$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer File: 29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.cer (raw, json) Hash identifier: zjetDVLgPPBoGmqw7p9OIMQaj8NlyaKpewxIyDVJwSE= Subject key identifier: 29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3B7EAA640DE9ED5C9CFC3CF5C8D736568027D295 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.mft caRepository: rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 26 Jun 2023 13:09:35 +0000 Certificate not after: Mon 24 Jun 2024 13:14:35 +0000 Subordinate resources: IP: 103.191.176.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:7e:aa:64:0d:e9:ed:5c:9c:fc:3c:f5:c8:d7:36:56:80:27:d2:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 26 13:09:35 2023 GMT Not After : Jun 24 13:14:35 2024 GMT Subject: CN=29CF00DB5C2109C4B5090935368C9AC57C5BD2A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:fd:e1:6a:4a:46:c9:ca:b1:fe:24:3e:d6:1e: cd:89:50:ff:ce:ba:bd:df:24:de:6c:eb:f3:ff:5d: b2:c1:4b:da:de:ff:cc:8b:a2:ac:11:90:46:dc:16: e9:86:7d:0b:f6:1b:09:89:df:6a:34:54:ee:df:9e: 06:0d:0d:a3:88:40:54:ad:8c:d5:9c:fd:e3:e9:3c: 0d:8a:c3:a9:37:3b:10:d4:46:e1:07:8a:16:7f:18: c6:96:e6:d2:fa:88:b3:46:76:ea:ee:88:e8:ca:72: ef:a0:be:34:3e:d8:95:ff:b4:e7:07:5e:99:61:bf: 20:8c:79:61:2f:9d:95:26:1e:51:6a:0f:5e:c9:03: 56:45:d7:f2:79:a9:3e:57:f3:bf:17:ff:5f:06:6f: 73:b8:d1:6b:5b:a7:5b:9b:d7:21:78:50:ba:99:c2: 3a:27:8d:e5:16:2e:29:a0:1a:9b:e1:2e:d7:3e:06: 0b:57:d9:2e:3e:d1:ed:54:8a:ad:92:da:c1:cf:14: e4:dc:3c:f9:fb:05:62:a4:c6:6a:58:1f:7e:7b:65: 57:99:ff:75:d6:5c:fe:0b:a1:65:5d:0c:12:4e:d2: dc:6b:94:f0:da:ae:82:e8:a5:4f:1a:1f:74:0f:ba: 5a:7e:92:0a:b0:8b:22:e6:c5:dd:f8:d6:54:b8:95: 93:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 29:CF:00:DB:5C:21:09:C4:B5:09:09:35:36:8C:9A:C5:7C:5B:D2:A4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7a22b4e2-26f6-41e8-8910-206bea783db9/0/29CF00DB5C2109C4B5090935368C9AC57C5BD2A4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.176.0/23 Signature Algorithm: sha256WithRSAEncryption 45:d1:bf:47:33:d1:f5:e9:1e:77:84:98:4c:79:5d:d1:dc:f7: 3f:79:09:02:b2:cd:9c:74:0d:de:8e:5f:dc:55:5b:51:2f:5b: 1e:36:5a:43:74:43:c8:43:bc:7d:50:d2:7c:bb:ab:41:8c:72: 89:1a:3f:11:fd:54:8c:4d:11:dd:1c:1d:f0:12:99:86:53:b0: e3:1e:82:34:13:fa:2d:b5:4b:56:4c:78:24:3b:a2:3e:19:b2: ae:cd:0e:3b:aa:c8:83:ad:1e:a9:60:c3:f7:c6:cb:cd:75:d3: 45:93:72:b2:be:01:b7:41:68:e9:8f:8e:2f:15:69:ee:be:8a: 20:22:88:12:0e:4c:ee:29:78:d4:b9:27:b8:06:fe:7a:05:ad: 77:d3:f5:bd:f0:04:71:a5:1d:3b:c7:33:cb:20:19:48:63:c5: 12:80:c6:c4:5c:da:4c:34:70:94:ec:36:52:2a:ba:75:75:a7: ab:31:e4:68:a4:af:10:6d:d3:31:81:31:04:51:da:b5:23:e5: a4:61:f6:2c:97:3c:56:a8:a9:36:87:64:03:58:5f:d5:64:b0: 02:a8:c6:c6:5b:5b:e4:63:be:87:c4:31:d8:33:82:32:6e:d4: ac:3f:eb:19:27:8f:cf:b0:40:39:81:eb:b5:f6:bd:f6:4f:c9: 00:05:42:c4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUO36qZA3p7Vyc/Dz1yNc2VoAn0pUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYyNjEzMDkzNVoX DTI0MDYyNDEzMTQzNVowMzExMC8GA1UEAxMoMjlDRjAwREI1QzIxMDlDNEI1MDkw OTM1MzY4QzlBQzU3QzVCRDJBNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL394WpKRsnKsf4kPtYezYlQ/866vd8k3mzr8/9dssFL2t7/zIuirBGQRtwW 6YZ9C/YbCYnfajRU7t+eBg0No4hAVK2M1Zz94+k8DYrDqTc7ENRG4QeKFn8Yxpbm 0vqIs0Z26u6I6Mpy76C+ND7Ylf+05wdemWG/IIx5YS+dlSYeUWoPXskDVkXX8nmp Plfzvxf/XwZvc7jRa1unW5vXIXhQupnCOieN5RYuKaAam+Eu1z4GC1fZLj7R7VSK rZLawc8U5Nw8+fsFYqTGalgffntlV5n/ddZc/guhZV0MEk7S3GuU8NquguilTxof dA+6Wn6SCrCLIubF3fjWVLiVk/0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCnPANtcIQnEtQkJNTaMmsV8W9KkMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YTIyYjRlMi0yNmY2LTQxZTgtODkxMC0yMDZiZWE3ODNkYjkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhMjJiNGUy LTI2ZjYtNDFlOC04OTEwLTIwNmJlYTc4M2RiOS8wLzI5Q0YwMERCNUMyMTA5QzRC NTA5MDkzNTM2OEM5QUM1N0M1QkQyQTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnv7AwDQYJKoZIhvcNAQELBQADggEBAEXRv0cz0fXpHneEmEx5XdHc9z95CQKy zZx0Dd6OX9xVW1EvWx42WkN0Q8hDvH1Q0ny7q0GMcokaPxH9VIxNEd0cHfASmYZT sOMegjQT+i21S1ZMeCQ7oj4Zsq7NDjuqyIOtHqlgw/fGy81100WTcrK+AbdBaOmP ji8Vae6+iiAiiBIOTO4peNS5J7gG/noFrXfT9b3wBHGlHTvHM8sgGUhjxRKAxsRc 2kw0cJTsNlIqunV1p6sx5GikrxBt0zGBMQRR2rUj5aRh9iyXPFaoqTaHZANYX9Vk sAKoxsZbW+RjvofEMdgzgjJu1Kw/6xknj8+wQDmB67X2vfZPyQAFQsQ= -----END CERTIFICATE-----Generated at Wed May 8 17:45:16 2024 by rpki-client on console-ams.rpki-client.org