$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer File: 36E68E2A264E18BFD9F49E472D0D267EE49E8A17.cer (raw, json) Hash identifier: 3vG+V2JUsLcwuG+171lkP+dNs/T/s/GlOBsteHPB4KM= Subject key identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1DBE39B4AB2F4A440224EA7153845FA650157F4D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft caRepository: rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 25 Jun 2023 12:55:31 +0000 Certificate not after: Sun 23 Jun 2024 13:00:31 +0000 Subordinate resources: IP: 103.169.132.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:be:39:b4:ab:2f:4a:44:02:24:ea:71:53:84:5f:a6:50:15:7f:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 25 12:55:31 2023 GMT Not After : Jun 23 13:00:31 2024 GMT Subject: CN=36E68E2A264E18BFD9F49E472D0D267EE49E8A17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:0a:f2:e2:91:90:3f:cb:7c:10:02:ce:74:f8: e4:f0:06:b6:51:43:f1:0c:82:cb:2d:56:d0:6a:5c: 10:ca:36:5c:51:0e:72:10:49:95:79:e6:74:7b:66: ff:f6:6e:11:52:36:bb:4c:99:d8:74:d2:5e:0b:c8: f5:a2:9e:5b:bf:fb:f3:cc:63:e4:3e:aa:76:eb:ce: ba:6f:83:58:2e:89:35:39:67:9e:5d:8a:16:be:63: 55:c6:b1:85:c3:ed:6f:d2:52:b8:50:a5:29:be:b1: c5:e1:47:3f:e2:00:f6:52:4d:0d:82:3c:c5:a9:16: 8a:ae:6f:b6:4f:df:d4:29:69:22:d5:53:4e:53:dc: 49:cb:cd:9b:a0:83:30:6a:7d:16:4e:fb:6b:fe:d2: 0e:3c:80:eb:1f:3f:91:9a:d1:11:c9:2d:bd:96:53: a1:cd:e6:e1:dc:0f:77:7f:eb:f1:0a:ab:c2:11:35: 4d:0e:18:a8:16:5d:40:9f:f4:9b:c2:10:96:f6:13: cb:96:37:62:fc:7e:d7:a5:e4:c1:ff:ba:49:1b:70: f6:a5:17:3d:b5:6a:18:bd:4c:99:e8:e9:ce:a7:a8: 3e:23:5d:b7:c9:e3:c4:bd:13:62:65:03:17:eb:ae: ec:65:6e:77:c1:83:8d:54:5e:51:fd:46:1b:a4:24: be:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 36:E6:8E:2A:26:4E:18:BF:D9:F4:9E:47:2D:0D:26:7E:E4:9E:8A:17 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/87d2031b-2761-4c36-b690-5b69d1569bae/0/36E68E2A264E18BFD9F49E472D0D267EE49E8A17.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.132.0/23 Signature Algorithm: sha256WithRSAEncryption 77:01:d2:18:72:19:60:01:1f:74:1d:11:0b:1d:42:f4:da:3a: 1d:2e:5d:b9:12:ab:33:2a:b4:8e:af:e5:f9:79:7b:97:6c:65: f3:b2:04:1e:b3:d5:62:a3:c6:59:d5:31:a0:13:58:33:30:15: 10:a3:85:32:3b:96:4b:20:d1:5c:cb:0e:59:ae:aa:5b:fb:72: 71:16:74:02:fc:17:3c:bf:d3:b9:31:7d:e9:af:15:df:53:70: 7b:dc:c6:9f:41:55:13:ac:78:7a:db:52:a4:47:df:7a:f2:54: 12:47:14:58:ae:c8:02:8f:ca:d3:02:36:29:05:bc:aa:35:0a: 10:92:0b:5c:50:a9:39:b8:58:f2:6b:03:17:e6:6f:1f:c4:6c: f5:4d:20:8f:8a:eb:6a:31:a4:a8:94:09:4a:f1:f5:7a:7d:c0: 72:8e:18:ff:5a:0f:f3:28:77:9a:67:7a:c9:c5:8a:1e:8e:93: 79:18:0d:50:41:87:79:62:83:88:25:4b:02:0e:1b:49:ad:b2: 49:c1:cb:e1:ca:7d:25:29:fe:2d:db:26:7e:9d:1b:50:77:41: f1:96:7e:20:81:39:3f:33:b6:4d:53:a0:29:e7:fd:3b:8f:71: ba:fd:38:0c:71:2c:82:36:d8:30:14:47:fc:97:a7:36:c3:9c: dc:15:5c:54 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHb45tKsvSkQCJOpxU4RfplAVf00wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYyNTEyNTUzMVoX DTI0MDYyMzEzMDAzMVowMzExMC8GA1UEAxMoMzZFNjhFMkEyNjRFMThCRkQ5RjQ5 RTQ3MkQwRDI2N0VFNDlFOEExNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAO0K8uKRkD/LfBACznT45PAGtlFD8QyCyy1W0GpcEMo2XFEOchBJlXnmdHtm //ZuEVI2u0yZ2HTSXgvI9aKeW7/788xj5D6qduvOum+DWC6JNTlnnl2KFr5jVcax hcPtb9JSuFClKb6xxeFHP+IA9lJNDYI8xakWiq5vtk/f1ClpItVTTlPcScvNm6CD MGp9Fk77a/7SDjyA6x8/kZrREcktvZZToc3m4dwPd3/r8QqrwhE1TQ4YqBZdQJ/0 m8IQlvYTy5Y3Yvx+16Xkwf+6SRtw9qUXPbVqGL1MmejpzqeoPiNdt8njxL0TYmUD F+uu7GVud8GDjVReUf1GG6QkvnECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDbmjiomThi/2fSeRy0NJn7knooXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84N2QyMDMxYi0yNzYxLTRjMzYtYjY5MC01YjY5ZDE1NjliYWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3ZDIwMzFi LTI3NjEtNGMzNi1iNjkwLTViNjlkMTU2OWJhZS8wLzM2RTY4RTJBMjY0RTE4QkZE OUY0OUU0NzJEMEQyNjdFRTQ5RThBMTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqYQwDQYJKoZIhvcNAQELBQADggEBAHcB0hhyGWABH3QdEQsdQvTaOh0uXbkS qzMqtI6v5fl5e5dsZfOyBB6z1WKjxlnVMaATWDMwFRCjhTI7lksg0VzLDlmuqlv7 cnEWdAL8Fzy/07kxfemvFd9TcHvcxp9BVROseHrbUqRH33ryVBJHFFiuyAKPytMC NikFvKo1ChCSC1xQqTm4WPJrAxfmbx/EbPVNII+K62oxpKiUCUrx9Xp9wHKOGP9a D/Mod5pnesnFih6Ok3kYDVBBh3lig4glSwIOG0mtsknBy+HKfSUp/i3bJn6dG1B3 QfGWfiCBOT8ztk1ToCnn/TuPcbr9OAxxLII22DAUR/yXpzbDnNwVXFQ= -----END CERTIFICATE-----Generated at Wed May 8 09:50:28 2024 by rpki-client on console-fra.rpki-client.org