$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.cer File: 6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.cer (raw, json) Hash identifier: xaGmrHlE5nxoFLwpvcuDNljdC/jz0mP+fuzMAteixPc= Subject key identifier: 6F:C8:57:DF:7F:E5:35:0A:6C:05:A1:F1:13:F3:DC:2E:5F:E0:BE:11 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 48CF2690470274684E940526F411967C8CE4DDDD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.mft caRepository: rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 11 Mar 2024 07:32:49 +0000 Certificate not after: Mon 10 Mar 2025 07:37:49 +0000 Subordinate resources: IP: 103.159.194.0/23 IP: 2407:5440::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:cf:26:90:47:02:74:68:4e:94:05:26:f4:11:96:7c:8c:e4:dd:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 11 07:32:49 2024 GMT Not After : Mar 10 07:37:49 2025 GMT Subject: CN=6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8a:2c:1d:6c:76:ed:eb:b9:ae:3d:43:9c:84: 28:e1:45:30:d6:b8:7d:d3:51:1a:79:63:20:96:33: 33:1b:2b:be:4e:37:23:b2:51:cf:3c:de:40:bf:42: c7:aa:bd:48:25:86:fa:ff:28:e4:94:f1:10:11:8c: 36:56:e0:63:d8:a4:14:b9:4e:2c:7a:48:70:62:61: 83:6f:31:68:fe:5c:b3:70:30:ff:a0:f6:f3:f5:d0: 61:ce:1e:2c:69:45:5b:42:70:16:b2:21:73:a5:ed: 6c:90:32:18:25:22:c6:9e:fc:00:fa:84:63:4f:23: b8:ad:b6:f7:92:34:52:00:ba:5e:6e:c2:37:36:bb: 14:7b:93:c8:65:f7:c3:fd:3b:22:2b:a1:a1:c1:1b: db:5f:56:8b:0c:7f:dd:38:fb:f9:72:76:22:72:aa: b0:25:3f:f9:95:18:65:9c:db:42:c2:ad:63:41:f9: be:17:9b:c0:32:29:b0:07:c9:aa:8e:4d:8c:fa:4f: 81:ac:fa:45:dd:0f:b3:7a:03:55:f5:89:36:83:bb: fb:55:67:d4:df:7b:d0:b3:04:dc:47:73:3f:25:55: b5:df:8f:7c:10:ae:9f:59:57:1a:37:33:3c:e6:fb: e7:44:dc:96:c9:f9:d0:ce:66:ab:65:ad:e6:d8:40: 0f:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 6F:C8:57:DF:7F:E5:35:0A:6C:05:A1:F1:13:F3:DC:2E:5F:E0:BE:11 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4a238a62-6a96-43bc-87af-02db641f7109/0/6FC857DF7FE5350A6C05A1F113F3DC2E5FE0BE11.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.159.194.0/23 IPv6: 2407:5440::/32 Signature Algorithm: sha256WithRSAEncryption 7c:97:1d:4a:ec:22:77:4d:18:51:e4:ff:1a:ea:3e:55:73:69: dc:2d:89:2d:5f:31:7e:36:fe:b0:95:ed:de:1e:b7:8f:d5:f2: c8:fe:06:34:d0:2a:c9:66:56:6f:14:71:a2:5a:45:58:ff:dd: c0:16:fa:a7:1d:83:a4:fc:17:ab:cc:a7:50:da:44:35:a3:f9: a7:8c:9b:67:50:90:25:a3:89:33:b0:7c:9c:24:cd:8e:6c:7b: e8:68:a0:cd:23:b4:14:75:b5:77:85:6e:ce:88:44:71:8b:c2: 1d:e5:70:40:57:56:9d:80:d5:d0:93:65:94:ad:58:d3:d0:2b: 90:b0:e5:7a:37:20:6b:a2:17:89:b7:81:cd:34:03:7c:f3:f0: 41:6d:fd:62:3b:92:82:45:1a:ff:f2:5f:74:0f:fd:c2:a0:72: 32:59:e1:b8:a6:6e:a6:8c:f2:0e:68:85:e7:02:32:62:5a:6d: 8a:1d:85:aa:6f:7e:ad:2f:15:fd:64:22:17:a5:31:73:9b:55: 92:d0:41:3d:8d:6b:b8:4b:3f:48:2b:3c:bd:ba:b0:6c:94:6d: 9d:70:21:e5:ad:1a:92:32:da:87:94:c4:f5:25:0a:26:9d:69: b4:ee:00:31:a6:bf:53:9b:48:5f:5a:1a:db:43:b4:61:2f:8f: 9f:d9:2a:29 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUSM8mkEcCdGhOlAUm9BGWfIzk3d0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxMTA3MzI0OVoX DTI1MDMxMDA3Mzc0OVowMzExMC8GA1UEAxMoNkZDODU3REY3RkU1MzUwQTZDMDVB MUYxMTNGM0RDMkU1RkUwQkUxMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM2KLB1sdu3rua49Q5yEKOFFMNa4fdNRGnljIJYzMxsrvk43I7JRzzzeQL9C x6q9SCWG+v8o5JTxEBGMNlbgY9ikFLlOLHpIcGJhg28xaP5cs3Aw/6D28/XQYc4e LGlFW0JwFrIhc6XtbJAyGCUixp78APqEY08juK2295I0UgC6Xm7CNza7FHuTyGX3 w/07IiuhocEb219Wiwx/3Tj7+XJ2InKqsCU/+ZUYZZzbQsKtY0H5vhebwDIpsAfJ qo5NjPpPgaz6Rd0Ps3oDVfWJNoO7+1Vn1N970LME3EdzPyVVtd+PfBCun1lXGjcz POb750Tclsn50M5mq2Wt5thADwsCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFG/IV99/5TUKbAWh8RPz3C5f4L4RMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80YTIzOGE2Mi02YTk2LTQzYmMtODdhZi0wMmRiNjQxZjcxMDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRhMjM4YTYy LTZhOTYtNDNiYy04N2FmLTAyZGI2NDFmNzEwOS8wLzZGQzg1N0RGN0ZFNTM1MEE2 QzA1QTFGMTEzRjNEQzJFNUZFMEJFMTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnn8IwDQQCAAIwBwMFACQHVEAwDQYJKoZIhvcNAQELBQADggEBAHyXHUrsIndN GFHk/xrqPlVzadwtiS1fMX42/rCV7d4et4/V8sj+BjTQKslmVm8UcaJaRVj/3cAW +qcdg6T8F6vMp1DaRDWj+aeMm2dQkCWjiTOwfJwkzY5se+hooM0jtBR1tXeFbs6I RHGLwh3lcEBXVp2A1dCTZZStWNPQK5Cw5Xo3IGuiF4m3gc00A3zz8EFt/WI7koJF Gv/yX3QP/cKgcjJZ4bimbqaM8g5ohecCMmJabYodhapvfq0vFf1kIhelMXObVZLQ QT2Na7hLP0grPL26sGyUbZ1wIeWtGpIy2oeUxPUlCiadabTuADGmv1ObSF9aGttD tGEvj5/ZKik= -----END CERTIFICATE-----Generated at Wed May 8 22:46:39 2024 by rpki-client on console-ams.rpki-client.org