$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/3D95B729FF923CD2442549B7702A6D7C2F78DE85.cer File: 3D95B729FF923CD2442549B7702A6D7C2F78DE85.cer (raw, json) Hash identifier: v7+HWnYAacFNGEGxjehUN5jUoDXNXYOzzColQWqJ7Ww= Subject key identifier: 3D:95:B7:29:FF:92:3C:D2:44:25:49:B7:70:2A:6D:7C:2F:78:DE:85 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 25F65905E5A52D9F0C54FAE72D062BAE62B8725F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7c8c46fb-b6c1-4a69-83fb-90e7d5c326de/0/3D95B729FF923CD2442549B7702A6D7C2F78DE85.mft caRepository: rsync://repo-rpki.idnic.net/repo/7c8c46fb-b6c1-4a69-83fb-90e7d5c326de/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 02 Jan 2024 06:52:12 +0000 Certificate not after: Tue 31 Dec 2024 06:57:12 +0000 Subordinate resources: IP: 103.240.0.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 16:34:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:f6:59:05:e5:a5:2d:9f:0c:54:fa:e7:2d:06:2b:ae:62:b8:72:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 2 06:52:12 2024 GMT Not After : Dec 31 06:57:12 2024 GMT Subject: CN=3D95B729FF923CD2442549B7702A6D7C2F78DE85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:73:ce:05:67:96:51:38:8d:71:68:b0:09:8d: 0a:31:b1:12:37:84:0d:c4:99:87:ec:54:1b:7f:f7: 66:aa:96:99:39:df:1e:e0:5d:a3:d9:f1:58:bb:08: f2:0c:e6:32:51:c0:45:56:40:77:18:d0:81:58:12: 64:1a:dc:c6:11:c0:fa:70:29:84:cd:7a:39:dd:cc: f1:4f:75:92:29:86:0b:38:7a:82:45:28:67:97:dc: b1:cd:84:b0:0b:a2:67:77:8e:5b:a1:0f:83:54:b8: 5a:1f:3c:bb:a7:c7:37:f5:90:d9:56:59:08:bb:5e: b6:b4:e9:d9:b1:53:b3:f4:31:73:d3:ff:04:15:e8: 23:72:7c:87:f4:57:3e:27:b0:dc:08:11:99:88:c7: b2:3a:1e:62:71:dd:8a:c3:9e:c2:e0:7b:7e:e5:cd: c6:56:34:2b:12:2e:81:29:5e:a7:6e:21:07:ff:8a: 57:ba:57:f5:cf:fa:b5:72:c2:5b:2f:9b:a7:71:61: 53:da:24:43:e9:dd:88:a4:71:ae:83:5b:0c:19:63: 12:7f:95:7d:1a:96:ca:3d:f3:27:de:0f:38:3e:71: ba:40:af:6a:21:16:53:8e:c8:f4:27:f7:61:91:59: 49:8c:95:3d:3b:fa:39:a3:cd:c2:b4:f4:23:5b:f7: b6:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 3D:95:B7:29:FF:92:3C:D2:44:25:49:B7:70:2A:6D:7C:2F:78:DE:85 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7c8c46fb-b6c1-4a69-83fb-90e7d5c326de/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7c8c46fb-b6c1-4a69-83fb-90e7d5c326de/0/3D95B729FF923CD2442549B7702A6D7C2F78DE85.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.240.0.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:b7:9a:7f:e0:ec:47:9c:08:b0:a0:ad:d0:a0:b6:97:67:f3: 24:fb:93:c4:df:97:eb:d4:dc:a8:56:84:e3:0a:48:b9:d5:0d: 36:5b:42:f8:f1:b3:ed:b7:3f:54:0a:5f:b0:98:a7:73:01:34: 90:7b:a2:8f:42:e6:fb:35:ba:84:20:3f:68:5e:16:e7:2d:f2: 09:df:3f:a5:6c:a0:c6:d4:11:35:bc:ce:77:ba:cf:9c:4e:f2: 5b:61:01:bc:70:0a:da:65:a9:58:69:ae:67:0e:22:17:60:69: c2:12:c2:f9:23:7c:0f:34:9c:f5:a5:8d:c5:94:b9:f7:ed:85: c3:79:e4:20:97:21:5a:d5:a6:86:49:b3:f5:6b:ba:65:32:c6: a1:ca:d6:3a:b8:8c:c4:e3:f3:57:7e:8d:a5:73:74:76:a4:a1: 0a:2a:06:9d:a4:59:3f:f8:dc:52:69:fe:4d:2e:77:ce:95:e7: 99:fb:e7:af:1a:a4:f1:c1:d5:a3:97:01:94:f6:c3:1d:c7:3e: 0e:86:13:05:8b:87:6f:a6:30:4c:f5:a3:fa:63:a8:dd:71:60: 7a:e3:cb:31:88:36:10:a6:95:84:af:66:73:08:bc:c4:db:77: 16:47:1c:f1:49:57:ae:c9:f1:90:49:f7:10:56:bd:6c:50:a1: de:43:f5:0e -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJfZZBeWlLZ8MVPrnLQYrrmK4cl8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwMjA2NTIxMloX DTI0MTIzMTA2NTcxMlowMzExMC8GA1UEAxMoM0Q5NUI3MjlGRjkyM0NEMjQ0MjU0 OUI3NzAyQTZEN0MyRjc4REU4NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtzzgVnllE4jXFosAmNCjGxEjeEDcSZh+xUG3/3ZqqWmTnfHuBdo9nxWLsI 8gzmMlHARVZAdxjQgVgSZBrcxhHA+nAphM16Od3M8U91kimGCzh6gkUoZ5fcsc2E sAuiZ3eOW6EPg1S4Wh88u6fHN/WQ2VZZCLtetrTp2bFTs/Qxc9P/BBXoI3J8h/RX Piew3AgRmYjHsjoeYnHdisOewuB7fuXNxlY0KxIugSlep24hB/+KV7pX9c/6tXLC Wy+bp3FhU9okQ+ndiKRxroNbDBljEn+VfRqWyj3zJ94POD5xukCvaiEWU47I9Cf3 YZFZSYyVPTv6OaPNwrT0I1v3tlkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFD2Vtyn/kjzSRCVJt3AqbXwveN6FMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YzhjNDZmYi1iNmMxLTRhNjktODNmYi05MGU3ZDVjMzI2ZGUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdjOGM0NmZi LWI2YzEtNGE2OS04M2ZiLTkwZTdkNWMzMjZkZS8wLzNEOTVCNzI5RkY5MjNDRDI0 NDI1NDlCNzcwMkE2RDdDMkY3OERFODUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn8AAwDQYJKoZIhvcNAQELBQADggEBAFq3mn/g7EecCLCgrdCgtpdn8yT7k8Tf l+vU3KhWhOMKSLnVDTZbQvjxs+23P1QKX7CYp3MBNJB7oo9C5vs1uoQgP2heFuct 8gnfP6VsoMbUETW8zne6z5xO8lthAbxwCtplqVhprmcOIhdgacISwvkjfA80nPWl jcWUuffthcN55CCXIVrVpoZJs/VrumUyxqHK1jq4jMTj81d+jaVzdHakoQoqBp2k WT/43FJp/k0ud86V55n7568apPHB1aOXAZT2wx3HPg6GEwWLh2+mMEz1o/pjqN1x YHrjyzGINhCmlYSvZnMIvMTbdxZHHPFJV67J8ZBJ9xBWvWxQod5D9Q4= -----END CERTIFICATE-----Generated at Wed May 8 07:45:22 2024 by rpki-client on console-ams.rpki-client.org