$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/43352CF2FE94548EEF080C0D6A6DA5C07EE627AB.cer File: 43352CF2FE94548EEF080C0D6A6DA5C07EE627AB.cer (raw, json) Hash identifier: DUABr17GeBkF5tM27LHKfYrT8bBVP/Tgvd3Tv3VUz8Q= Subject key identifier: 43:35:2C:F2:FE:94:54:8E:EF:08:0C:0D:6A:6D:A5:C0:7E:E6:27:AB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 63E71BCADD0D5F54860E26B1170F48AF73840280 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/e7d9f745-faa4-48ce-83b1-0bde33c2447f/0/43352CF2FE94548EEF080C0D6A6DA5C07EE627AB.mft caRepository: rsync://repo-rpki.idnic.net/repo/e7d9f745-faa4-48ce-83b1-0bde33c2447f/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 12 Dec 2023 06:28:41 +0000 Certificate not after: Tue 10 Dec 2024 06:33:41 +0000 Subordinate resources: IP: 203.145.60.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:e7:1b:ca:dd:0d:5f:54:86:0e:26:b1:17:0f:48:af:73:84:02:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 12 06:28:41 2023 GMT Not After : Dec 10 06:33:41 2024 GMT Subject: CN=43352CF2FE94548EEF080C0D6A6DA5C07EE627AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:63:15:12:06:ee:9c:d0:57:72:5b:56:64:a7: 2b:7e:94:0f:8f:ec:97:e2:53:27:70:f7:04:f3:d1: c3:65:66:ea:0e:bf:4b:84:ba:3f:74:b9:7c:c8:0a: 54:30:cb:8c:81:67:fb:a1:8b:ba:66:57:99:28:f0: 9e:e1:64:10:6e:1f:c7:27:ec:ed:83:b3:c5:c3:d1: 5d:e9:86:8e:3c:dc:c3:99:03:30:06:31:1f:70:1c: 98:0c:23:08:12:4e:11:03:68:3a:f7:9a:94:18:85: d5:88:63:32:59:2f:90:83:d1:e0:f3:2e:09:b5:be: 3e:b4:a2:07:9a:2d:f8:32:7e:f7:2e:3b:81:57:15: 26:bc:18:f3:1f:49:a2:0c:9f:30:7e:30:93:18:26: 58:d4:6f:a3:cd:b4:75:61:49:d6:45:7d:fa:5d:03: cb:1c:ac:04:3b:14:d8:57:a2:16:45:1a:ca:62:d5: 58:be:59:5f:47:b8:80:c0:e6:24:b0:7d:35:13:60: 1e:09:81:16:f6:97:3c:98:18:3b:8c:46:97:9b:d5: f8:e6:52:ce:7a:0f:f1:57:30:e5:7f:25:a4:20:ea: 26:48:3d:09:aa:e8:b1:ce:92:74:e5:86:0f:b3:18: fa:60:fc:2e:30:bc:91:66:60:3e:11:bb:26:e8:7c: 3c:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 43:35:2C:F2:FE:94:54:8E:EF:08:0C:0D:6A:6D:A5:C0:7E:E6:27:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/e7d9f745-faa4-48ce-83b1-0bde33c2447f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/e7d9f745-faa4-48ce-83b1-0bde33c2447f/0/43352CF2FE94548EEF080C0D6A6DA5C07EE627AB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 203.145.60.0/23 Signature Algorithm: