$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/411479424B4016269EB9E266CD48905F63DC9F0B.cer File: 411479424B4016269EB9E266CD48905F63DC9F0B.cer (raw, json) Hash identifier: lgW4pdSxgZN7NRistvth3sOvb32+UYCSXi9fu/hBi+4= Subject key identifier: 41:14:79:42:4B:40:16:26:9E:B9:E2:66:CD:48:90:5F:63:DC:9F:0B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3EF1FF47C1E5CD08E68FE199141DC57969A9FA71 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c13739e1-b5db-4734-838a-b0b580beb9f3/0/411479424B4016269EB9E266CD48905F63DC9F0B.mft caRepository: rsync://repo-rpki.idnic.net/repo/c13739e1-b5db-4734-838a-b0b580beb9f3/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 27 Oct 2023 19:29:58 +0000 Certificate not after: Fri 25 Oct 2024 19:34:58 +0000 Subordinate resources: IP: 103.178.90.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:f1:ff:47:c1:e5:cd:08:e6:8f:e1:99:14:1d:c5:79:69:a9:fa:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 27 19:29:58 2023 GMT Not After : Oct 25 19:34:58 2024 GMT Subject: CN=411479424B4016269EB9E266CD48905F63DC9F0B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e8:6f:96:68:f9:6d:51:de:3c:7a:52:ba:ac: 8b:27:52:26:b1:45:1a:1c:56:b5:68:14:2f:f2:9c: 35:2b:44:a7:0a:62:72:40:4a:98:e5:38:ed:70:80: 09:8d:b3:66:11:a8:bf:bf:27:b9:9c:42:92:b8:7d: 1c:f4:fc:40:ab:a9:c0:27:aa:5e:39:1f:9f:26:b9: 4f:49:09:d9:eb:b3:42:f0:54:97:e7:09:82:2b:c0: 0b:62:02:e3:83:38:bc:24:5d:bb:80:f6:04:9a:83: c6:3a:d0:21:97:da:6d:a1:e2:6b:6e:7f:8f:cc:fa: 93:4b:e4:1f:6d:f9:3c:c0:f3:e3:5c:47:71:85:96: f4:f0:ff:a0:f1:7f:97:fd:18:ad:4f:7d:38:b2:de: 89:38:6c:33:6b:3d:96:6d:70:dd:db:ef:31:b8:63: 0f:b8:91:79:44:4e:aa:fb:75:d4:6a:76:9f:f8:08: 71:bf:05:be:66:8a:f1:30:2c:7b:0b:e6:d6:30:c7: b2:8a:2b:74:97:c7:ee:00:37:40:0f:ef:c0:3f:fc: 68:f8:f7:ce:d5:6a:41:98:26:9f:15:8d:78:f1:08: e1:42:c8:32:35:37:da:a6:f1:17:a9:c0:bd:e0:a2: 3b:31:90:bc:8d:73:0c:95:29:cb:e3:03:7b:c5:ff: 80:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 41:14:79:42:4B:40:16:26:9E:B9:E2:66:CD:48:90:5F:63:DC:9F:0B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c13739e1-b5db-4734-838a-b0b580beb9f3/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c13739e1-b5db-4734-838a-b0b580beb9f3/0/411479424B4016269EB9E266CD48905F63DC9F0B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.178.90.0/23 Signature Algorithm: sha256WithRSAEncryption 68:b6:de:4d:cd:4e:8f:a8:5e:19:7d:87:71:81:85:89:c8:bf: 0c:29:04:84:41:fe:f2:34:e8:91:07:34:b1:dd:6d:81:60:2b: 01:ba:bc:2f:d0:81:45:f4:57:a9:4c:85:f8:6e:66:ae:75:bd: 95:47:a5:22:c6:f2:49:63:14:c3:28:d7:b7:3a:60:d2:9b:af: ec:89:50:91:6f:40:0a:0e:20:5f:61:95:54:d7:cb:b8:e9:74: 1f:f3:a5:f2:a3:c2:42:5e:c3:de:05:2c:93:ee:b2:dd:0d:d1: 59:b7:4e:7e:16:a9:ae:3a:25:1e:bc:42:40:e0:3a:c4:19:ec: 0d:ff:92:ae:af:ad:d2:ce:3d:f4:f2:2e:2b:02:c5:34:9d:72: ce:33:dd:2f:90:02:5e:80:a9:f6:44:b3:60:cd:1e:42:a5:fc: ae:38:8d:d4:5a:e3:c8:fd:ec:71:b1:82:f3:10:71:54:35:14: 6d:36:19:ca:a9:a3:a8:7a:52:c5:1f:81:14:a4:34:e7:b3:24: 02:a1:19:93:2f:be:63:e7:32:51:57:04:fa:e8:7d:94:f0:ca: 84:31:78:68:ff:bc:7d:0a:db:72:9e:30:23:5d:0a:54:6a:19: 1d:6f:ad:99:65:c7:4e:b6:28:ee:db:3d:d7:61:10:a9:c3:9c: c2:61:7c:af -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUPvH/R8HlzQjmj+GZFB3FeWmp+nEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyNzE5Mjk1OFoX DTI0MTAyNTE5MzQ1OFowMzExMC8GA1UEAxMoNDExNDc5NDI0QjQwMTYyNjlFQjlF MjY2Q0Q0ODkwNUY2M0RDOUYwQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM7ob5Zo+W1R3jx6UrqsiydSJrFFGhxWtWgUL/KcNStEpwpickBKmOU47XCA CY2zZhGov78nuZxCkrh9HPT8QKupwCeqXjkfnya5T0kJ2euzQvBUl+cJgivAC2IC 44M4vCRdu4D2BJqDxjrQIZfabaHia25/j8z6k0vkH235PMDz41xHcYWW9PD/oPF/ l/0YrU99OLLeiThsM2s9lm1w3dvvMbhjD7iReUROqvt11Gp2n/gIcb8FvmaK8TAs ewvm1jDHsoordJfH7gA3QA/vwD/8aPj3ztVqQZgmnxWNePEI4ULIMjU32qbxF6nA veCiOzGQvI1zDJUpy+MDe8X/gEkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEEUeUJLQBYmnrniZs1IkF9j3J8LMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jMTM3MzllMS1iNWRiLTQ3MzQtODM4YS1iMGI1ODBiZWI5ZjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MxMzczOWUx LWI1ZGItNDczNC04MzhhLWIwYjU4MGJlYjlmMy8wLzQxMTQ3OTQyNEI0MDE2MjY5 RUI5RTI2NkNENDg5MDVGNjNEQzlGMEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnslowDQYJKoZIhvcNAQELBQADggEBAGi23k3NTo+oXhl9h3GBhYnIvwwpBIRB /vI06JEHNLHdbYFgKwG6vC/QgUX0V6lMhfhuZq51vZVHpSLG8kljFMMo17c6YNKb r+yJUJFvQAoOIF9hlVTXy7jpdB/zpfKjwkJew94FLJPust0N0Vm3Tn4Wqa46JR68 QkDgOsQZ7A3/kq6vrdLOPfTyLisCxTSdcs4z3S+QAl6AqfZEs2DNHkKl/K44jdRa 48j97HGxgvMQcVQ1FG02Gcqpo6h6UsUfgRSkNOezJAKhGZMvvmPnMlFXBProfZTw yoQxeGj/vH0K23KeMCNdClRqGR1vrZllx062KO7bPddhEKnDnMJhfK8= -----END CERTIFICATE-----Generated at Wed May 8 17:45:17 2024 by rpki-client on console-ams.rpki-client.org