$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/64848BA7A76415C6458AAC267B0A57658022C3C5.cer File: 64848BA7A76415C6458AAC267B0A57658022C3C5.cer (raw, json) Hash identifier: 34VMSkXPbkI2UJk/ONvDMmRUIS+OjhjR/2vW4SMTEp0= Subject key identifier: 64:84:8B:A7:A7:64:15:C6:45:8A:AC:26:7B:0A:57:65:80:22:C3:C5 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 218BC9201E302CF9BEF5BD3D045B2088457AF070 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/64848BA7A76415C6458AAC267B0A57658022C3C5.mft caRepository: rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 05 Dec 2023 13:52:44 +0000 Certificate not after: Tue 03 Dec 2024 13:57:44 +0000 Subordinate resources: IP: 103.179.68.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:8b:c9:20:1e:30:2c:f9:be:f5:bd:3d:04:5b:20:88:45:7a:f0:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 5 13:52:44 2023 GMT Not After : Dec 3 13:57:44 2024 GMT Subject: CN=64848BA7A76415C6458AAC267B0A57658022C3C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:8c:23:9f:ac:b5:d3:5e:31:16:8c:90:95:52: 60:88:20:37:97:6a:e7:15:c8:d7:c8:f7:18:db:f6: 0d:65:16:6a:08:e9:5c:32:7d:c4:7f:c6:d6:a6:5e: 90:4c:27:b2:ff:cd:3b:63:15:b1:bf:24:69:1b:59: d3:4f:f0:55:02:1e:96:c2:2c:5d:7b:23:c3:26:d3: 09:77:e6:5e:68:8a:26:93:d9:1f:64:ee:a9:ba:83: 4d:e0:d1:fe:8a:c3:65:9e:12:9a:06:b2:91:bb:11: c8:4c:ff:e6:87:b1:d7:40:1c:76:bb:31:c9:1a:53: c0:f1:07:8c:34:55:b7:30:41:4f:8e:d2:9b:38:a9: 21:cb:24:29:72:f5:46:d6:2b:22:46:63:c0:31:b8: 9d:d1:c5:08:12:38:af:a2:ca:8c:a3:ee:35:c5:0c: 1b:0b:53:3a:4b:4c:82:56:20:2a:25:44:9b:ba:f5: e0:ce:1a:6a:72:8c:5f:d0:a4:08:3e:93:41:47:70: ee:0f:09:f3:46:49:42:d1:3a:dd:28:42:6a:74:66: a7:6e:ba:b1:54:20:97:4a:aa:9b:55:67:53:a3:d3: ba:26:7e:09:e0:61:6e:dc:52:e3:b4:3f:81:16:bf: f1:28:bb:74:4c:bc:67:85:4c:f9:d9:5d:36:07:71: 73:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 64:84:8B:A7:A7:64:15:C6:45:8A:AC:26:7B:0A:57:65:80:22:C3:C5 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2d3ed012-afdb-42fb-971a-e162a9dec46d/0/64848BA7A76415C6458AAC267B0A57658022C3C5.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.68.0/24 Signature Algorithm: sha256WithRSAEncryption 80:4d:61:44:dc:09:02:b9:37:56:7d:25:67:97:21:c5:48:2a: cc:0e:cc:f2:07:d0:35:76:6d:04:97:7d:55:0b:e3:70:af:8e: 55:37:35:33:66:a1:b5:5a:c7:73:f9:f6:7b:8f:fe:5a:b8:64: c3:f2:56:06:38:3a:63:ac:13:2c:62:56:9a:54:97:e6:0a:e6: 0a:8f:96:8f:4f:7d:3b:75:6d:07:cc:4c:5c:77:51:0a:c3:24: 2a:16:9e:52:12:8c:7b:50:19:12:bc:8c:f0:6a:5f:51:a7:23: e7:6f:7f:20:60:bd:1f:e0:c1:c4:ee:f9:11:44:db:39:ea:d1: 28:16:37:07:52:da:60:27:6a:16:b2:16:8e:09:cb:a2:18:a8: 56:c3:e3:3a:f5:82:7d:c9:52:0b:c8:76:78:6a:57:f9:cd:5f: 80:af:2b:08:7f:20:a1:bc:da:2e:1a:8a:cf:47:6f:6b:d1:9f: b8:4a:80:54:67:6e:86:6b:5d:f9:64:5c:8b:3b:3a:55:92:fc: 14:95:db:c7:9f:f3:43:22:d7:5f:ba:09:23:0b:88:d9:d0:0c: a5:d1:36:2b:e2:53:02:c8:63:c5:37:65:34:71:c2:bd:42:5d: 83:0b:77:5a:45:ad:4f:01:70:5c:8b:04:13:61:a8:cf:bc:9b: 04:54:13:ad -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUIYvJIB4wLPm+9b09BFsgiEV68HAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwNTEzNTI0NFoX DTI0MTIwMzEzNTc0NFowMzExMC8GA1UEAxMoNjQ4NDhCQTdBNzY0MTVDNjQ1OEFB QzI2N0IwQTU3NjU4MDIyQzNDNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN2MI5+stdNeMRaMkJVSYIggN5dq5xXI18j3GNv2DWUWagjpXDJ9xH/G1qZe kEwnsv/NO2MVsb8kaRtZ00/wVQIelsIsXXsjwybTCXfmXmiKJpPZH2TuqbqDTeDR /orDZZ4SmgaykbsRyEz/5oex10AcdrsxyRpTwPEHjDRVtzBBT47SmzipIcskKXL1 RtYrIkZjwDG4ndHFCBI4r6LKjKPuNcUMGwtTOktMglYgKiVEm7r14M4aanKMX9Ck CD6TQUdw7g8J80ZJQtE63ShCanRmp266sVQgl0qqm1VnU6PTuiZ+CeBhbtxS47Q/ gRa/8Si7dEy8Z4VM+dldNgdxc78CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGSEi6enZBXGRYqsJnsKV2WAIsPFMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZDNlZDAxMi1hZmRiLTQyZmItOTcxYS1lMTYyYTlkZWM0NmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJkM2VkMDEy LWFmZGItNDJmYi05NzFhLWUxNjJhOWRlYzQ2ZC8wLzY0ODQ4QkE3QTc2NDE1QzY0 NThBQUMyNjdCMEE1NzY1ODAyMkMzQzUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABns0QwDQYJKoZIhvcNAQELBQADggEBAIBNYUTcCQK5N1Z9JWeXIcVIKswOzPIH 0DV2bQSXfVUL43CvjlU3NTNmobVax3P59nuP/lq4ZMPyVgY4OmOsEyxiVppUl+YK 5gqPlo9PfTt1bQfMTFx3UQrDJCoWnlISjHtQGRK8jPBqX1GnI+dvfyBgvR/gwcTu +RFE2znq0SgWNwdS2mAnahayFo4Jy6IYqFbD4zr1gn3JUgvIdnhqV/nNX4CvKwh/ IKG82i4ais9Hb2vRn7hKgFRnboZrXflkXIs7OlWS/BSV28ef80Mi11+6CSMLiNnQ DKXRNiviUwLIY8U3ZTRxwr1CXYMLd1pFrU8BcFyLBBNhqM+8mwRUE60= -----END CERTIFICATE-----Generated at Thu May 9 00:37:01 2024 by rpki-client on console-fra.rpki-client.org