$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer File: 3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.cer (raw, json) Hash identifier: Z1GV59XX/oVu1PgT3wQjAyXZkTFy6Rn4xu81c/mowt4= Subject key identifier: 3A:D7:DA:61:EB:A5:80:03:D3:EF:29:F7:9A:AF:BC:AD:86:CE:D6:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1C2EFD03AC5D0538735742CAE735B3826D6E09E6 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.mft caRepository: rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 05 Sep 2023 04:10:48 +0000 Certificate not after: Tue 03 Sep 2024 04:15:48 +0000 Subordinate resources: IP: 103.175.82.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:2e:fd:03:ac:5d:05:38:73:57:42:ca:e7:35:b3:82:6d:6e:09:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 5 04:10:48 2023 GMT Not After : Sep 3 04:15:48 2024 GMT Subject: CN=3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:17:a6:24:6e:e7:0c:74:b8:ed:4d:b6:b6:6a: 5d:0c:32:3c:45:dd:18:5a:67:a8:6a:59:7a:e6:a2: 94:6e:5e:06:92:5d:fc:ac:ec:c3:cf:bf:d2:43:c1: d2:f9:a8:13:f0:e6:36:6d:2e:cc:aa:58:7a:df:e3: f0:89:88:23:70:9e:07:10:a2:bd:40:90:1e:84:2a: 5e:9e:a0:b1:34:01:df:15:5e:95:de:c2:39:62:2d: f1:d5:dc:81:6f:21:36:57:3f:8e:fe:fa:c5:41:df: 89:2e:e5:49:ff:f8:4e:4e:bf:16:cd:b6:13:42:97: 42:06:e0:ec:3e:d5:35:07:0d:eb:c4:55:4a:9d:a6: 73:76:dd:99:e7:46:35:07:0e:4f:3a:98:1f:0a:73: 1f:da:82:ab:af:fd:31:d6:c9:25:81:38:31:45:14: 84:00:b3:36:33:4a:9e:39:18:f9:dd:de:cd:76:05: bf:eb:f9:26:85:58:bc:ff:67:e9:b9:70:bd:83:6f: f7:63:e2:9e:17:ae:1b:c4:7a:19:98:c9:bb:49:9e: 90:dd:2f:17:74:7d:c4:3e:41:21:b3:a4:14:71:67: 2e:8a:db:5d:aa:0b:99:56:b0:3c:44:75:0e:cd:77: 97:79:e7:34:93:52:f7:16:4c:6d:90:19:74:2b:f1: b2:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3A:D7:DA:61:EB:A5:80:03:D3:EF:29:F7:9A:AF:BC:AD:86:CE:D6:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fca54781-9678-475c-ac1b-cd4bfcf5d0ea/0/3AD7DA61EBA58003D3EF29F79AAFBCAD86CED614.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.82.0/23 Signature Algorithm: sha256WithRSAEncryption 61:ea:29:bc:2b:7f:a7:a4:f8:78:73:65:df:98:72:08:da:88: 11:20:34:57:07:5d:1a:2c:67:9e:20:bb:ca:99:15:af:7d:fe: 09:df:89:21:de:cc:f6:94:cc:5c:0a:c4:6f:52:1d:33:fb:eb: fc:32:98:9e:8a:fc:63:cc:89:10:bd:10:b8:66:11:5c:f0:27: 21:b2:15:95:50:34:0b:85:98:5e:c8:de:7c:c8:ed:5d:9d:e1: da:7d:b2:ce:fa:f6:49:29:d9:b8:c0:1e:8a:37:b7:8b:21:d4: 8c:53:68:01:a1:86:51:20:c6:b3:38:2a:c9:b2:c7:e4:b8:8e: c6:3f:86:9d:5a:e9:9b:bc:76:08:6c:72:05:06:61:4a:5d:d7: 4a:51:9c:1d:f2:b7:29:e9:f0:33:ec:7a:0c:13:fd:a4:50:3d: 09:59:7d:4d:c1:df:c9:3c:55:0c:04:d6:24:b3:20:9a:5a:2d: 5d:99:00:29:2c:f8:55:f1:fd:20:00:b7:77:33:1d:6d:bf:4a: ad:39:4c:3d:25:98:22:81:9c:f1:6a:03:22:10:bf:eb:55:43: c2:c2:f2:8e:c4:cb:ff:8b:9f:f5:fd:b7:e8:56:ce:c5:36:fb: 1a:8e:09:c1:ca:93:9a:28:6f:a8:fe:84:88:fc:54:db:2c:a3: 36:67:cc:dd -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHC79A6xdBThzV0LK5zWzgm1uCeYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwNTA0MTA0OFoX DTI0MDkwMzA0MTU0OFowMzExMC8GA1UEAxMoM0FEN0RBNjFFQkE1ODAwM0QzRUYy OUY3OUFBRkJDQUQ4NkNFRDYxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANEXpiRu5wx0uO1NtrZqXQwyPEXdGFpnqGpZeuailG5eBpJd/Kzsw8+/0kPB 0vmoE/DmNm0uzKpYet/j8ImII3CeBxCivUCQHoQqXp6gsTQB3xVeld7COWIt8dXc gW8hNlc/jv76xUHfiS7lSf/4Tk6/Fs22E0KXQgbg7D7VNQcN68RVSp2mc3bdmedG NQcOTzqYHwpzH9qCq6/9MdbJJYE4MUUUhACzNjNKnjkY+d3ezXYFv+v5JoVYvP9n 6blwvYNv92PinheuG8R6GZjJu0mekN0vF3R9xD5BIbOkFHFnLorbXaoLmVawPER1 Ds13l3nnNJNS9xZMbZAZdCvxsksCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDrX2mHrpYAD0+8p95qvvK2GztYUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mY2E1NDc4MS05Njc4LTQ3NWMtYWMxYi1jZDRiZmNmNWQwZWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZjYTU0Nzgx LTk2NzgtNDc1Yy1hYzFiLWNkNGJmY2Y1ZDBlYS8wLzNBRDdEQTYxRUJBNTgwMDNE M0VGMjlGNzlBQUZCQ0FEODZDRUQ2MTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnr1IwDQYJKoZIhvcNAQELBQADggEBAGHqKbwrf6ek+HhzZd+YcgjaiBEgNFcH XRosZ54gu8qZFa99/gnfiSHezPaUzFwKxG9SHTP76/wymJ6K/GPMiRC9ELhmEVzw JyGyFZVQNAuFmF7I3nzI7V2d4dp9ss769kkp2bjAHoo3t4sh1IxTaAGhhlEgxrM4 Ksmyx+S4jsY/hp1a6Zu8dghscgUGYUpd10pRnB3ytynp8DPsegwT/aRQPQlZfU3B 38k8VQwE1iSzIJpaLV2ZACks+FXx/SAAt3czHW2/Sq05TD0lmCKBnPFqAyIQv+tV Q8LC8o7Ey/+Ln/X9t+hWzsU2+xqOCcHKk5oob6j+hIj8VNssozZnzN0= -----END CERTIFICATE-----Generated at Wed May 8 05:33:16 2024 by rpki-client on console-ams.rpki-client.org