns GZQj3mCBylAx5OhZcQ7kT6fEOqSPrQgqHbDA7yGjz3uSmdN7xZ+x37JM+6fu3ycg zcuEjgKoU//Qiw== -----END CERTIFICATE-----Generated at Wed May 8 04:37:46 2024 by rpki-client on console-fra.rpki-client.org