$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/339257A0C7951203C012BA5AF19EDB52E6790B03.cer File: 339257A0C7951203C012BA5AF19EDB52E6790B03.cer (raw, json) Hash identifier: qyWdZobR6wWVRLD9qRGeqBLssEIN6+NqDD81f6gVLNk= Subject key identifier: 33:92:57:A0:C7:95:12:03:C0:12:BA:5A:F1:9E:DB:52:E6:79:0B:03 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 022FA45898D5B1B805D63A22C1B91D860A37DA37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7ba0b3f1-974f-4205-bdce-0f9f5b7250dc/0/339257A0C7951203C012BA5AF19EDB52E6790B03.mft caRepository: rsync://repo-rpki.idnic.net/repo/7ba0b3f1-974f-4205-bdce-0f9f5b7250dc/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 05 Mar 2024 11:50:12 +0000 Certificate not after: Tue 04 Mar 2025 11:55:12 +0000 Subordinate resources: IP: 103.87.60.0/22 IP: 2400:d140::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:2f:a4:58:98:d5:b1:b8:05:d6:3a:22:c1:b9:1d:86:0a:37:da:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 5 11:50:12 2024 GMT Not After : Mar 4 11:55:12 2025 GMT Subject: CN=339257A0C7951203C012BA5AF19EDB52E6790B03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:09:6c:3a:87:c5:6e:dd:9b:c8:d9:a9:67:9d: 79:c3:63:bf:92:03:28:84:f6:56:f5:2f:15:c5:24: 4a:3f:b0:82:f1:d4:ab:54:7f:27:c6:a2:2d:c0:8d: 3f:ea:06:dd:f4:68:59:88:d6:bc:4b:5b:57:ed:94: 6f:d7:74:4e:bf:74:72:7f:d8:0e:af:77:a3:c0:bd: 26:c4:7e:19:3d:42:32:87:76:37:c9:e5:e3:5c:4c: da:46:fe:5b:3d:78:20:7a:0f:42:dd:45:ca:ec:5d: 9b:e1:6b:a0:72:a3:66:20:81:77:5d:8b:01:25:25: 5a:e3:26:1d:aa:15:df:ff:99:5e:a4:b1:2b:8b:a9: cd:cd:ad:e4:cc:68:7b:96:71:23:64:26:5d:75:67: 28:5c:e1:17:d7:6d:57:39:8d:de:88:90:76:e4:cf: 33:c1:2b:af:2c:b6:95:ad:4b:99:fe:f1:10:91:cb: 7f:cc:ec:e8:d1:3f:10:36:9f:6c:08:ae:39:8e:8a: ef:35:27:ad:78:38:02:b6:38:48:21:cb:e8:e8:81: 1c:94:1a:1b:5e:d8:58:d9:0c:d4:b4:49:75:e7:9c: 95:e9:38:2b:8f:fe:f6:c4:79:2f:18:18:20:d0:e1: d6:f8:e2:38:30:23:00:0f:37:30:cd:c0:3f:97:65: 16:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 33:92:57:A0:C7:95:12:03:C0:12:BA:5A:F1:9E:DB:52:E6:79:0B:03 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7ba0b3f1-974f-4205-bdce-0f9f5b7250dc/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7ba0b3f1-974f-4205-bdce-0f9f5b7250dc/0/339257A0C7951203C012BA5AF19EDB52E6790B03.