$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer File: 3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.cer (raw, json) Hash identifier: +/dVWK3JMvwJxl23Xtr409kPEFfZJOTA1kOceOWYwQw= Subject key identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1F802544D2243FE6A04B1E30EF1579888FE5AA49 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft caRepository: rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 30 Jul 2023 22:39:59 +0000 Certificate not after: Sun 28 Jul 2024 22:44:59 +0000 Subordinate resources: IP: 103.195.18.0/23 IP: 2001:df6:cc00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:80:25:44:d2:24:3f:e6:a0:4b:1e:30:ef:15:79:88:8f:e5:aa:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 22:39:59 2023 GMT Not After : Jul 28 22:44:59 2024 GMT Subject: CN=3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:8e:c8:6c:00:81:81:4f:3a:65:0e:58:09:61: cb:b6:7b:bc:7b:50:c9:fe:42:10:ec:45:7c:72:33: 65:e5:7a:05:9a:e1:f7:66:cd:70:f1:c5:5a:87:a2: 6b:55:66:06:1b:c0:ae:49:f4:dc:86:06:df:67:b1: b8:27:90:c4:34:95:8f:66:10:a9:91:67:3f:ad:3f: e7:13:2d:9c:86:84:79:26:50:2b:2f:fa:1d:26:da: f3:db:e8:54:27:64:b0:b9:14:2e:13:38:82:a9:57: c9:aa:5c:e8:fb:8e:cf:d8:ea:0a:6a:0d:a8:7a:2e: 0c:57:89:59:fa:de:17:05:64:78:aa:d5:cc:27:6d: 58:9a:fe:9a:a6:14:52:50:5d:7d:0c:f7:22:d0:56: 79:dc:2f:6e:da:b9:eb:b8:1a:79:6a:f0:09:f7:04: 8f:c8:28:af:ef:50:f7:68:8d:01:c0:91:95:dc:ba: 84:a6:d1:6c:38:c7:3d:1f:95:b7:7a:1b:11:2d:90: 1e:f3:8e:2f:73:5f:4b:e8:bf:01:ab:6a:f6:18:22: 08:74:4d:86:a2:d4:36:9e:a3:88:2f:ba:ea:99:35: 4f:12:cd:bd:80:03:ef:35:81:c0:3e:f3:0b:5b:62: 76:69:12:6d:98:9c:4b:c0:02:e0:e6:a6:cc:07:41: 7c:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:66:B6:CF:00:D7:B0:B6:73:F8:B5:26:C5:6A:EB:DC:B5:AD:BD:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d3b8ae97-6818-48a9-abe4-edb96049f3c8/0/3566B6CF00D7B0B673F8B526C56AEBDCB5ADBD28.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.195.18.0/23 IPv6: 2001:df6:cc00::/48 Signature Algorithm: sha256WithRSAEncryption 7e:c6:bc:a3:04:2d:0d:dd:17:ae:0a:fd:72:bb:d7:a2:7f:8b: 86:2c:b2:f7:83:e4:80:24:02:c3:24:d5:56:a3:c8:f6:2f:1e: 5e:db:d5:b5:c2:01:af:1a:b3:09:08:83:ba:ee:b0:3f:77:02: f5:80:1c:75:b8:06:98:a5:82:9f:3c:0f:9c:62:36:98:70:9c: 73:45:5e:67:d9:10:51:4f:cb:c2:65:ef:61:4c:87:28:80:c4: dd:24:33:95:d4:bd:09:fa:45:d8:b9:31:22:0b:d0:35:ac:6f: 07:35:ea:b6:d6:00:47:e2:9c:c0:27:ab:38:3d:1c:e0:ba:a5: 6d:48:3e:3a:4c:94:f0:13:4e:4f:a0:bb:87:00:99:11:59:20: 71:59:3a:1c:5f:23:6f:d1:a1:6f:b1:9b:11:86:c9:2d:dd:f7: d6:58:f5:09:38:66:2f:4f:b4:b9:85:e2:c2:75:a4:78:06:48: d4:ad:fd:0e:65:9f:26:6a:08:69:85:09:75:c4:ff:0e:6a:e3: 3c:ba:dd:11:f1:10:71:c2:0a:59:7c:11:e6:35:be:33:19:50: c6:29:71:f1:5e:9e:41:ce:18:10:fc:1e:96:9b:6a:25:05:dc: 8e:f7:21:8d:26:51:cb:72:f1:2a:63:1a:28:06:5d:56:77:98: 9d:e8:1a:15 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUH4AlRNIkP+agSx4w7xV5iI/lqkkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMDIyMzk1OVoX DTI0MDcyODIyNDQ1OVowMzExMC8GA1UEAxMoMzU2NkI2Q0YwMEQ3QjBCNjczRjhC NTI2QzU2QUVCRENCNUFEQkQyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOyOyGwAgYFPOmUOWAlhy7Z7vHtQyf5CEOxFfHIzZeV6BZrh92bNcPHFWoei a1VmBhvArkn03IYG32exuCeQxDSVj2YQqZFnP60/5xMtnIaEeSZQKy/6HSba89vo VCdksLkULhM4gqlXyapc6PuOz9jqCmoNqHouDFeJWfreFwVkeKrVzCdtWJr+mqYU UlBdfQz3ItBWedwvbtq567gaeWrwCfcEj8gor+9Q92iNAcCRldy6hKbRbDjHPR+V t3obES2QHvOOL3NfS+i/Aatq9hgiCHRNhqLUNp6jiC+66pk1TxLNvYAD7zWBwD7z C1tidmkSbZicS8AC4OamzAdBfOkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDVmts8A17C2c/i1JsVq69y1rb0oMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kM2I4YWU5Ny02ODE4LTQ4YTktYWJlNC1lZGI5NjA0OWYzYzgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QzYjhhZTk3 LTY4MTgtNDhhOS1hYmU0LWVkYjk2MDQ5ZjNjOC8wLzM1NjZCNkNGMDBEN0IwQjY3 M0Y4QjUyNkM1NkFFQkRDQjVBREJEMjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnwxIwDwQCAAIwCQMHACABDfbMADANBgkqhkiG9w0BAQsFAAOCAQEAfsa8owQt Dd0Xrgr9crvXon+Lhiyy94PkgCQCwyTVVqPI9i8eXtvVtcIBrxqzCQiDuu6wP3cC 9YAcdbgGmKWCnzwPnGI2mHCcc0VeZ9kQUU/LwmXvYUyHKIDE3SQzldS9CfpF2Lkx IgvQNaxvBzXqttYAR+KcwCerOD0c4LqlbUg+OkyU8BNOT6C7hwCZEVkgcVk6HF8j b9Ghb7GbEYbJLd331lj1CThmL0+0uYXiwnWkeAZI1K39DmWfJmoIaYUJdcT/Dmrj PLrdEfEQccIKWXwR5jW+MxlQxilx8V6eQc4YEPwelptqJQXcjvchjSZRy3LxKmMa KAZdVneYnegaFQ== -----END CERTIFICATE-----Generated at Wed May 8 17:45:17 2024 by rpki-client on console-ams.rpki-client.org