$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer File: 491B0EA5440563BE9B0F167DA76C05E85A9D2F95.cer (raw, json) Hash identifier: bjfFW8+DtE7vf41N+XjNfg05JKV1LLj+qJdpQK7uDoE= Subject key identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 39EDB82B66EF4AE420809EAE4B4123F5F0EB42A9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft caRepository: rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 20 Sep 2023 04:41:16 +0000 Certificate not after: Wed 18 Sep 2024 04:46:16 +0000 Subordinate resources: IP: 103.122.152.0/22 IP: 2403:90c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:ed:b8:2b:66:ef:4a:e4:20:80:9e:ae:4b:41:23:f5:f0:eb:42:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 20 04:41:16 2023 GMT Not After : Sep 18 04:46:16 2024 GMT Subject: CN=491B0EA5440563BE9B0F167DA76C05E85A9D2F95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:64:5c:4b:94:d3:d8:3f:53:08:69:ca:53:bc: 24:90:54:60:d3:25:64:b4:a9:1c:0c:9b:9d:77:f3: 53:54:40:ed:8b:0b:96:ee:be:1f:5f:81:92:d8:3d: b0:ba:58:4c:d0:95:4d:4c:d6:c5:c8:e8:23:6a:ee: 69:7b:c0:77:45:eb:ae:97:89:7f:5a:f4:18:a8:36: 11:95:d3:29:ae:ca:a7:4a:ad:20:ba:f8:7e:57:4d: 2a:70:d0:0e:79:07:c1:6c:13:cc:4e:2c:58:37:ad: 53:32:11:35:a3:a6:a0:75:6f:ad:45:ac:c6:ca:01: 3d:d4:de:23:27:0b:43:95:eb:7c:07:39:e6:9f:52: ad:d9:7f:a0:d6:9e:50:28:de:a6:6c:d4:18:63:1b: 66:dd:92:73:1f:9b:28:4c:ea:82:06:b5:12:f0:e4: 22:1f:a2:c3:99:50:4c:37:e4:b3:a6:e0:9d:58:6b: e6:19:88:62:78:08:54:4b:a2:a6:21:5b:40:9f:2c: 2d:17:7d:17:14:2d:4b:45:72:71:7d:3a:97:db:72: 49:2e:08:ad:37:97:a2:aa:37:07:ad:4e:1c:46:2e: 91:93:58:c6:57:af:cd:8d:1a:00:c5:80:af:31:98: ed:df:e0:b1:74:0d:3a:b1:ed:12:c5:0c:d2:bf:26: b3:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 49:1B:0E:A5:44:05:63:BE:9B:0F:16:7D:A7:6C:05:E8:5A:9D:2F:95 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7229781a-8ac9-4452-b25f-54e7edf7d4a4/0/491B0EA5440563BE9B0F167DA76C05E85A9D2F95.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.122.152.0/22 IPv6: 2403:90c0::/32 Signature Algorithm: sha256WithRSAEncryption 8d:03:d8:9d:aa:4c:8e:a1:f5:f8:35:c1:d0:f8:d8:37:f5:1d: f8:24:82:d8:e8:e9:2a:c6:4e:ec:49:49:9e:49:9d:78:16:f0: 1e:18:88:77:ab:5b:c7:74:ac:54:a4:a4:66:b4:ee:09:4b:3a: 1a:ed:ca:6e:43:9c:53:7c:c0:14:2e:3c:ca:dc:21:22:a2:d4: 92:01:3a:a7:d3:9a:fd:da:5e:50:1f:54:d3:bf:69:7c:c3:2a: 1d:c8:25:c9:b4:c8:71:00:cb:2d:c1:7a:4f:11:80:65:5a:dd: c9:64:f2:4c:8e:c8:80:5d:34:30:28:1c:2e:6d:47:ee:f2:68: 3b:1d:d9:38:b4:5c:a4:ed:24:04:58:40:b8:dd:b2:1f:ac:97: e2:d3:ef:10:4d:b0:4b:cc:60:24:ec:85:e3:3d:37:6c:95:fb: 1a:dc:7a:0b:40:f5:f8:f0:21:fa:4c:aa:7a:9c:14:7d:b1:1c: f7:cf:61:ba:54:ff:e7:50:26:6d:d4:be:48:32:38:22:bd:2b: 09:3b:8b:83:e5:fa:fe:48:60:53:2c:99:8c:ce:3a:2e:f4:81: 63:f6:20:5d:bb:8a:a7:8e:fe:58:ab:20:4b:11:ad:a9:44:92: 90:6a:9e:76:0b:2a:08:e9:58:4e:e2:f1:b7:7a:ea:8f:5c:d7: 70:46:da:2b -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUOe24K2bvSuQggJ6uS0Ej9fDrQqkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkyMDA0NDExNloX DTI0MDkxODA0NDYxNlowMzExMC8GA1UEAxMoNDkxQjBFQTU0NDA1NjNCRTlCMEYx NjdEQTc2QzA1RTg1QTlEMkY5NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANRkXEuU09g/UwhpylO8JJBUYNMlZLSpHAybnXfzU1RA7YsLlu6+H1+Bktg9 sLpYTNCVTUzWxcjoI2ruaXvAd0XrrpeJf1r0GKg2EZXTKa7Kp0qtILr4fldNKnDQ DnkHwWwTzE4sWDetUzIRNaOmoHVvrUWsxsoBPdTeIycLQ5XrfAc55p9Srdl/oNae UCjepmzUGGMbZt2Scx+bKEzqgga1EvDkIh+iw5lQTDfks6bgnVhr5hmIYngIVEui piFbQJ8sLRd9FxQtS0VycX06l9tySS4IrTeXoqo3B61OHEYukZNYxlevzY0aAMWA rzGY7d/gsXQNOrHtEsUM0r8mswsCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEkbDqVEBWO+mw8WfadsBehanS+VMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83MjI5NzgxYS04YWM5LTQ0NTItYjI1Zi01NGU3ZWRmN2Q0YTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzcyMjk3ODFh LThhYzktNDQ1Mi1iMjVmLTU0ZTdlZGY3ZDRhNC8wLzQ5MUIwRUE1NDQwNTYzQkU5 QjBGMTY3REE3NkMwNUU4NUE5RDJGOTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnepgwDQQCAAIwBwMFACQDkMAwDQYJKoZIhvcNAQELBQADggEBAI0D2J2qTI6h 9fg1wdD42Df1Hfgkgtjo6SrGTuxJSZ5JnXgW8B4YiHerW8d0rFSkpGa07glLOhrt ym5DnFN8wBQuPMrcISKi1JIBOqfTmv3aXlAfVNO/aXzDKh3IJcm0yHEAyy3Bek8R gGVa3clk8kyOyIBdNDAoHC5tR+7yaDsd2Ti0XKTtJARYQLjdsh+sl+LT7xBNsEvM YCTsheM9N2yV+xrcegtA9fjwIfpMqnqcFH2xHPfPYbpU/+dQJm3UvkgyOCK9Kwk7 i4Pl+v5IYFMsmYzOOi70gWP2IF27iqeO/lirIEsRralEkpBqnnYLKgjpWE7i8bd6 6o9c13BG2is= -----END CERTIFICATE-----Generated at Wed May 8 22:46:38 2024 by rpki-client on console-ams.rpki-client.org