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.87.60.0/22 IPv6: 2400:d140::/32 Signature Algorithm: sha256WithRSAEncryption 92:98:86:21:fa:cc:64:79:f8:3c:68:dd:e3:2f:72:89:f6:93: 3a:e6:15:8a:17:43:1c:a8:2f:c2:6c:98:68:fc:db:47:a0:f7: 79:4b:5a:99:1b:4d:ab:ea:25:d2:6e:91:b4:60:6c:9b:f3:07: b5:05:9a:9c:d0:2e:7c:ce:a1:75:3d:10:7c:87:78:ba:0f:f6: 00:a4:8c:fb:17:b9:7b:64:97:eb:38:7c:4c:92:fc:11:bb:0e: 00:aa:8f:9b:21:bb:51:ad:4d:b7:54:b1:ae:b5:cc:fe:e6:0c: c7:f2:d5:a6:a8:da:7f:ed:22:e1:58:6c:ec:fa:73:e7:70:15: e4:d2:14:a0:cf:f8:82:e1:a3:3f:c5:60:7f:6d:aa:5d:ac:c7: 32:bb:41:b0:ab:2f:3d:71:3f:fb:be:a8:1d:7b:aa:9b:ea:17: 47:e9:0b:b2:91:04:04:39:00:88:5c:9b:03:17:cb:19:c7:ab: c1:59:4b:5e:0e:0a:6e:5a:17:ae:d4:b0:e3:25:df:72:87:aa: 19:51:47:db:50:00:f6:27:82:ee:0e:9a:cb:67:ca:b6:39:55: df:5f:d8:ac:53:0d:9b:6a:08:84:c5:9b:1e:d5:69:84:32:cc: 2d:b3:b1:3f:27:1f:45:c2:f6:ea:f6:50:eb:b9:dc:15:26:df: c6:b9:0e:a0 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUAi+kWJjVsbgF1joiwbkdhgo32jcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwNTExNTAxMloX DTI1MDMwNDExNTUxMlowMzExMC8GA1UEAxMoMzM5MjU3QTBDNzk1MTIwM0MwMTJC QTVBRjE5RURCNTJFNjc5MEIwMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMAJbDqHxW7dm8jZqWedecNjv5IDKIT2VvUvFcUkSj+wgvHUq1R/J8aiLcCN P+oG3fRoWYjWvEtbV+2Ub9d0Tr90cn/YDq93o8C9JsR+GT1CMod2N8nl41xM2kb+ Wz14IHoPQt1Fyuxdm+FroHKjZiCBd12LASUlWuMmHaoV3/+ZXqSxK4upzc2t5Mxo e5ZxI2QmXXVnKFzhF9dtVzmN3oiQduTPM8Erryy2la1Lmf7xEJHLf8zs6NE/EDaf bAiuOY6K7zUnrXg4ArY4SCHL6OiBHJQaG17YWNkM1LRJdeeclek4K4/+9sR5LxgY INDh1vjiODAjAA83MM3AP5dlFiECAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDOSV6DHlRIDwBK6WvGe21LmeQsDMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YmEwYjNmMS05NzRmLTQyMDUtYmRjZS0wZjlmNWI3MjUwZGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiYTBiM2Yx LTk3NGYtNDIwNS1iZGNlLTBmOWY1YjcyNTBkYy8wLzMzOTI1N0EwQzc5NTEyMDND MDEyQkE1QUYxOUVEQjUyRTY3OTBCMDMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnVzwwDQQCAAIwBwMFACQA0UAwDQYJKoZIhvcNAQELBQADggEBAJKYhiH6zGR5 +Dxo3eMvcon2kzrmFYoXQxyoL8JsmGj820eg93lLWpkbTavqJdJukbRgbJvzB7UF mpzQLnzOoXU9EHyHeLoP9gCkjPsXuXtkl+s4fEyS/BG7DgCqj5shu1GtTbdUsa61 zP7mDMfy1aao2n/tIuFYbOz6c+dwFeTSFKDP+ILhoz/FYH9tql2sxzK7QbCrLz1x P/u+qB17qpvqF0fpC7KRBAQ5AIhcmwMXyxnHq8FZS14OCm5aF67UsOMl33KHqhlR R9tQAPYngu4OmstnyrY5Vd9f2KxTDZtqCITFmx7VaYQyzC2zsT8nH0XC9ur2UOu5 3BUm38a5DqA= -----END CERTIFICATE-----Generated at Thu May 9 00:36:58 2024 by rpki-client on console-fra.rpki-client.org