$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/700A46F0C48E784E8CBCBA7B27E4474F86189B0C.cer File: 700A46F0C48E784E8CBCBA7B27E4474F86189B0C.cer (raw, json) Hash identifier: V5I/nXdxnT3iD27KVanqFcKVqNWQbvpZ+9NBELlj5SE= Subject key identifier: 70:0A:46:F0:C4:8E:78:4E:8C:BC:BA:7B:27:E4:47:4F:86:18:9B:0C Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2C1989A4D5E6355332467DEEE1D2646E222845 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/df8a315e-16f1-4f21-9bc0-269d5be73d60/0/700A46F0C48E784E8CBCBA7B27E4474F86189B0C.mft caRepository: rsync://repo-rpki.idnic.net/repo/df8a315e-16f1-4f21-9bc0-269d5be73d60/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 18 Dec 2023 11:45:45 +0000 Certificate not after: Mon 16 Dec 2024 11:50:45 +0000 Subordinate resources: IP: 103.126.238.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:19:89:a4:d5:e6:35:53:32:46:7d:ee:e1:d2:64:6e:22:28:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 18 11:45:45 2023 GMT Not After : Dec 16 11:50:45 2024 GMT Subject: CN=700A46F0C48E784E8CBCBA7B27E4474F86189B0C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f9:f6:8b:07:2f:19:be:a0:f9:59:50:b3:d6: fc:ce:66:89:c2:65:e5:16:e6:3b:65:08:43:2f:ad: 08:a5:b1:fc:4f:63:79:9b:e4:ce:6a:8e:ae:cf:85: 61:70:fd:e8:da:b1:11:d0:1b:b2:32:07:63:d5:28: 82:2b:e8:50:59:f3:a0:e3:95:40:ba:1c:02:69:6c: 05:a6:b2:9d:c1:74:80:db:61:81:96:fe:cf:20:d7: cf:e5:03:fb:ee:98:cb:0f:e2:0d:53:c9:23:ff:3e: fb:8e:76:88:37:c3:be:80:f6:51:ef:fa:73:db:f6: b3:ea:1f:8f:d4:57:b6:b9:3b:5f:49:38:2a:f5:aa: da:4c:50:24:c8:6e:df:c7:e1:48:5b:ca:14:27:a8: 84:8a:a9:2f:88:70:41:47:ac:35:03:79:3a:43:e0: 16:ab:30:ec:d2:e1:b4:28:1e:6c:2e:2f:1d:7c:9b: 84:2d:02:8c:ec:c1:3f:d6:74:a1:9a:a5:ca:1b:c5: ba:b2:3b:ee:68:c4:33:a3:27:54:72:56:42:38:e9: 2f:9c:f9:ab:4f:c4:5b:96:d0:cc:5a:6e:69:b6:e8: 6c:54:16:a3:a1:2e:33:9e:cf:23:c9:a7:04:e9:07: 6c:8e:03:ff:dc:0c:90:35:06:a6:dd:ed:74:1f:e4: bf:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 70:0A:46:F0:C4:8E:78:4E:8C:BC:BA:7B:27:E4:47:4F:86:18:9B:0C X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/df8a315e-16f1-4f21-9bc0-269d5be73d60/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/df8a315e-16f1-4f21-9bc0-269d5be73d60/0/700A46F0C48E784E8CBCBA7B27E4474F86189B0C.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.126.238.0/24 Signature Algorithm: sha256WithRSAEncryption 52:04:04:0d:84:c6:55:3a:3b:fe:f3:4f:a1:d8:49:c4:66:06: c0:79:c7:ec:3c:92:e8:11:f8:b2:d1:ea:f4:44:cc:6d:fa:d9: d9:f5:fe:0c:a7:75:94:95:a8:38:b8:07:5e:5b:1a:f2:b5:7e: c5:97:0a:21:6a:94:df:df:1c:b9:57:b1:d2:e6:aa:51:06:d0: 97:9d:e3:93:37:9b:c7:3a:71:ba:32:48:5a:4d:30:7a:58:a8: a6:0b:85:ec:10:76:7e:2e:dc:c4:5a:44:02:48:ab:e2:27:16: