$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/361B6D7E16A02B7316B6F91ED34B22A907EE866B.cer File: 361B6D7E16A02B7316B6F91ED34B22A907EE866B.cer (raw, json) Hash identifier: GhoADQbsV29wG2GQcTgU8DfpupHM5801JMdK3/VVWXE= Subject key identifier: 36:1B:6D:7E:16:A0:2B:73:16:B6:F9:1E:D3:4B:22:A9:07:EE:86:6B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4A2078FBBD19A2232608D43AC98F493C3E217122 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0/361B6D7E16A02B7316B6F91ED34B22A907EE866B.mft caRepository: rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 19 Jan 2024 12:57:38 +0000 Certificate not after: Fri 17 Jan 2025 13:02:38 +0000 Subordinate resources: IP: 103.13.234.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:20:78:fb:bd:19:a2:23:26:08:d4:3a:c9:8f:49:3c:3e:21:71:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 19 12:57:38 2024 GMT Not After : Jan 17 13:02:38 2025 GMT Subject: CN=361B6D7E16A02B7316B6F91ED34B22A907EE866B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9a:61:d4:d1:7a:e0:b2:ae:00:d7:43:b2:76: 00:69:1a:6d:72:4c:6d:7d:99:8f:b3:b1:2a:8b:ac: 57:bd:5c:8d:7b:dc:9c:cf:5e:b0:4f:5a:92:9d:12: 14:9e:a2:ea:66:dc:af:7a:e2:69:a2:cb:13:2b:2a: 37:eb:17:bc:cc:6d:2e:be:ab:0c:39:15:97:9b:e6: 9e:6b:7d:f9:2a:55:63:a0:ef:5f:23:9f:d6:31:9e: 17:a6:9e:bd:53:02:2a:56:be:49:db:63:fe:7c:a9: bc:9c:07:d6:36:38:f9:48:5f:1d:32:57:9b:7d:41: c3:54:9f:e5:42:50:b7:61:ce:0c:df:4e:e4:13:ce: 1a:ed:09:ad:d7:09:2d:1d:6a:c6:51:4a:df:15:af: 1d:62:eb:d3:50:83:4d:5a:ef:3e:f4:0e:71:7d:3d: a4:7d:8a:ff:af:ee:47:5c:61:61:bd:7f:d7:98:c5: 91:97:ec:8e:17:5a:83:6d:28:5b:5b:cc:bf:16:8f: 31:11:4a:b5:b5:2d:99:26:db:ab:50:a5:19:86:30: 07:92:46:91:3a:47:e4:7e:ea:94:12:ca:e3:09:3a: cd:b6:eb:fc:f0:f0:e8:00:91:4c:6d:79:8e:ce:c0: 1c:5e:94:6f:da:21:e0:3b:d1:af:ad:6d:da:55:55: d1:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 36:1B:6D:7E:16:A0:2B:73:16:B6:F9:1E:D3:4B:22:A9:07:EE:86:6B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7ac4d75e-3da8-4990-8042-7e0ecf59f13b/0/361B6D7E16A02B7316B6F91ED34B22A907EE866B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.234.0/23 Signature Algorithm: sha256WithRSAEncryption 37:54:ac:d5:b6:89:3e:fb:f4:c5:62:52:31:d3:31:22:c8:fa: 73:da:41:a6:d6:54:ec:eb:2d:33:0f:b5:56:4b:73:46:cb:2d: b3:02:74:73:02:64:69:3f:41:41:6f:01:3b:f4:3c:39:c2:e2: 6e:75:b5:9b:aa:ef:de:c1:6b:4c:4d:4b:41:92:5b:4f:b3:ff: 87:bd:3b:de:eb:fc:67:a7:71:31:e7:ee:62:9d:b0:44:a5:b3: 57:05:49:17:8f:5c:14:03:9b:4b:1d:f9:66:60:7a:21:8c:a1: 64:3e:49:17:e4:ee:1c:e7:f9:85:1c:2b:4e:67:0e:98:bf:26: 23:ec:2d:6e:af:89:85:3d:5a:87:49:25:44:fa:f8:61:9f:80: 70:82:1f:94:e5:fe:20:b4:cc:0f:58:b6:54:ef:26:84:ce:7b: 91:03:af:62:41:32:3e:a4:b0:39:ec:91:ed:cc:29:a0:05:fd: 60:f6:23:e4:10:24:72:f7:0e:99:29:9c:41:da:95:36:f3:0d: 14:c0:0c:35:79:8d:f5:48:7f:30:94:08:d0:6e:26:b3:4d:73: 8c:39:1b:7b:2e:ad:bf:f0:72:ec:57:05:da:42:db:99:64:27: 73:4f:63:56:07:d5:6d:cc:f6:18:05:64:18:b0:47:a6:3f:43: 89:70:57:73 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUSiB4+70ZoiMmCNQ6yY9JPD4hcSIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExOTEyNTczOFoX DTI1MDExNzEzMDIzOFowMzExMC8GA1UEAxMoMzYxQjZEN0UxNkEwMkI3MzE2QjZG OTFFRDM0QjIyQTkwN0VFODY2QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALWaYdTReuCyrgDXQ7J2AGkabXJMbX2Zj7OxKousV71cjXvcnM9esE9akp0S FJ6i6mbcr3riaaLLEysqN+sXvMxtLr6rDDkVl5vmnmt9+SpVY6DvXyOf1jGeF6ae vVMCKla+Sdtj/nypvJwH1jY4+UhfHTJXm31Bw1Sf5UJQt2HODN9O5BPOGu0JrdcJ LR1qxlFK3xWvHWLr01CDTVrvPvQOcX09pH2K/6/uR1xhYb1/15jFkZfsjhdag20o W1vMvxaPMRFKtbUtmSbbq1ClGYYwB5JGkTpH5H7qlBLK4wk6zbbr/PDw6ACRTG15 js7AHF6Ub9oh4DvRr61t2lVV0a8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDYbbX4WoCtzFrb5HtNLIqkH7oZrMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YWM0ZDc1ZS0zZGE4LTQ5OTAtODA0Mi03ZTBlY2Y1OWYxM2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdhYzRkNzVl LTNkYTgtNDk5MC04MDQyLTdlMGVjZjU5ZjEzYi8wLzM2MUI2RDdFMTZBMDJCNzMx NkI2RjkxRUQzNEIyMkE5MDdFRTg2NkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnDeowDQYJKoZIhvcNAQELBQADggEBADdUrNW2iT779MViUjHTMSLI+nPaQabW VOzrLTMPtVZLc0bLLbMCdHMCZGk/QUFvATv0PDnC4m51tZuq797Ba0xNS0GSW0+z /4e9O97r/GencTHn7mKdsESls1cFSRePXBQDm0sd+WZgeiGMoWQ+SRfk7hzn+YUc K05nDpi/JiPsLW6viYU9WodJJUT6+GGfgHCCH5Tl/iC0zA9YtlTvJoTOe5EDr2JB Mj6ksDnske3MKaAF/WD2I+QQJHL3DpkpnEHalTbzDRTADDV5jfVIfzCUCNBuJrNN c4w5G3surb/wcuxXBdpC25lkJ3NPY1YH1W3M9hgFZBiwR6Y/Q4lwV3M= -----END CERTIFICATE-----Generated at Wed May 8 04:37:49 2024 by rpki-client on console-fra.rpki-client.org