$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/38992A0A64D724D15761F2F9410D85186E2311FE.cer File: 38992A0A64D724D15761F2F9410D85186E2311FE.cer (raw, json) Hash identifier: 0lyshhtSp2uPsagXVkwM8CTPN5+RawcoEapYqC7aIwM= Subject key identifier: 38:99:2A:0A:64:D7:24:D1:57:61:F2:F9:41:0D:85:18:6E:23:11:FE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2840D248A118D538805B7723043484FCF99EEEE2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e6929901-a137-4a35-8134-1804f94792df/0/38992A0A64D724D15761F2F9410D85186E2311FE.mft caRepository: rsync://repo-rpki.idnic.net/repo/e6929901-a137-4a35-8134-1804f94792df/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 19 Dec 2023 05:37:31 +0000 Certificate not after: Tue 17 Dec 2024 05:42:31 +0000 Subordinate resources: IP: 103.143.95.0/24 IP: 103.153.184.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:40:d2:48:a1:18:d5:38:80:5b:77:23:04:34:84:fc:f9:9e:ee:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 19 05:37:31 2023 GMT Not After : Dec 17 05:42:31 2024 GMT Subject: CN=38992A0A64D724D15761F2F9410D85186E2311FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5d:90:0f:aa:5b:3c:3e:8f:30:4c:0b:89:d9: d6:a4:dc:34:d4:66:e1:af:9d:44:9c:da:63:c6:4d: e9:78:f7:b5:73:1b:97:c9:82:68:87:4a:6e:17:b9: 50:f0:04:d8:bd:b8:ef:25:36:02:ee:26:94:03:fe: bf:24:cf:8e:40:59:d8:f3:a7:c4:92:a2:9f:9d:ae: c5:49:06:d5:78:09:1b:63:b0:61:a4:c5:51:8e:be: 8d:e2:9d:8b:21:76:8d:c5:77:40:07:a7:51:af:5b: 28:fa:c4:0e:a6:15:1b:54:da:f5:51:62:02:12:70: 12:9d:03:4d:af:9d:61:e7:fb:a4:c1:1a:6b:87:89: 08:ea:b3:ad:03:8a:f6:b9:41:15:ec:1c:69:16:d1: 3a:4c:14:e8:7a:69:7e:5b:1e:a1:43:8a:f9:4a:8e: ca:79:e3:8f:f9:4c:ce:dc:4f:0d:c9:c2:f0:d2:77: ad:e0:82:c9:04:dd:e1:a9:0b:7b:aa:c1:a0:94:e7: f3:4a:e1:c8:87:18:9f:5c:e4:2d:0f:49:1b:ad:42: 3a:34:ab:20:02:f3:80:85:68:0a:e1:3e:0f:62:44: fd:9e:86:6f:cc:10:7e:0d:b6:fb:a6:c2:3d:1a:f0: 10:bb:b1:0a:33:4a:b6:44:48:e9:d7:41:5d:cd:ad: 48:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 38:99:2A:0A:64:D7:24:D1:57:61:F2:F9:41:0D:85:18:6E:23:11:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e6929901-a137-4a35-8134-1804f94792df/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e6929901-a137-4a35-8134-1804f94792df/0/38992A0A64D724D15761F2F9410D85186E2311FE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.143.95.0/24 103.153.184.0/24 Signature Algorithm: sha256WithRSAEncryption 04:03:a3:6b:a5:2b:ee:97:d2:23:4c:46:72:52:76:db:53:a1: ed:69:22:52:fe:b0:ff:7e:bd:80:62:99:a4:4e:d7:13:75:1a: d9:7d:c7:55:df:cb:22:0a:1d:ac:67:83:31:dc:ec:d9:55:b0: 72:b6:d3:48:36:8d:b9:94:68:0a:55:22:42:2d:c7:66:c5:34: a0:c1:c2:b6:ab:33:85:86:96:ea:c6:09:89:cc:fa:55:4c:d4: c6:aa:27:5b:e5:3b:c1:77:57:6a:e9:10:8a:fb:71:8c:29:02: 2f:66:f8:2a:c0:a0:38:a9:9a:91:f4:6a:0b:b5:9f:4e:bc:f0: d0:99:a7:47:09:c8:60:0f:bc:70:1a:00:09:21:85:64:01:eb: 52:f9:c9:f1:cc:38:dc:99:83:b7:e7:8d:ae:83:78:04:ae:6e: 65:a0:f1:70:81:13:64:1e:59:e0:48:b9:82:dd:cf:3e:c0:b5: 33:d5:b0:e7:77:c2:c2:69:e3:a2:86:bd:ca:97:b0:4a:c7:79: 06:29:4a:56:32:37:b0:44:ac:31:a3:aa:6c:f8:05:3c:20:91: ee:02:7c:72:e5:9f:d8:a0:84:9d:94:92:98:1f:c4:aa:a1:08: e8:83:43:78:f8:b3:d3:83:d2:6c:bd:03:30:aa:dd:54:0f:81: e9:4a:ac:61 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUKEDSSKEY1TiAW3cjBDSE/Pme7uIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxOTA1MzczMVoX DTI0MTIxNzA1NDIzMVowMzExMC8GA1UEAxMoMzg5OTJBMEE2NEQ3MjREMTU3NjFG MkY5NDEwRDg1MTg2RTIzMTFGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN1dkA+qWzw+jzBMC4nZ1qTcNNRm4a+dRJzaY8ZN6Xj3tXMbl8mCaIdKbhe5 UPAE2L247yU2Au4mlAP+vyTPjkBZ2POnxJKin52uxUkG1XgJG2OwYaTFUY6+jeKd iyF2jcV3QAenUa9bKPrEDqYVG1Ta9VFiAhJwEp0DTa+dYef7pMEaa4eJCOqzrQOK 9rlBFewcaRbROkwU6HppflseoUOK+UqOynnjj/lMztxPDcnC8NJ3reCCyQTd4akL e6rBoJTn80rhyIcYn1zkLQ9JG61COjSrIALzgIVoCuE+D2JE/Z6Gb8wQfg22+6bC PRrwELuxCjNKtkRI6ddBXc2tSC0CAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDiZKgpk1yTRV2Hy+UENhRhuIxH+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lNjkyOTkwMS1hMTM3LTRhMzUtODEzNC0xODA0Zjk0NzkyZGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U2OTI5OTAx LWExMzctNGEzNS04MTM0LTE4MDRmOTQ3OTJkZi8wLzM4OTkyQTBBNjRENzI0RDE1 NzYxRjJGOTQxMEQ4NTE4NkUyMzExRkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BABnj18DBABnmbgwDQYJKoZIhvcNAQELBQADggEBAAQDo2ulK+6X0iNMRnJSdttT oe1pIlL+sP9+vYBimaRO1xN1Gtl9x1XfyyIKHaxngzHc7NlVsHK200g2jbmUaApV IkItx2bFNKDBwrarM4WGlurGCYnM+lVM1MaqJ1vlO8F3V2rpEIr7cYwpAi9m+CrA oDipmpH0agu1n0688NCZp0cJyGAPvHAaAAkhhWQB61L5yfHMONyZg7fnja6DeASu bmWg8XCBE2QeWeBIuYLdzz7AtTPVsOd3wsJp46KGvcqXsErHeQYpSlYyN7BErDGj qmz4BTwgke4CfHLln9ighJ2UkpgfxKqhCOiDQ3j4s9OD0my9AzCq3VQPgelKrGE= -----END CERTIFICATE-----Generated at Wed May 8 18:12:06 2024 by rpki-client on console-fra.rpki-client.org