sha256WithRSAEncryption 3f:46:a4:93:0b:84:72:45:f3:8d:2b:05:77:18:47:54:17:4c: f5:1a:9c:58:0c:66:51:45:60:96:43:86:92:4f:0b:3e:8b:4d: 07:28:01:56:34:6d:b7:54:9f:71:2b:52:0c:a7:c3:0a:7c:57: 77:4c:c1:d8:da:91:f4:26:72:1c:be:6c:07:34:7c:55:bb:ca: 3b:a9:7a:8c:a4:04:74:98:0b:b0:77:b8:bf:2e:52:c7:fc:60: dd:2b:2e:16:d4:7e:b2:2f:41:e5:0f:8c:dd:12:43:2b:46:50: 40:4b:fc:10:b6:cc:a2:2d:77:fe:9c:35:d6:34:76:fa:71:8b: 66:b6:b9:5a:c3:08:d9:30:f2:4a:9c:ef:aa:e7:88:c0:50:b6: 4d:80:4b:9a:b8:12:09:c5:ec:ce:1a:39:da:a6:f3:db:60:63: fa:cd:9f:56:b6:cd:60:fa:24:22:d7:c3:a5:08:40:ae:cd:b6: 1f:fd:d8:23:11:cc:d3:14:a6:3f:b7:5e:07:be:24:68:91:c0: 3c:67:f3:00:67:8b:66:e7:ad:c9:bf:e0:02:8e:cf:57:01:03: e2:71:41:7f:59:43:e4:25:5b:31:04:81:13:06:33:c6:00:51: 14:cf:ad:36:9b:ea:d8:96:ff:65:94:7f:d4:bd:a1:a5:4b:93: 3c:fd:69:c4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUY+cbyt0NX1SGDiaxFw9Ir3OEAoAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxMjA2Mjg0MVoX DTI0MTIxMDA2MzM0MVowMzExMC8GA1UEAxMoNDMzNTJDRjJGRTk0NTQ4RUVGMDgw QzBENkE2REE1QzA3RUU2MjdBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMpjFRIG7pzQV3JbVmSnK36UD4/sl+JTJ3D3BPPRw2Vm6g6/S4S6P3S5fMgK VDDLjIFn+6GLumZXmSjwnuFkEG4fxyfs7YOzxcPRXemGjjzcw5kDMAYxH3AcmAwj CBJOEQNoOvealBiF1YhjMlkvkIPR4PMuCbW+PrSiB5ot+DJ+9y47gVcVJrwY8x9J ogyfMH4wkxgmWNRvo820dWFJ1kV9+l0DyxysBDsU2FeiFkUaymLVWL5ZX0e4gMDm JLB9NRNgHgmBFvaXPJgYO4xGl5vV+OZSznoP8Vcw5X8lpCDqJkg9Carosc6SdOWG D7MY+mD8LjC8kWZgPhG7Juh8PP0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEM1LPL+lFSO7wgMDWptpcB+5ierMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lN2Q5Zjc0NS1mYWE0LTQ4Y2UtODNiMS0wYmRlMzNjMjQ0N2YvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2U3ZDlmNzQ1 LWZhYTQtNDhjZS04M2IxLTBiZGUzM2MyNDQ3Zi8wLzQzMzUyQ0YyRkU5NDU0OEVF RjA4MEMwRDZBNkRBNUMwN0VFNjI3QUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAHLkTwwDQYJKoZIhvcNAQELBQADggEBAD9GpJMLhHJF840rBXcYR1QXTPUanFgM ZlFFYJZDhpJPCz6LTQcoAVY0bbdUn3ErUgynwwp8V3dMwdjakfQmchy+bAc0fFW7 yjupeoykBHSYC7B3uL8uUsf8YN0rLhbUfrIvQeUPjN0SQytGUEBL/BC2zKItd/6c NdY0dvpxi2a2uVrDCNkw8kqc76rniMBQtk2AS5q4EgnF7M4aOdqm89tgY/rNn1a2 zWD6JCLXw6UIQK7Nth/92CMRzNMUpj+3Xge+JGiRwDxn8wBni2bnrcm/4AKOz1cB A+JxQX9ZQ+QlWzEEgRMGM8YAURTPrTab6tiW/2WUf9S9oaVLkzz9acQ= -----END CERTIFICATE-----Generated at Wed May 8 14:59:51 2024 by rpki-client on console-ams.rpki-client.org