$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer File: 1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.cer (raw, json) Hash identifier: 0FPoqamXFJFBLSywfvzh4i6GbOeHL7m6T9m5xoOdB/Q= Subject key identifier: 1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 67775EF20ECC670F13ACA93BE46F122CF6ACE537 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.mft caRepository: rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 03 Jul 2023 08:17:36 +0000 Certificate not after: Mon 01 Jul 2024 08:22:36 +0000 Subordinate resources: IP: 103.14.74.0/23 IP: 2001:df7:5400::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:77:5e:f2:0e:cc:67:0f:13:ac:a9:3b:e4:6f:12:2c:f6:ac:e5:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 3 08:17:36 2023 GMT Not After : Jul 1 08:22:36 2024 GMT Subject: CN=1EEA71B4C70A47D53BE3204FE2C48CEF927EC731 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:52:a7:13:2a:5e:58:0f:1f:e4:ab:97:ee:88: 29:3f:25:e3:05:a8:7b:12:a3:32:ab:e5:2f:1c:77: 96:59:b3:42:51:08:7f:30:ae:f1:45:2b:9c:5f:54: 04:24:0c:47:ba:53:39:27:3f:67:74:6e:da:70:a0: cf:a2:3b:13:7c:72:85:be:be:cc:44:5e:63:c4:27: 9e:49:b3:c1:0a:b0:dd:56:95:d4:84:41:ac:9e:3e: 8f:68:56:3d:07:d8:85:69:4f:dc:dd:4b:3b:bc:6f: cb:c4:49:35:12:77:aa:64:ae:81:2a:a3:8c:ca:d3: 07:49:55:49:7f:9a:c4:da:57:b1:63:0f:ab:15:aa: a3:4b:7a:bd:2a:35:97:96:b0:a6:ae:50:28:91:f7: 1e:be:e9:58:b9:0d:dc:f6:97:c4:53:84:fa:9e:e3: 56:ed:1c:04:4a:fd:d9:b6:37:d8:20:c8:70:30:01: 96:cf:36:f5:af:b0:ef:b9:79:a1:35:87:57:7b:e3: 98:b4:5a:47:70:82:bd:a3:98:a4:c4:45:4d:6f:06: f3:e5:63:21:e9:77:ca:4e:62:10:2f:ee:37:a5:7c: 68:e7:7a:f0:3a:e5:14:a0:76:e3:8c:a3:d4:2c:aa: da:79:0c:49:9d:72:d8:bf:e1:04:a0:1a:47:80:8f: df:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1E:EA:71:B4:C7:0A:47:D5:3B:E3:20:4F:E2:C4:8C:EF:92:7E:C7:31 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1000e23e-f44a-4cfc-bf56-d99a092d7314/0/1EEA71B4C70A47D53BE3204FE2C48CEF927EC731.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.14.74.0/23 IPv6: 2001:df7:5400::/48 Signature Algorithm: sha256WithRSAEncryption 53:55:6c:85:5d:79:e4:84:cb:3f:c5:b2:7c:93:e7:f0:1c:51: 36:0d:ac:9c:c7:e0:8a:58:ef:e0:7d:23:eb:71:a0:7a:f9:11: 66:39:27:06:b5:c6:e9:c6:fe:d6:95:05:9f:19:81:f7:ce:ab: c1:34:c2:db:fc:26:96:f2:04:1f:ca:8f:d0:cd:c8:41:34:8f: b4:9d:33:72:45:ef:b4:14:52:a5:5f:0b:43:75:79:4b:13:ac: 0e:ce:0b:ac:e6:d4:e0:78:6b:cc:cd:18:0e:cc:f3:b5:3c:be: 29:9f:09:3e:49:11:50:99:53:4e:1e:b1:d9:03:f9:36:07:41: ec:5b:3a:ca:00:7f:8f:90:b2:cd:27:01:0f:07:c6:7f:2a:16: c7:f8:ae:3d:41:72:fb:81:33:3d:ce:8d:34:8b:2a:f7:40:f2: 78:80:f1:80:ad:ef:ff:63:62:6e:ce:db:16:a9:ae:d7:8e:28: 7c:ab:91:82:4e:23:c8:a8:1a:3a:76:c9:b0:b2:33:bc:0e:71: 79:72:c5:e3:a5:97:6a:4d:c5:33:7c:0a:83:28:20:a8:3f:e0: 78:7e:2d:92:3a:6e:9b:f4:b0:7e:0b:a4:bc:cb:08:a2:e7:6a: 4b:12:1b:94:fb:d0:44:9f:6f:d4:0e:02:b2:1d:91:6c:44:ae: 42:92:df:cc -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUZ3de8g7MZw8TrKk75G8SLPas5TcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcwMzA4MTczNloX DTI0MDcwMTA4MjIzNlowMzExMC8GA1UEAxMoMUVFQTcxQjRDNzBBNDdENTNCRTMy MDRGRTJDNDhDRUY5MjdFQzczMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALBSpxMqXlgPH+Srl+6IKT8l4wWoexKjMqvlLxx3llmzQlEIfzCu8UUrnF9U BCQMR7pTOSc/Z3Ru2nCgz6I7E3xyhb6+zEReY8QnnkmzwQqw3VaV1IRBrJ4+j2hW PQfYhWlP3N1LO7xvy8RJNRJ3qmSugSqjjMrTB0lVSX+axNpXsWMPqxWqo0t6vSo1 l5awpq5QKJH3Hr7pWLkN3PaXxFOE+p7jVu0cBEr92bY32CDIcDABls829a+w77l5 oTWHV3vjmLRaR3CCvaOYpMRFTW8G8+VjIel3yk5iEC/uN6V8aOd68DrlFKB244yj 1Cyq2nkMSZ1y2L/hBKAaR4CP3y8CAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFB7qcbTHCkfVO+MgT+LEjO+SfscxMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xMDAwZTIzZS1mNDRhLTRjZmMtYmY1Ni1kOTlhMDkyZDczMTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzEwMDBlMjNl LWY0NGEtNGNmYy1iZjU2LWQ5OWEwOTJkNzMxNC8wLzFFRUE3MUI0QzcwQTQ3RDUz QkUzMjA0RkUyQzQ4Q0VGOTI3RUM3MzEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnDkowDwQCAAIwCQMHACABDfdUADANBgkqhkiG9w0BAQsFAAOCAQEAU1VshV15 5ITLP8WyfJPn8BxRNg2snMfgiljv4H0j63GgevkRZjknBrXG6cb+1pUFnxmB986r wTTC2/wmlvIEH8qP0M3IQTSPtJ0zckXvtBRSpV8LQ3V5SxOsDs4LrObU4HhrzM0Y DszztTy+KZ8JPkkRUJlTTh6x2QP5NgdB7Fs6ygB/j5CyzScBDwfGfyoWx/iuPUFy +4EzPc6NNIsq90DyeIDxgK3v/2Nibs7bFqmu144ofKuRgk4jyKgaOnbJsLIzvA5x eXLF46WXak3FM3wKgyggqD/geH4tkjpum/SwfgukvMsIoudqSxIblPvQRJ9v1A4C sh2RbESuQpLfzA== -----END CERTIFICATE-----Generated at Wed May 8 04:37:47 2024 by rpki-client on console-fra.rpki-client.org