$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.cer File: 44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.cer (raw, json) Hash identifier: amTe8mgo+025b6i+t8YOs0S7F5aBzTiFUpGWXdg8qRQ= Subject key identifier: 44:43:0F:D6:AB:CA:B2:54:BA:E7:AE:F8:6E:5F:5D:77:7F:CC:80:45 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 35E7FC00B48B0F29260DEEE4DDB549B931426AE1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.mft caRepository: rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 23 Sep 2023 18:38:57 +0000 Certificate not after: Sat 21 Sep 2024 18:43:57 +0000 Subordinate resources: IP: 103.114.76.0/22 IP: 2001:df4:f700::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:e7:fc:00:b4:8b:0f:29:26:0d:ee:e4:dd:b5:49:b9:31:42:6a:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 23 18:38:57 2023 GMT Not After : Sep 21 18:43:57 2024 GMT Subject: CN=44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:fd:94:20:43:62:39:da:53:4d:46:b4:d6:df: 88:67:7c:e1:dc:63:b5:c6:a9:6f:fb:f2:31:ac:f5: 68:16:55:41:35:c3:5c:ac:8d:8e:d4:82:48:ff:f9: 97:4e:d1:e8:26:99:54:60:15:d2:72:dc:41:00:82: 05:05:13:13:10:2a:ac:b3:68:bc:82:ab:10:39:5c: 3e:22:ed:d9:8c:f9:1d:f9:a2:30:38:b6:ab:dc:e9: cb:28:7e:10:2c:1e:d9:3b:26:a8:8d:66:f5:9a:fb: 29:7b:1b:90:61:29:da:5f:e7:87:ef:ca:40:2b:28: 4a:9f:52:7c:c3:66:09:1f:64:56:f7:50:94:c3:28: 50:a3:c7:de:03:c1:bd:45:d5:a6:2a:07:f0:ff:1b: f5:fb:8e:c4:4c:8d:04:33:cb:09:3c:48:d8:90:9a: 81:47:fd:d9:5f:ed:9d:69:a0:3d:47:31:e4:bc:a4: 7c:d6:42:81:5a:37:f9:6a:78:1f:e9:59:41:cb:e2: 12:26:1d:06:12:f7:f5:76:4e:02:ad:02:16:cf:fe: f1:63:7b:e2:5e:6f:f9:0c:5c:ef:bc:26:86:a3:fc: a5:7b:55:7a:e6:4a:a5:71:45:4c:67:6a:47:e0:45: 93:06:0e:9b:9d:09:18:3f:e2:be:34:46:d3:40:cc: d3:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 44:43:0F:D6:AB:CA:B2:54:BA:E7:AE:F8:6E:5F:5D:77:7F:CC:80:45 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a85477ce-0717-47c0-8766-8b9bec0c086c/0/44430FD6ABCAB254BAE7AEF86E5F5D777FCC8045.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.114.76.0/22 IPv6: 2001:df4:f700::/48 Signature Algorithm: sha256WithRSAEncryption 5e:9c:34:5a:b8:0e:94:e0:b5:5f:62:d2:dc:2d:46:a6:eb:76: 7b:26:8d:d1:c0:85:cb:a7:ca:c3:01:f7:da:b9:92:e0:56:36: b3:b0:eb:f6:5b:1c:2d:94:1b:c8:be:23:af:88:ea:c1:d9:ce: bb:28:6e:0a:e0:fc:d8:b5:60:17:fe:90:9a:ec:b6:96:9c:2e: 04:df:9f:c1:34:32:65:32:98:d3:f9:68:df:ec:f5:08:15:f9: 2c:09:38:f7:f0:e9:b4:5d:21:e7:1c:d8:da:4a:a5:96:9b:34: 6c:94:1e:b0:78:d7:26:bc:0d:3e:68:53:4e:5d:7f:4e:05:2a: 6f:64:c4:ec:16:8d:d2:65:8c:6a:a9:94:1e:cb:b0:3a:49:2e: c7:c8:e1:8f:c2:86:bd:72:06:df:06:9a:93:8e:b1:cc:49:29: 79:c6:d1:87:4e:63:86:78:51:3e:8f:bb:7f:7d:6e:70:e8:6d: 5d:3f:cf:92:68:ed:1e:bc:6f:6c:eb:3e:c9:5d:2d:97:83:54: 79:48:9c:c8:42:a4:02:ab:c4:83:19:e5:08:8d:c4:8b:29:9d: 64:2c:23:98:c9:6c:ac:0c:36:da:09:a7:50:d8:35:27:c1:a3: 7b:cd:6d:03:16:06:b4:d8:1f:f2:e4:cd:23:32:31:21:c9:d5: fb:16:fe:8c -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUNef8ALSLDykmDe7k3bVJuTFCauEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkyMzE4Mzg1N1oX DTI0MDkyMTE4NDM1N1owMzExMC8GA1UEAxMoNDQ0MzBGRDZBQkNBQjI1NEJBRTdB RUY4NkU1RjVENzc3RkNDODA0NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK/9lCBDYjnaU01GtNbfiGd84dxjtcapb/vyMaz1aBZVQTXDXKyNjtSCSP/5 l07R6CaZVGAV0nLcQQCCBQUTExAqrLNovIKrEDlcPiLt2Yz5HfmiMDi2q9zpyyh+ ECwe2TsmqI1m9Zr7KXsbkGEp2l/nh+/KQCsoSp9SfMNmCR9kVvdQlMMoUKPH3gPB vUXVpioH8P8b9fuOxEyNBDPLCTxI2JCagUf92V/tnWmgPUcx5LykfNZCgVo3+Wp4 H+lZQcviEiYdBhL39XZOAq0CFs/+8WN74l5v+Qxc77wmhqP8pXtVeuZKpXFFTGdq R+BFkwYOm50JGD/ivjRG00DM0xMCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFERDD9aryrJUuueu+G5fXXd/zIBFMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hODU0NzdjZS0wNzE3LTQ3YzAtODc2Ni04YjliZWMwYzA4NmMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E4NTQ3N2Nl LTA3MTctNDdjMC04NzY2LThiOWJlYzBjMDg2Yy8wLzQ0NDMwRkQ2QUJDQUIyNTRC QUU3QUVGODZFNUY1RDc3N0ZDQzgwNDUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnckwwDwQCAAIwCQMHACABDfT3ADANBgkqhkiG9w0BAQsFAAOCAQEAXpw0WrgO lOC1X2LS3C1Gput2eyaN0cCFy6fKwwH32rmS4FY2s7Dr9lscLZQbyL4jr4jqwdnO uyhuCuD82LVgF/6Qmuy2lpwuBN+fwTQyZTKY0/lo3+z1CBX5LAk49/DptF0h5xzY 2kqllps0bJQesHjXJrwNPmhTTl1/TgUqb2TE7BaN0mWMaqmUHsuwOkkux8jhj8KG vXIG3waak46xzEkpecbRh05jhnhRPo+7f31ucOhtXT/PkmjtHrxvbOs+yV0tl4NU eUicyEKkAqvEgxnlCI3EiymdZCwjmMlsrAw22gmnUNg1J8Gje81tAxYGtNgf8uTN IzIxIcnV+xb+jA== -----END CERTIFICATE-----Generated at Wed May 8 09:50:29 2024 by rpki-client on console-fra.rpki-client.org