$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/71C1EFD5DFDE20418A49070671B01D675F9A8917.cer File: 71C1EFD5DFDE20418A49070671B01D675F9A8917.cer (raw, json) Hash identifier: jVLdNk2dV+pocHvORrLFjufHvVy1bGxzfgtYSFWsMss= Subject key identifier: 71:C1:EF:D5:DF:DE:20:41:8A:49:07:06:71:B0:1D:67:5F:9A:89:17 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 22A657FF0F96915AD64BB84A3DA77731F00C3693 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/05eab442-7480-4581-81dd-23a200614382/0/71C1EFD5DFDE20418A49070671B01D675F9A8917.mft caRepository: rsync://repo-rpki.idnic.net/repo/05eab442-7480-4581-81dd-23a200614382/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 29 Nov 2023 21:20:42 +0000 Certificate not after: Wed 27 Nov 2024 21:25:42 +0000 Subordinate resources: IP: 103.179.216.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:a6:57:ff:0f:96:91:5a:d6:4b:b8:4a:3d:a7:77:31:f0:0c:36:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 29 21:20:42 2023 GMT Not After : Nov 27 21:25:42 2024 GMT Subject: CN=71C1EFD5DFDE20418A49070671B01D675F9A8917 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:06:82:10:81:3e:77:35:5a:be:16:fc:db:34: e7:d8:69:44:15:cb:72:1e:f2:98:d3:87:38:18:05: f0:f7:32:54:67:e1:18:bb:81:20:f6:b3:5e:b9:71: 5e:b8:31:c7:0f:f6:c4:c8:d0:5f:bd:01:f6:85:7e: b1:5c:64:12:55:96:78:d8:8b:90:df:3c:a2:57:dc: 2e:26:43:10:f8:2f:94:79:81:49:58:f3:c8:92:3f: c7:a5:f2:e8:97:1d:0e:eb:f1:f8:75:24:67:d7:c9: d4:f9:35:de:be:c3:df:2d:b2:68:6e:0c:36:ef:40: 74:d3:b1:af:f5:ab:a7:14:10:ef:89:5f:12:3b:ee: 66:82:d8:5e:9b:b5:30:22:96:f2:66:47:98:cc:4a: 4b:2b:4e:49:b8:de:9d:6d:39:54:d1:3a:74:47:14: e9:bf:ba:4f:b9:96:70:2c:1d:bb:00:f8:96:a9:4b: b8:2f:61:59:a1:78:90:ad:0b:eb:dc:65:77:00:69: 19:97:96:20:83:ac:29:3c:27:ce:5e:f6:e5:67:72: 4c:e2:7b:38:f6:74:9e:f4:b7:84:3e:c0:11:4f:87: a5:4a:4d:73:ab:d1:86:51:b5:fb:f0:02:73:39:43: 04:e7:0c:62:5f:36:c3:fc:f5:3d:93:2e:c1:d6:b1: d9:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 71:C1:EF:D5:DF:DE:20:41:8A:49:07:06:71:B0:1D:67:5F:9A:89:17 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/05eab442-7480-4581-81dd-23a200614382/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/05eab442-7480-4581-81dd-23a200614382/0/71C1EFD5DFDE20418A49070671B01D675F9A8917.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.216.0/23 Signature Algorithm: sha256WithRSAEncryption 02:4b:77:7b:3a:8c:08:5f:a2:ff:99:83:03:69:99:83:72:9c: 4d:ad:9b:3b:df:42:df:ea:4a:2f:b7:04:b4:3c:18:c3:94:e8: ef:00:11:ad:44:ad:f4:e2:95:fd:60:90:75:b2:d4:6f:d0:49: 4b:81:a2:19:10:d5:43:a2:71:64:db:38:76:a5:47:5e:b3:42: 06:b4:38:67:6a:8f:15:d3:63:aa:73:0f:b7:cf:27:9c:ed:b6: f2:c6:ec:ae:57:2b:9a:e8:fd:10:f7:c4:c7:3e:5f:d2:e3:0b: cf:84:35:e6:0a:16:3d:9a:76:8e:b9:12:ea:fb:f4:ca:e1:c6: 18:d2:b5:a3:19:0f:49:82:4b:16:eb:ad:e4:d2:f8:d0:b2:e9: be:4c:c8:a3:e5:2b:34:1a:3f:83:5b:cd:b5:e3:f0:e2:57:7c: 1d:7f:76:82:17:c3:96:05:4e:c7:4d:bf:6c:fb:cf:d8:04:ee: 6f:b7:8d:82:4e:e0:57:2b:8a:3a:e3:94:9e:db:52:53:5b:12: d5:4e:99:ca:95:af:11:04:1d:7b:a7:93:31:6d:63:e3:da:84: 2a:10:38:b1:e0:e9:42:31:8b:f7:b5:1e:31:3d:d9:06:64:fe: 97:a7:c5:57:09:52:24:85:d6:2e:aa:ac:7e:d4:57:27:bc:a1: ed:43:d3:b9 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUIqZX/w+WkVrWS7hKPad3MfAMNpMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyOTIxMjA0MloX DTI0MTEyNzIxMjU0MlowMzExMC8GA1UEAxMoNzFDMUVGRDVERkRFMjA0MThBNDkw NzA2NzFCMDFENjc1RjlBODkxNzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANAGghCBPnc1Wr4W/Ns059hpRBXLch7ymNOHOBgF8PcyVGfhGLuBIPazXrlx Xrgxxw/2xMjQX70B9oV+sVxkElWWeNiLkN88olfcLiZDEPgvlHmBSVjzyJI/x6Xy 6JcdDuvx+HUkZ9fJ1Pk13r7D3y2yaG4MNu9AdNOxr/WrpxQQ74lfEjvuZoLYXpu1 MCKW8mZHmMxKSytOSbjenW05VNE6dEcU6b+6T7mWcCwduwD4lqlLuC9hWaF4kK0L 69xldwBpGZeWIIOsKTwnzl725WdyTOJ7OPZ0nvS3hD7AEU+HpUpNc6vRhlG1+/AC czlDBOcMYl82w/z1PZMuwdax2cECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHHB79Xf3iBBikkHBnGwHWdfmokXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNWVhYjQ0Mi03NDgwLTQ1ODEtODFkZC0yM2EyMDA2MTQzODIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA1ZWFiNDQy LTc0ODAtNDU4MS04MWRkLTIzYTIwMDYxNDM4Mi8wLzcxQzFFRkQ1REZERTIwNDE4 QTQ5MDcwNjcxQjAxRDY3NUY5QTg5MTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFns9gwDQYJKoZIhvcNAQELBQADggEBAAJLd3s6jAhfov+ZgwNpmYNynE2tmzvf Qt/qSi+3BLQ8GMOU6O8AEa1ErfTilf1gkHWy1G/QSUuBohkQ1UOicWTbOHalR16z Qga0OGdqjxXTY6pzD7fPJ5zttvLG7K5XK5ro/RD3xMc+X9LjC8+ENeYKFj2ado65 Eur79MrhxhjStaMZD0mCSxbrreTS+NCy6b5MyKPlKzQaP4NbzbXj8OJXfB1/doIX w5YFTsdNv2z7z9gE7m+3jYJO4FcrijrjlJ7bUlNbEtVOmcqVrxEEHXunkzFtY+Pa hCoQOLHg6UIxi/e1HjE92QZk/penxVcJUiSF1i6qrH7UVye8oe1D07k= -----END CERTIFICATE-----Generated at Thu May 9 00:37:01 2024 by rpki-client on console-fra.rpki-client.org