cd:c7:68:88:8b:d1:64:43:46:68:6f:0e:93:b2:56:a6:94:54: 8f:e0:e3:32:85:1e:92:e7:d7:7d:f4:36:8d:80:b0:88:de:89: 9a:93:87:f4:8b:9f:5c:52:b9:c1:d6:df:7f:cd:a2:42:6d:2a: e2:a7:15:6e:de:10:51:d4:cd:af:c1:26:8a:4b:62:54:0d:48: f1:a2:f0:fe:8c:8c:03:65:5a:fd:72:be:18:36:4d:35:dc:a9: 84:7b:a9:f1:65:6f:13:0a:9d:6f:d5:af:53:d8:3c:83:8d:83: 93:e4:71:9f:68:af:58:4e:ff:d5:e1:32:be:58:e5:6d:d2:3b: bc:f2:a8:85:9a:5f:47:78:63:22:38:d9:5a:0e:64:aa:d9:20: 45:eb:11:a7 -----BEGIN CERTIFICATE----- MIIFxDCCBKygAwIBAgITLBmJpNXmNVMyRn3u4dJkbiIoRTANBgkqhkiG9w0BAQsF ADBKMRUwEwYDVQQDEwxBOTE4NjIxNDAwMDAxMTAvBgNVBAUTKEJBOEY3N0QyMUU1 OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIwHhcNMjMxMjE4MTE0NTQ1WhcN MjQxMjE2MTE1MDQ1WjAzMTEwLwYDVQQDEyg3MDBBNDZGMEM0OEU3ODRFOENCQ0JB N0IyN0U0NDc0Rjg2MTg5QjBDMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0fn2iwcvGb6g+VlQs9b8zmaJwmXlFuY7ZQhDL60IpbH8T2N5m+TOao6uz4Vh cP3o2rER0BuyMgdj1SiCK+hQWfOg45VAuhwCaWwFprKdwXSA22GBlv7PINfP5QP7 7pjLD+INU8kj/z77jnaIN8O+gPZR7/pz2/az6h+P1Fe2uTtfSTgq9araTFAkyG7f x+FIW8oUJ6iEiqkviHBBR6w1A3k6Q+AWqzDs0uG0KB5sLi8dfJuELQKM7ME/1nSh mqXKG8W6sjvuaMQzoydUclZCOOkvnPmrT8RbltDMWm5ptuhsVBajoS4zns8jyacE 6QdsjgP/3AyQNQam3e10H+S/jwIDAQABo4ICuDCCArQwDwYDVR0TAQH/BAUwAwEB /zAdBgNVHQ4EFgQUcApG8MSOeE6MvLp7J+RHT4YYmwwwHwYDVR0jBBgwFoAUuo93 0h5Y/pyTmmtw4lhWF+GDN2swDgYDVR0PAQH/BAQDAgEGMGkGA1UdHwRiMGAwXqBc oFqGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL0lETklDLUlELzIv QkE4Rjc3RDIxRTU4RkU5QzkzOUE2QjcwRTI1ODU2MTdFMTgzMzc2Qi5jcmwwfgYI KwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2kuYXBuaWMubmV0 L3JlcG9zaXRvcnkvQjUyN0VGNTgxRDY2MTFFMkJCNDY4RjdDNzJGRDFGRjIvdW85 MzBoNVlfcHlUbW10dzRsaFdGLUdETjJzLmNlcjCCASkGCCsGAQUFBwELBIIBGzCC ARcwUwYIKwYBBQUHMAWGR3JzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L2RmOGEzMTVlLTE2ZjEtNGYyMS05YmMwLTI2OWQ1YmU3M2Q2MC8wMIGABggrBgEF BQcwCoZ0cnN5bmM6Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vZGY4YTMxNWUt MTZmMS00ZjIxLTliYzAtMjY5ZDViZTczZDYwLzAvNzAwQTQ2RjBDNDhFNzg0RThD QkNCQTdCMjdFNDQ3NEY4NjE4OUIwQy5tZnQwPQYIKwYBBQUHMA2GMWh0dHBzOi8v cmVwby1ycGtpLmlkbmljLm5ldC9ycmRwL25vdGlmaWNhdGlvbi54bWwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AGd+7jANBgkqhkiG9w0BAQsFAAOCAQEAUgQEDYTGVTo7/vNPodhJxGYGwHnH7DyS 6BH4stHq9ETMbfrZ2fX+DKd1lJWoOLgHXlsa8rV+xZcKIWqU398cuVex0uaqUQbQ l53jkzebxzpxujJIWk0weliopguF7BB2fi7cxFpEAkir4icWzcdoiIvRZENGaG8O k7JWppRUj+DjMoUekufXffQ2jYCwiN6JmpOH9IufXFK5wdbff82iQm0q4qcVbt4Q UdTNr8EmiktiVA1I8aLw/oyMA2Va/XK+GDZNNdyphHup8WVvEwqdb9WvU9g8g42D k+Rxn2ivWE7/1eEyvljlbdI7vPKohZpfR3hjIjjZWg5kqtkgResRpw== -----END CERTIFICATE-----Generated at Wed May 8 17:45:19 2024 by rpki-client on console-ams.rpki-client.org