$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/20ABF702057AD5F01207F6C578160654EB44C914.cer File: 20ABF702057AD5F01207F6C578160654EB44C914.cer (raw, json) Hash identifier: WiVO7u8pnPvRVFBHclq8YnEVMlJwd4gNx9SLgZakqxI= Subject key identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D3AC257DFDB2A385FC8295279533388FC589C15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft caRepository: rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 13 Oct 2023 12:34:56 +0000 Certificate not after: Fri 11 Oct 2024 12:39:56 +0000 Subordinate resources: IP: 103.164.80.0/24 IP: 103.209.1.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:3a:c2:57:df:db:2a:38:5f:c8:29:52:79:53:33:88:fc:58:9c:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 13 12:34:56 2023 GMT Not After : Oct 11 12:39:56 2024 GMT Subject: CN=20ABF702057AD5F01207F6C578160654EB44C914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6f:ed:03:62:d0:34:5c:13:a1:dd:c1:bb:4f: bf:e6:dc:d1:7a:93:b0:5e:2a:97:67:ee:df:94:87: 5a:f7:89:3b:df:97:df:e6:e0:2b:09:ce:11:45:82: e9:e5:4a:6d:53:0b:f0:d4:0e:7b:b6:ad:af:30:0b: 6d:bc:a8:de:1d:8c:3b:95:7f:50:19:5a:70:4b:c4: 12:11:9d:78:cc:5e:08:1a:98:8f:18:de:19:fc:84: 42:6b:dd:c7:7e:32:7b:df:c5:2b:e8:14:df:86:42: cd:9e:d0:28:5f:16:cf:f5:f5:78:02:9a:30:0d:4e: 23:49:96:f9:5d:1a:60:7e:da:a6:f7:30:f4:f1:5f: a1:24:aa:1d:d9:9a:6a:f5:08:2d:86:9a:de:a9:ce: 87:f2:c1:a9:b4:50:c9:bc:bd:28:cb:f5:68:ed:13: 0b:ba:26:a6:31:17:e5:bf:09:9f:ec:4e:bf:a7:4c: 89:de:c1:32:5f:ef:a3:09:8c:53:40:97:85:5e:d7: 76:9e:8d:69:10:95:65:36:57:7d:2f:ac:6c:11:fc: 5b:01:03:70:a4:47:10:29:41:c1:dc:62:e6:ff:8b: 84:32:91:9b:34:6e:20:dd:cf:c8:fd:2e:d5:e7:26: e9:12:2c:8f:37:34:ad:73:7d:a1:27:0c:0a:e4:6c: 6a:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 20:AB:F7:02:05:7A:D5:F0:12:07:F6:C5:78:16:06:54:EB:44:C9:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/67db23b7-9159-46c7-8853-06654ae47aed/0/20ABF702057AD5F01207F6C578160654EB44C914.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.80.0/24 103.209.1.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:35:08:71:bb:36:04:88:50:d5:4f:5f:bf:14:0e:c4:86:bb: a7:ec:e1:7e:c2:9e:3a:5e:24:8e:3e:e7:c5:72:c9:12:95:e8: 9b:79:b1:71:21:09:d0:a4:c6:5b:b3:c5:24:90:b8:f9:46:e0: 2a:12:3f:e2:17:2a:ba:46:47:c7:42:ea:2e:55:c5:9d:29:f4: 49:4d:78:97:9e:ed:f5:6a:4e:05:50:8f:dc:03:38:05:07:01: dc:91:c1:8d:98:39:08:76:c5:bb:9c:02:20:e7:a9:81:73:a9: 71:ed:89:eb:fd:67:16:b0:2b:c9:a0:89:19:99:06:80:e7:6c: 29:71:3f:ac:8b:31:6b:77:48:6a:d7:5e:82:80:4a:da:49:a3: c4:12:ae:df:e5:13:d2:4e:e5:d7:00:0e:49:c5:56:b6:c1:0d: 98:7c:5b:32:03:7c:e6:4c:f7:20:ac:82:7e:d9:2b:99:8d:bd: 07:f0:8a:a4:55:c6:21:f1:86:c1:e0:01:60:4e:0f:4e:42:7d: 7d:e1:58:eb:c4:a3:79:54:b0:01:b5:43:a3:7b:79:14:35:95: 88:6e:fa:16:58:bd:af:45:d7:e0:4f:c3:06:95:0f:83:64:fe: 12:41:f1:15:3b:79:46:93:83:e0:d5:15:6e:17:f9:24:e6:97: 73:71:e6:03 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUDTrCV9/bKjhfyClSeVMziPxYnBUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxMzEyMzQ1NloX DTI0MTAxMTEyMzk1NlowMzExMC8GA1UEAxMoMjBBQkY3MDIwNTdBRDVGMDEyMDdG NkM1NzgxNjA2NTRFQjQ0QzkxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdv7QNi0DRcE6HdwbtPv+bc0XqTsF4ql2fu35SHWveJO9+X3+bgKwnOEUWC 6eVKbVML8NQOe7atrzALbbyo3h2MO5V/UBlacEvEEhGdeMxeCBqYjxjeGfyEQmvd x34ye9/FK+gU34ZCzZ7QKF8Wz/X1eAKaMA1OI0mW+V0aYH7apvcw9PFfoSSqHdma avUILYaa3qnOh/LBqbRQyby9KMv1aO0TC7ompjEX5b8Jn+xOv6dMid7BMl/vowmM U0CXhV7Xdp6NaRCVZTZXfS+sbBH8WwEDcKRHEClBwdxi5v+LhDKRmzRuIN3PyP0u 1ecm6RIsjzc0rXN9oScMCuRsaiMCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCCr9wIFetXwEgf2xXgWBlTrRMkUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82N2RiMjNiNy05MTU5LTQ2YzctODg1My0wNjY1NGFlNDdhZWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY3ZGIyM2I3 LTkxNTktNDZjNy04ODUzLTA2NjU0YWU0N2FlZC8wLzIwQUJGNzAyMDU3QUQ1RjAx MjA3RjZDNTc4MTYwNjU0RUI0NEM5MTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BABnpFADBABn0QEwDQYJKoZIhvcNAQELBQADggEBAH01CHG7NgSIUNVPX78UDsSG u6fs4X7CnjpeJI4+58VyyRKV6Jt5sXEhCdCkxluzxSSQuPlG4CoSP+IXKrpGR8dC 6i5VxZ0p9ElNeJee7fVqTgVQj9wDOAUHAdyRwY2YOQh2xbucAiDnqYFzqXHtiev9 ZxawK8mgiRmZBoDnbClxP6yLMWt3SGrXXoKAStpJo8QSrt/lE9JO5dcADknFVrbB DZh8WzIDfOZM9yCsgn7ZK5mNvQfwiqRVxiHxhsHgAWBOD05CfX3hWOvEo3lUsAG1 Q6N7eRQ1lYhu+hZYva9F1+BPwwaVD4Nk/hJB8RU7eUaTg+DVFW4X+STml3Nx5gM= -----END CERTIFICATE-----Generated at Wed May 8 15:17:33 2024 by rpki-client on console-fra.rpki-client.org