$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer File: 2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.cer (raw, json) Hash identifier: g9tN1KhrBrtqhU0oZjTCIByAHcPh8HzuZfSw3ASu/Jw= Subject key identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5FDD9C70F4933CB4DABFC3CA13387DE5635C313C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft caRepository: rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 15 Jun 2023 15:43:29 +0000 Certificate not after: Thu 13 Jun 2024 15:48:29 +0000 Subordinate resources: IP: 103.191.60.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:dd:9c:70:f4:93:3c:b4:da:bf:c3:ca:13:38:7d:e5:63:5c:31:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 15 15:43:29 2023 GMT Not After : Jun 13 15:48:29 2024 GMT Subject: CN=2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:6c:f4:04:ce:05:e5:73:48:73:33:cb:08:59: b7:05:9b:6f:11:0e:0f:98:88:fc:31:91:81:8d:f8: 68:4d:9a:77:e4:05:30:0f:94:69:17:11:fb:02:63: 28:a3:78:36:23:e5:ea:d3:7e:23:ce:4b:bd:c9:61: 22:b9:83:6c:87:fb:07:b3:ab:42:34:16:c7:86:8d: 2b:58:cf:77:6d:3f:1f:6b:fa:62:f5:ec:d1:78:2c: a9:fc:f8:bf:25:13:50:e1:f8:c7:72:1b:a6:a7:5f: 1e:91:78:26:e8:5c:da:28:c2:1a:63:ba:d3:d7:fb: e4:d6:aa:d3:1e:b1:1b:d6:3e:c7:39:a9:7c:53:c9: 50:b4:72:93:f2:8e:4c:67:12:b9:6f:74:4f:3c:54: 7a:d0:ac:34:07:b3:55:2c:04:ad:85:0e:4c:83:aa: 31:6a:5e:e0:03:18:3f:c2:66:de:16:72:02:f9:c6: 34:e5:35:f3:a1:ec:2b:ac:cc:da:4c:ce:ee:9d:01: af:b2:ab:b5:b7:ac:74:8e:f8:a7:38:55:db:1b:7d: 78:51:17:2e:0f:0b:b6:2e:66:94:8f:e4:35:72:ae: fb:7e:20:01:02:ab:4c:91:a2:97:46:19:83:be:9c: 39:70:b1:37:cd:58:2c:fd:e8:b9:02:a4:8b:cd:38: d0:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 2D:6F:96:FA:63:0E:A7:AE:0A:2B:12:2B:6F:04:CC:4F:5F:32:CE:B5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ae34d2d8-34af-4757-8ad9-92da35d92168/0/2D6F96FA630EA7AE0A2B122B6F04CC4F5F32CEB5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.191.60.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:38:17:a4:d6:f1:73:14:ac:48:5f:13:19:10:8d:30:d5:8a: d2:90:99:b5:c8:97:ed:4a:f2:0f:1c:27:2b:07:d4:1c:7f:ea: 7f:10:6f:f8:4c:58:d5:45:67:e2:da:80:5d:36:6c:34:09:70: 0f:80:08:56:cf:8f:ec:5a:38:73:cc:6f:36:77:4a:75:3c:0c: 30:23:29:e5:fe:6e:d1:75:c7:c9:72:22:2b:09:97:7e:6c:49: 83:de:90:44:d6:f5:84:1d:43:d1:73:49:9a:50:58:71:24:26: 64:72:06:64:d5:7f:2b:47:a4:4f:0f:3c:07:a1:ce:ca:ae:f1: 04:a1:41:89:fd:3b:07:f3:7f:fc:45:ee:8e:aa:f0:a4:90:96: 40:2b:7d:4b:b7:80:39:8f:ce:01:3b:57:1a:1b:37:ee:10:f8: 7f:39:ce:48:96:f2:bd:02:f9:ab:ab:fe:ac:e7:4a:01:69:18: 4b:8b:2e:d6:e2:b8:47:a5:00:b9:a0:28:0f:1b:63:55:9a:4d: 01:7f:5a:87:49:ae:a0:22:b6:40:c2:12:c7:7b:1a:ee:23:22: df:5e:ee:4b:ab:42:e4:b8:72:13:67:88:46:90:2b:ff:da:ba: 45:77:0e:bb:25:2e:a9:cc:60:e1:51:1f:95:89:a4:f7:be:4d: 8d:35:33:f9 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUX92ccPSTPLTav8PKEzh95WNcMTwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYxNTE1NDMyOVoX DTI0MDYxMzE1NDgyOVowMzExMC8GA1UEAxMoMkQ2Rjk2RkE2MzBFQTdBRTBBMkIx MjJCNkYwNENDNEY1RjMyQ0VCNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL9s9ATOBeVzSHMzywhZtwWbbxEOD5iI/DGRgY34aE2ad+QFMA+UaRcR+wJj KKN4NiPl6tN+I85LvclhIrmDbIf7B7OrQjQWx4aNK1jPd20/H2v6YvXs0Xgsqfz4 vyUTUOH4x3IbpqdfHpF4Juhc2ijCGmO609f75Naq0x6xG9Y+xzmpfFPJULRyk/KO TGcSuW90TzxUetCsNAezVSwErYUOTIOqMWpe4AMYP8Jm3hZyAvnGNOU186HsK6zM 2kzO7p0Br7KrtbesdI74pzhV2xt9eFEXLg8Lti5mlI/kNXKu+34gAQKrTJGil0YZ g76cOXCxN81YLP3ouQKki8040N8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFC1vlvpjDqeuCisSK28EzE9fMs61MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZTM0ZDJkOC0zNGFmLTQ3NTctOGFkOS05MmRhMzVkOTIxNjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlMzRkMmQ4 LTM0YWYtNDc1Ny04YWQ5LTkyZGEzNWQ5MjE2OC8wLzJENkY5NkZBNjMwRUE3QUUw QTJCMTIyQjZGMDRDQzRGNUYzMkNFQjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvzwwDQYJKoZIhvcNAQELBQADggEBAH04F6TW8XMUrEhfExkQjTDVitKQmbXI l+1K8g8cJysH1Bx/6n8Qb/hMWNVFZ+LagF02bDQJcA+ACFbPj+xaOHPMbzZ3SnU8 DDAjKeX+btF1x8lyIisJl35sSYPekETW9YQdQ9FzSZpQWHEkJmRyBmTVfytHpE8P PAehzsqu8QShQYn9Owfzf/xF7o6q8KSQlkArfUu3gDmPzgE7VxobN+4Q+H85zkiW 8r0C+aur/qznSgFpGEuLLtbiuEelALmgKA8bY1WaTQF/WodJrqAitkDCEsd7Gu4j It9e7kurQuS4chNniEaQK//aukV3DrslLqnMYOFRH5WJpPe+TY01M/k= -----END CERTIFICATE-----Generated at Wed May 8 04:37:48 2024 by rpki-client on console-fra.rpki-client.org