$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/6437999FD06F2C7F0F16F8160CD6145F775884A4.cer File: 6437999FD06F2C7F0F16F8160CD6145F775884A4.cer (raw, json) Hash identifier: pl299BPWWTztHdtzr8+cGo+Sm5qmcMcOm3LZBAv08Fc= Subject key identifier: 64:37:99:9F:D0:6F:2C:7F:0F:16:F8:16:0C:D6:14:5F:77:58:84:A4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 75CA02D2EFB30EAAC764881A4C83E60DCFC7A156 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.mft caRepository: rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 10 Jan 2024 22:36:56 +0000 Certificate not after: Wed 08 Jan 2025 22:41:56 +0000 Subordinate resources: IP: 103.181.136.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ca:02:d2:ef:b3:0e:aa:c7:64:88:1a:4c:83:e6:0d:cf:c7:a1:56 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 10 22:36:56 2024 GMT Not After : Jan 8 22:41:56 2025 GMT Subject: CN=6437999FD06F2C7F0F16F8160CD6145F775884A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:22:65:e3:79:6b:dc:5f:c9:ec:3a:40:85:5e: 99:b5:a2:22:df:e9:cc:a2:2c:0f:20:a3:64:9b:4d: cd:7a:24:ac:45:3f:f4:4d:ac:b5:56:95:db:8c:6d: 76:de:36:ec:58:2f:6f:92:b0:90:04:46:b0:8b:59: d6:30:68:0d:24:85:80:de:f4:b9:b8:7e:26:a0:ff: fd:3c:7a:04:10:a0:c2:c6:e4:05:dd:77:47:9b:51: 49:a0:62:db:c2:8f:10:ac:10:36:60:a2:d4:a7:f9: 24:fe:cd:23:2d:7c:bf:f0:29:c2:a0:97:6d:d2:a6: fd:53:20:8f:ff:0b:07:1e:84:85:10:f6:40:f0:82: bd:3c:04:34:02:59:f4:97:89:a1:14:cf:c5:2e:22: c7:34:96:6b:05:5c:d7:bf:ec:93:63:35:6e:b3:ad: 3c:88:42:d3:bc:67:f6:c4:42:47:bf:e2:84:1d:45: f9:73:38:e8:24:9a:5d:b3:c1:f0:ac:26:42:45:23: b4:dd:65:0c:ad:1e:6e:a6:00:66:28:90:5c:bb:99: e2:c9:b3:3d:20:46:4f:40:cf:1b:75:b0:03:94:c4: 29:4b:ba:f7:3f:33:1b:92:58:9b:16:a6:57:65:26: 03:4b:2a:bc:09:eb:b7:9c:0b:fd:35:94:14:4e:77: eb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:37:99:9F:D0:6F:2C:7F:0F:16:F8:16:0C:D6:14:5F:77:58:84:A4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/876fdc60-8023-40cd-aaa4-cd6ed22c4d45/0/6437999FD06F2C7F0F16F8160CD6145F775884A4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.136.0/23 Signature Algorithm: sha256WithRSAEncryption 81:d4:12:02:a9:ef:41:85:60:55:fb:f0:ef:a6:24:10:24:83: 29:9a:84:e0:37:55:2f:93:6e:c0:41:89:ba:5b:35:f6:59:ea: 42:14:64:94:74:3e:ee:98:af:75:6b:f9:6d:16:2b:a4:54:fe: 55:2f:3e:76:e0:0b:83:49:ea:8c:a2:67:70:f1:7a:15:19:49: 39:d1:6b:87:e1:7d:c6:b9:e9:7f:62:84:11:84:86:a7:0b:15: d4:0b:b7:31:7d:d5:90:a8:c5:a1:a7:aa:e4:26:17:59:30:5b: 6c:1a:2e:e0:a3:88:ba:b5:9c:9a:a9:7e:3c:10:ed:1f:b6:40: eb:ef:86:65:34:2d:16:bc:89:ff:76:2f:e3:fb:08:a0:cc:13: 56:ab:40:13:9a:49:cf:e8:ec:7e:55:93:67:3d:c2:f0:2e:d4: 54:30:e9:56:6b:7b:53:92:f5:84:b5:11:dd:ff:92:07:01:c1: 50:42:64:18:12:ed:f9:48:d8:a1:00:01:0a:29:c5:82:b0:e5: 8d:68:4c:52:fb:29:27:3e:13:51:42:49:ba:df:75:9e:4a:6d: 12:79:5e:86:26:ee:17:1b:95:51:95:9a:2e:f5:d8:92:ae:e2: e0:99:b0:7c:8c:e4:38:cd:f5:66:fe:09:c6:52:de:d6:bc:bf: 83:7c:25:84 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdcoC0u+zDqrHZIgaTIPmDc/HoVYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMDIyMzY1NloX DTI1MDEwODIyNDE1NlowMzExMC8GA1UEAxMoNjQzNzk5OUZEMDZGMkM3RjBGMTZG ODE2MENENjE0NUY3NzU4ODRBNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMIiZeN5a9xfyew6QIVembWiIt/pzKIsDyCjZJtNzXokrEU/9E2stVaV24xt dt427Fgvb5KwkARGsItZ1jBoDSSFgN70ubh+JqD//Tx6BBCgwsbkBd13R5tRSaBi 28KPEKwQNmCi1Kf5JP7NIy18v/ApwqCXbdKm/VMgj/8LBx6EhRD2QPCCvTwENAJZ 9JeJoRTPxS4ixzSWawVc17/sk2M1brOtPIhC07xn9sRCR7/ihB1F+XM46CSaXbPB 8KwmQkUjtN1lDK0ebqYAZiiQXLuZ4smzPSBGT0DPG3WwA5TEKUu69z8zG5JYmxam V2UmA0sqvAnrt5wL/TWUFE536zECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGQ3mZ/Qbyx/Dxb4FgzWFF93WISkMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84NzZmZGM2MC04MDIzLTQwY2QtYWFhNC1jZDZlZDIyYzRkNDUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzg3NmZkYzYw LTgwMjMtNDBjZC1hYWE0LWNkNmVkMjJjNGQ0NS8wLzY0Mzc5OTlGRDA2RjJDN0Yw RjE2RjgxNjBDRDYxNDVGNzc1ODg0QTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFntYgwDQYJKoZIhvcNAQELBQADggEBAIHUEgKp70GFYFX78O+mJBAkgymahOA3 VS+TbsBBibpbNfZZ6kIUZJR0Pu6Yr3Vr+W0WK6RU/lUvPnbgC4NJ6oyiZ3DxehUZ STnRa4fhfca56X9ihBGEhqcLFdQLtzF91ZCoxaGnquQmF1kwW2waLuCjiLq1nJqp fjwQ7R+2QOvvhmU0LRa8if92L+P7CKDME1arQBOaSc/o7H5Vk2c9wvAu1FQw6VZr e1OS9YS1Ed3/kgcBwVBCZBgS7flI2KEAAQopxYKw5Y1oTFL7KSc+E1FCSbrfdZ5K bRJ5XoYm7hcblVGVmi712JKu4uCZsHyM5DjN9Wb+CcZS3ta8v4N8JYQ= -----END CERTIFICATE-----Generated at Wed May 8 09:50:30 2024 by rpki-client on console-fra.rpki-client.org