$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/49CDCA308C289D688C649C2303BECB3ED76B5054.cer File: 49CDCA308C289D688C649C2303BECB3ED76B5054.cer (raw, json) Hash identifier: 5RJagrmbKlHVgQ9d8owL7kfzwsoHGRnnOy/xg7cwzpI= Subject key identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6533774A82459C1CB5896EF0325C3FCFDF864D63 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft caRepository: rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 30 Jul 2023 21:14:01 +0000 Certificate not after: Sun 28 Jul 2024 21:19:01 +0000 Subordinate resources: IP: 103.16.198.0/23 IP: 103.251.44.0/23 IP: 202.74.236.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:33:77:4a:82:45:9c:1c:b5:89:6e:f0:32:5c:3f:cf:df:86:4d:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 21:14:01 2023 GMT Not After : Jul 28 21:19:01 2024 GMT Subject: CN=49CDCA308C289D688C649C2303BECB3ED76B5054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:89:e3:e4:ec:71:7e:48:8a:f4:80:dd:29:ff: 7c:52:15:58:15:15:fc:c8:ba:79:88:e9:d2:7f:ce: 83:c8:be:79:8d:f7:a7:b1:d5:9d:e8:68:f6:01:44: b4:18:32:ce:75:36:8a:3f:b8:9a:d1:25:63:8d:4c: c4:a0:3f:d7:eb:40:e4:70:31:28:3f:3d:e4:42:6d: 5d:6f:21:c9:c2:f1:e7:80:20:32:c9:a2:d1:d4:2a: 45:4b:1e:49:72:74:df:7a:82:16:f4:63:63:27:c9: b2:23:af:87:0c:e7:50:f8:97:cb:27:fe:6e:0f:05: b2:32:6b:f2:03:68:16:06:35:e8:d7:a9:75:14:f4: 53:2a:c9:40:80:fe:18:df:8f:e8:57:58:62:6f:f3: 10:95:be:c8:7a:d4:a7:54:80:03:99:d2:af:44:d8: 7b:20:30:89:06:7a:30:86:6a:d1:83:52:66:14:c5: 0c:06:0e:bf:f3:bc:48:2b:df:fb:e7:4b:20:87:75: 51:c4:98:28:b7:c0:5c:f3:fc:4e:cd:02:cd:26:31: c7:d2:fd:91:a3:cf:0d:ff:72:82:ad:f6:59:3c:9d: 8d:38:4e:1e:77:03:53:de:0c:c8:d6:9d:57:0b:c1: 18:a9:6a:dd:b9:b4:3e:dd:57:c1:e9:07:71:4c:47: 79:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 49:CD:CA:30:8C:28:9D:68:8C:64:9C:23:03:BE:CB:3E:D7:6B:50:54 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/eeb98ced-af18-4bff-ad71-73d2b0c9d8a9/0/49CDCA308C289D688C649C2303BECB3ED76B5054.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.16.198.0/23 103.251.44.0/23 202.74.236.0/22 Signature Algorithm: sha256WithRSAEncryption 08:d2:f7:8a:ab:e0:2e:bb:14:12:c1:20:c6:7b:19:da:a3:64: 58:c8:e1:42:8a:0e:8a:0c:69:02:bd:7a:a5:af:71:a9:43:6b: b0:24:60:7f:c2:79:79:07:70:01:69:1a:23:3d:97:e4:ba:ab: 61:be:6e:ab:7e:56:99:bb:df:2d:31:b9:7f:fe:8d:8e:b5:bf: 70:3b:77:02:38:0f:52:32:78:b0:8a:40:c8:73:48:fa:cd:fc: b6:8f:b1:23:6c:a0:ee:ee:6a:84:40:28:41:88:f8:c9:3f:bb: 49:7f:bd:73:81:f2:2d:16:e4:d1:4c:38:44:d6:21:fc:f8:2b: a5:d7:cd:8b:25:d6:4b:87:02:81:d5:a9:aa:4f:3f:fa:f8:70: aa:a6:e1:84:2f:72:2b:d6:72:64:c6:af:4d:f1:f9:e9:17:9d: 96:d6:e6:4b:29:3b:26:6b:0b:70:0a:a5:14:19:93:b1:7f:ef: 34:70:d1:e6:ef:6f:92:79:b7:cd:fd:e4:53:9f:b1:92:ba:ff: 37:19:f5:61:16:36:86:48:5d:34:f6:07:99:ee:a8:48:9c:78: 22:20:3a:82:03:42:de:d8:f6:24:1d:75:33:4a:fb:9d:bf:07: be:c7:9f:3c:1c:84:d0:f6:b6:35:be:ec:c2:9c:73:fb:d8:e2: ff:42:29:07 -----BEGIN CERTIFICATE----- MIIF0TCCBLmgAwIBAgIUZTN3SoJFnBy1iW7wMlw/z9+GTWMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMDIxMTQwMVoX DTI0MDcyODIxMTkwMVowMzExMC8GA1UEAxMoNDlDRENBMzA4QzI4OUQ2ODhDNjQ5 QzIzMDNCRUNCM0VENzZCNTA1NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALqJ4+TscX5IivSA3Sn/fFIVWBUV/Mi6eYjp0n/Og8i+eY33p7HVneho9gFE tBgyznU2ij+4mtElY41MxKA/1+tA5HAxKD895EJtXW8hycLx54AgMsmi0dQqRUse SXJ033qCFvRjYyfJsiOvhwznUPiXyyf+bg8FsjJr8gNoFgY16NepdRT0UyrJQID+ GN+P6FdYYm/zEJW+yHrUp1SAA5nSr0TYeyAwiQZ6MIZq0YNSZhTFDAYOv/O8SCvf ++dLIId1UcSYKLfAXPP8Ts0CzSYxx9L9kaPPDf9ygq32WTydjThOHncDU94MyNad VwvBGKlq3bm0Pt1XwekHcUxHebUCAwEAAaOCAsQwggLAMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFEnNyjCMKJ1ojGScIwO+yz7Xa1BUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lZWI5OGNlZC1hZjE4LTRiZmYtYWQ3MS03M2QyYjBjOWQ4YTkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VlYjk4Y2Vk LWFmMTgtNGJmZi1hZDcxLTczZDJiMGM5ZDhhOS8wLzQ5Q0RDQTMwOEMyODlENjg4 QzY0OUMyMzAzQkVDQjNFRDc2QjUwNTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID BAFnEMYDBAFn+ywDBALKSuwwDQYJKoZIhvcNAQELBQADggEBAAjS94qr4C67FBLB IMZ7GdqjZFjI4UKKDooMaQK9eqWvcalDa7AkYH/CeXkHcAFpGiM9l+S6q2G+bqt+ Vpm73y0xuX/+jY61v3A7dwI4D1IyeLCKQMhzSPrN/LaPsSNsoO7uaoRAKEGI+Mk/ u0l/vXOB8i0W5NFMOETWIfz4K6XXzYsl1kuHAoHVqapPP/r4cKqm4YQvcivWcmTG r03x+ekXnZbW5kspOyZrC3AKpRQZk7F/7zRw0ebvb5J5t8395FOfsZK6/zcZ9WEW NoZIXTT2B5nuqEiceCIgOoIDQt7Y9iQddTNK+52/B77HnzwchND2tjW+7MKcc/vY 4v9CKQc= -----END CERTIFICATE-----Generated at Wed May 8 21:02:13 2024 by rpki-client on console-fra.rpki-client.org