$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/6D3440FA38B51321C8A8FD8136BA70597A8686E0.cer File: 6D3440FA38B51321C8A8FD8136BA70597A8686E0.cer (raw, json) Hash identifier: RtV2iUVCsgruWPu1YixUJ3ktItFyvfoNa6GrglvqoJo= Subject key identifier: 6D:34:40:FA:38:B5:13:21:C8:A8:FD:81:36:BA:70:59:7A:86:86:E0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 28F399FEA7EF7EC2ED8087292808286C337EDA4E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/6D3440FA38B51321C8A8FD8136BA70597A8686E0.mft caRepository: rsync://repo-rpki.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 09 Apr 2024 13:14:06 +0000 Certificate not after: Tue 08 Apr 2025 13:19:06 +0000 Subordinate resources: IP: 103.160.193.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:f3:99:fe:a7:ef:7e:c2:ed:80:87:29:28:08:28:6c:33:7e:da:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 9 13:14:06 2024 GMT Not After : Apr 8 13:19:06 2025 GMT Subject: CN=6D3440FA38B51321C8A8FD8136BA70597A8686E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:55:14:3b:2f:fb:e3:bd:84:b7:c1:fb:e2:8d: 98:99:1d:aa:3a:ca:de:d9:59:a7:95:17:b1:59:4c: 9a:02:bd:49:88:42:9e:9b:d3:01:0b:bf:d1:c4:5a: 94:35:c4:7a:7b:c5:f8:17:f7:7f:f7:d6:41:0b:53: d2:8e:a3:e6:a8:cb:99:ff:32:7c:5b:cc:fd:d6:a5: 9d:80:0b:92:5a:0d:3d:e1:93:96:eb:9f:9e:12:d7: e5:42:0d:5e:64:ef:42:07:4b:c5:e7:6c:23:35:a6: a9:87:3f:ce:4c:f1:45:61:6a:fd:58:86:e8:33:68: b3:06:65:79:d0:67:c8:fe:95:d5:01:cf:a7:b9:24: c4:48:94:b5:93:3e:0d:d1:09:b1:64:ba:cf:09:d5: 8f:fa:71:b1:e6:7e:32:72:85:6b:80:b0:79:93:bd: 34:c9:0a:32:a8:88:b1:8c:4d:71:3d:94:0e:5f:52: b5:81:ca:8e:dc:24:af:21:3c:48:f8:15:70:95:7b: d7:2f:e6:13:6b:1f:86:25:ea:d1:50:de:c2:8b:6d: 4c:04:2d:74:72:18:1d:6a:c7:79:60:33:b2:e3:01: 45:3f:95:4e:70:ec:36:88:18:d1:2e:52:3f:6a:4e: b1:ea:1f:c8:77:83:4c:c8:cd:27:2a:d6:b2:fb:70: 0c:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 6D:34:40:FA:38:B5:13:21:C8:A8:FD:81:36:BA:70:59:7A:86:86:E0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3cb3b00b-ad7b-4849-b0b2-e249a2fa604a/0/6D3440FA38B51321C8A8FD8136BA70597A8686E0.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.160.193.0/24 Signature Algorithm: sha256WithRSAEncryption 02:f0:4f:de:43:be:13:ba:40:6e:a8:fd:03:04:36:8f:5e:a0: ba:d2:45:84:92:bf:46:0c:e9:54:8b:be:8c:d6:98:7d:c6:56: 53:4d:6b:89:e8:df:b5:77:cc:ba:66:48:b0:19:c3:f5:d4:62: 83:bc:51:ec:98:8e:3d:11:e6:82:66:00:c2:d0:63:44:a6:76: 5b:21:87:c0:9c:0e:e7:6f:39:98:d8:6b:be:dd:7c:8a:81:d6: b0:66:3b:a2:06:d9:c0:a0:d3:02:d1:57:f9:68:a1:4e:4a:c4: 9f:5e:e5:6a:18:fd:b9:97:75:be:29:a2:1f:3b:15:8e:56:0d: 51:0a:0f:ca:15:86:1f:1a:29:79:14:85:66:ea:a1:72:d9:14: 87:67:0d:1b:05:a6:ed:8f:0c:4c:c0:6f:64:f2:d7:86:70:b8: 7c:26:3e:69:6d:1e:af:29:4c:15:a3:b2:e7:58:67:98:46:ec: 11:64:2f:b9:50:5b:bd:c6:cb:86:a1:58:49:d8:1e:92:db:18: ad:17:38:a6:32:87:12:f9:10:0a:14:76:66:37:07:dc:eb:7d: 0a:e2:c8:1a:15:c0:6e:0a:80:26:9c:a6:bc:80:4e:9e:16:4f: ad:c2:e6:f9:71:4f:50:92:7b:69:38:8b:d9:8a:b0:1b:11:c7: 97:6f:37:96 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKPOZ/qfvfsLtgIcpKAgobDN+2k4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQwOTEzMTQwNloX DTI1MDQwODEzMTkwNlowMzExMC8GA1UEAxMoNkQzNDQwRkEzOEI1MTMyMUM4QThG RDgxMzZCQTcwNTk3QTg2ODZFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKNVFDsv++O9hLfB++KNmJkdqjrK3tlZp5UXsVlMmgK9SYhCnpvTAQu/0cRa lDXEenvF+Bf3f/fWQQtT0o6j5qjLmf8yfFvM/dalnYALkloNPeGTluufnhLX5UIN XmTvQgdLxedsIzWmqYc/zkzxRWFq/ViG6DNoswZledBnyP6V1QHPp7kkxEiUtZM+ DdEJsWS6zwnVj/pxseZ+MnKFa4CweZO9NMkKMqiIsYxNcT2UDl9StYHKjtwkryE8 SPgVcJV71y/mE2sfhiXq0VDewottTAQtdHIYHWrHeWAzsuMBRT+VTnDsNogY0S5S P2pOseofyHeDTMjNJyrWsvtwDKECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFG00QPo4tRMhyKj9gTa6cFl6hobgMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zY2IzYjAwYi1hZDdiLTQ4NDktYjBiMi1lMjQ5YTJmYTYwNGEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjYjNiMDBi LWFkN2ItNDg0OS1iMGIyLWUyNDlhMmZhNjA0YS8wLzZEMzQ0MEZBMzhCNTEzMjFD OEE4RkQ4MTM2QkE3MDU5N0E4Njg2RTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnoMEwDQYJKoZIhvcNAQELBQADggEBAALwT95DvhO6QG6o/QMENo9eoLrSRYSS v0YM6VSLvozWmH3GVlNNa4no37V3zLpmSLAZw/XUYoO8UeyYjj0R5oJmAMLQY0Sm dlshh8CcDudvOZjYa77dfIqB1rBmO6IG2cCg0wLRV/looU5KxJ9e5WoY/bmXdb4p oh87FY5WDVEKD8oVhh8aKXkUhWbqoXLZFIdnDRsFpu2PDEzAb2Ty14ZwuHwmPmlt Hq8pTBWjsudYZ5hG7BFkL7lQW73Gy4ahWEnYHpLbGK0XOKYyhxL5EAoUdmY3B9zr fQriyBoVwG4KgCacpryATp4WT63C5vlxT1CSe2k4i9mKsBsRx5dvN5Y= -----END CERTIFICATE-----Generated at Wed May 8 18:12:09 2024 by rpki-client on console-fra.rpki-client.org