$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1CA9E40710262DA751A67E932477D6E12B4B2DED.cer File: 1CA9E40710262DA751A67E932477D6E12B4B2DED.cer (raw, json) Hash identifier: 7rnUVG8ID0dLuG8oFIuypL2AmRsZSQbUGSwiBrHS1n0= Subject key identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 640944D03561D22E7AFDED281A321AC5BFA0ABB0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft caRepository: rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 02:31:52 +0000 Certificate not after: Mon 29 Jul 2024 02:36:52 +0000 Subordinate resources: IP: 103.123.104.0/22 IP: 2403:9fc0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:09:44:d0:35:61:d2:2e:7a:fd:ed:28:1a:32:1a:c5:bf:a0:ab:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 02:31:52 2023 GMT Not After : Jul 29 02:36:52 2024 GMT Subject: CN=1CA9E40710262DA751A67E932477D6E12B4B2DED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:5e:1d:24:30:bd:e4:06:6e:06:b3:c9:b5:38: 2e:00:21:82:c1:36:53:aa:2b:cb:8f:fd:7e:00:32: 00:41:30:52:ec:a2:d6:c6:1a:22:4d:16:da:71:73: bd:a7:76:b4:7e:a1:5b:bc:f8:4a:c5:45:ca:26:0f: 5c:c5:d9:f9:ff:3c:48:57:80:f2:ae:eb:02:5d:d0: 5b:75:6f:be:2a:16:bd:3a:b6:0a:8b:2b:3b:a8:f6: 4c:23:fc:21:11:0e:46:76:6a:ae:13:2c:71:08:bb: 95:68:f1:3f:24:8d:a9:20:e5:64:cf:84:1d:e2:6c: 3b:28:d3:bb:5d:36:74:09:fa:5e:1b:5f:46:54:d7: 0f:91:2a:7f:55:21:cc:43:a5:38:79:c0:6e:36:58: 3e:a8:66:bc:36:07:50:87:6b:6c:fb:5c:05:b4:01: 2e:d9:0d:99:cd:2b:32:b0:62:26:92:d7:a9:22:ad: 93:61:20:9e:72:38:fe:05:9f:ec:86:a2:8b:2f:85: c4:7e:b1:af:fb:2b:dc:6e:b1:25:6a:03:52:a9:46: c9:d7:7f:81:0b:24:47:d8:95:25:a3:07:69:20:de: cb:dc:cb:b4:db:50:6b:de:f4:07:ee:54:6a:74:2b: e4:ed:90:c5:8f:61:8b:4b:de:64:d1:ee:2f:b3:c8: 43:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1C:A9:E4:07:10:26:2D:A7:51:A6:7E:93:24:77:D6:E1:2B:4B:2D:ED X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dad67d5f-5713-4153-871b-1b008f7ffdd2/0/1CA9E40710262DA751A67E932477D6E12B4B2DED.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.123.104.0/22 IPv6: 2403:9fc0::/32 Signature Algorithm: sha256WithRSAEncryption 51:0d:0a:95:ae:f7:96:6c:45:27:22:73:62:2c:71:fb:36:7e: 99:b9:8e:d0:27:91:1c:25:0c:d1:53:58:ab:aa:88:25:b8:f3: 0c:86:07:2a:e8:5b:9c:0e:07:ce:a5:5a:bf:f9:8d:be:04:81: 41:f8:0f:97:43:17:e6:12:eb:a0:77:6e:36:c6:71:94:69:a2: cb:81:b0:cd:3a:00:d1:45:9b:ac:25:08:ac:c9:02:a4:63:11: 45:f7:37:db:82:4f:8b:14:2a:cb:b2:f5:db:9f:49:8a:fe:c7: 1a:57:e5:ae:c3:3a:34:88:42:5c:f0:94:8b:03:0c:94:a9:84: fd:aa:e1:cb:83:30:37:62:9b:fe:c3:50:91:73:9b:3c:f0:85: cf:06:bb:d6:58:34:7a:50:30:48:24:eb:32:7a:8f:64:23:c2: b3:af:e5:c1:d0:88:d2:78:5b:aa:d9:6b:59:3b:59:f1:b2:06: 55:83:4b:5e:3c:4b:97:c7:c8:c4:d6:9d:5e:0c:22:b3:44:8d: e6:36:4e:b1:4c:c1:90:19:a6:66:28:19:94:24:5a:e1:a9:1d: 52:a0:4d:e8:31:e1:d7:fe:61:de:9d:e6:2a:5a:fc:1c:cc:b8: 4c:b0:68:15:c8:5a:6f:7b:c2:77:06:4c:82:29:12:54:3c:cd: 8f:f0:98:2d -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUZAlE0DVh0i56/e0oGjIaxb+gq7AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTAyMzE1MloX DTI0MDcyOTAyMzY1MlowMzExMC8GA1UEAxMoMUNBOUU0MDcxMDI2MkRBNzUxQTY3 RTkzMjQ3N0Q2RTEyQjRCMkRFRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKReHSQwveQGbgazybU4LgAhgsE2U6ory4/9fgAyAEEwUuyi1sYaIk0W2nFz vad2tH6hW7z4SsVFyiYPXMXZ+f88SFeA8q7rAl3QW3VvvioWvTq2CosrO6j2TCP8 IREORnZqrhMscQi7lWjxPySNqSDlZM+EHeJsOyjTu102dAn6XhtfRlTXD5Eqf1Uh zEOlOHnAbjZYPqhmvDYHUIdrbPtcBbQBLtkNmc0rMrBiJpLXqSKtk2EgnnI4/gWf 7Iaiiy+FxH6xr/sr3G6xJWoDUqlGydd/gQskR9iVJaMHaSDey9zLtNtQa970B+5U anQr5O2QxY9hi0veZNHuL7PIQ88CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFByp5AcQJi2nUaZ+kyR31uErSy3tMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kYWQ2N2Q1Zi01NzEzLTQxNTMtODcxYi0xYjAwOGY3ZmZkZDIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RhZDY3ZDVm LTU3MTMtNDE1My04NzFiLTFiMDA4ZjdmZmRkMi8wLzFDQTlFNDA3MTAyNjJEQTc1 MUE2N0U5MzI0NzdENkUxMkI0QjJERUQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJne2gwDQQCAAIwBwMFACQDn8AwDQYJKoZIhvcNAQELBQADggEBAFENCpWu95Zs RScic2Iscfs2fpm5jtAnkRwlDNFTWKuqiCW48wyGByroW5wOB86lWr/5jb4EgUH4 D5dDF+YS66B3bjbGcZRposuBsM06ANFFm6wlCKzJAqRjEUX3N9uCT4sUKsuy9duf SYr+xxpX5a7DOjSIQlzwlIsDDJSphP2q4cuDMDdim/7DUJFzmzzwhc8Gu9ZYNHpQ MEgk6zJ6j2QjwrOv5cHQiNJ4W6rZa1k7WfGyBlWDS148S5fHyMTWnV4MIrNEjeY2 TrFMwZAZpmYoGZQkWuGpHVKgTegx4df+Yd6d5ipa/BzMuEywaBXIWm97wncGTIIp ElQ8zY/wmC0= -----END CERTIFICATE-----Generated at Wed May 8 10:06:46 2024 by rpki-client on console-ams.rpki-client.org