$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.cer File: 71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.cer (raw, json) Hash identifier: jCm4/Y590gotGU7Fwn2hHWU8fZVllHTIhegPnui1q64= Subject key identifier: 71:FC:3F:7B:27:22:F6:A1:5C:55:7F:63:F8:F4:95:A9:CD:BC:A9:D7 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7915FC6791F418CE42FDC4BEE6167A1C642B3A38 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.mft caRepository: rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 04:59:22 +0000 Certificate not after: Mon 29 Jul 2024 05:04:22 +0000 Subordinate resources: IP: 103.147.82.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:15:fc:67:91:f4:18:ce:42:fd:c4:be:e6:16:7a:1c:64:2b:3a:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 04:59:22 2023 GMT Not After : Jul 29 05:04:22 2024 GMT Subject: CN=71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:11:0c:b8:8a:48:2a:3e:7e:33:71:95:52:a7: 40:3b:eb:1d:c0:83:1a:d6:21:2b:f8:81:16:04:ae: 28:02:dc:c0:f4:7a:84:0f:a6:8c:b2:1f:ee:9f:b3: e5:91:90:10:d8:d1:fc:88:06:5d:c1:69:a8:0d:6d: 34:0e:db:28:30:b3:f3:39:a4:2b:73:4b:c2:74:a7: 56:5a:84:7a:34:af:dd:86:ff:64:c2:a2:45:7a:02: 5c:54:23:93:5e:d3:ed:c2:82:9b:be:c1:01:e5:a2: fb:cf:fd:8b:f6:e1:62:da:10:ae:bc:2e:11:aa:08: f3:6b:3c:6c:2e:9c:83:96:58:db:bd:b9:fb:d5:ff: 4f:3b:c5:6a:8c:28:c7:11:ef:a7:1f:bc:bf:d2:8d: b8:21:42:29:e7:f2:ad:3e:e6:ca:a3:62:f4:28:94: 08:67:5b:39:c9:96:f7:44:13:bd:83:3a:e3:91:60: 47:4d:ad:3f:42:ce:07:95:60:e1:48:3d:cd:c3:43: 52:a0:73:6d:83:e7:99:33:75:9d:6b:3b:53:08:7f: 67:1f:6d:18:51:97:85:3f:4a:9a:62:73:f1:84:c2: 7d:05:27:e3:6f:53:78:31:1f:4f:38:53:c8:15:17: c4:6d:f0:67:3d:8d:b0:67:eb:26:c4:44:b4:b0:b7: 68:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 71:FC:3F:7B:27:22:F6:A1:5C:55:7F:63:F8:F4:95:A9:CD:BC:A9:D7 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/eaa5ac65-6071-46e2-bb9d-d770d117c4b4/0/71FC3F7B2722F6A15C557F63F8F495A9CDBCA9D7.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.82.0/23 Signature Algorithm: sha256WithRSAEncryption 90:44:80:ae:be:1e:46:56:a2:af:58:8e:29:56:66:1e:b7:96: 59:7f:31:50:8e:b7:94:ac:5b:eb:01:6f:96:97:00:db:f3:d1: b5:0b:a4:60:5a:60:05:bf:d7:4d:77:dd:3a:a9:ee:c9:d5:42: 8a:4e:68:bb:29:a4:ef:9a:a2:fb:8d:de:6a:83:9e:8a:ce:d9: ee:c9:9e:c2:f3:53:06:ad:16:a4:cd:92:dc:01:a9:af:c7:16: 07:53:bf:32:92:d7:50:47:88:73:5d:d3:e9:94:a4:a7:75:62: 13:2a:58:e1:ea:56:c1:56:b4:75:5b:1c:d9:cb:3e:d7:76:37: 16:40:e9:eb:c3:43:18:9d:7d:06:7f:27:d4:2d:97:b8:0a:79: 4d:fb:83:cb:f2:fa:f9:5a:30:fe:43:f0:51:9e:7c:7c:1d:f9: f9:2f:e5:e0:93:3a:b1:ca:75:5b:55:38:a3:51:24:9e:67:e3: 09:be:e7:37:63:60:35:13:da:20:12:c5:72:1f:bd:a3:25:c7: aa:72:c4:b3:f0:f6:9d:3d:72:c4:11:08:bd:7c:94:e5:7b:33: 5b:5f:79:23:5b:5f:55:a3:f6:fc:8d:6d:be:f3:9c:3c:59:7c: ee:6f:9f:e6:6d:78:e7:31:47:fb:55:38:e5:00:41:d2:0b:85: 6c:10:95:e4 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUeRX8Z5H0GM5C/cS+5hZ6HGQrOjgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA0NTkyMloX DTI0MDcyOTA1MDQyMlowMzExMC8GA1UEAxMoNzFGQzNGN0IyNzIyRjZBMTVDNTU3 RjYzRjhGNDk1QTlDREJDQTlENzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMgRDLiKSCo+fjNxlVKnQDvrHcCDGtYhK/iBFgSuKALcwPR6hA+mjLIf7p+z 5ZGQENjR/IgGXcFpqA1tNA7bKDCz8zmkK3NLwnSnVlqEejSv3Yb/ZMKiRXoCXFQj k17T7cKCm77BAeWi+8/9i/bhYtoQrrwuEaoI82s8bC6cg5ZY2725+9X/TzvFaowo xxHvpx+8v9KNuCFCKefyrT7myqNi9CiUCGdbOcmW90QTvYM645FgR02tP0LOB5Vg 4Ug9zcNDUqBzbYPnmTN1nWs7Uwh/Zx9tGFGXhT9KmmJz8YTCfQUn429TeDEfTzhT yBUXxG3wZz2NsGfrJsREtLC3aOMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHH8P3snIvahXFV/Y/j0lanNvKnXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9lYWE1YWM2NS02MDcxLTQ2ZTItYmI5ZC1kNzcwZDExN2M0YjQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2VhYTVhYzY1 LTYwNzEtNDZlMi1iYjlkLWQ3NzBkMTE3YzRiNC8wLzcxRkMzRjdCMjcyMkY2QTE1 QzU1N0Y2M0Y4RjQ5NUE5Q0RCQ0E5RDcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnk1IwDQYJKoZIhvcNAQELBQADggEBAJBEgK6+HkZWoq9YjilWZh63lll/MVCO t5SsW+sBb5aXANvz0bULpGBaYAW/10133Tqp7snVQopOaLsppO+aovuN3mqDnorO 2e7JnsLzUwatFqTNktwBqa/HFgdTvzKS11BHiHNd0+mUpKd1YhMqWOHqVsFWtHVb HNnLPtd2NxZA6evDQxidfQZ/J9Qtl7gKeU37g8vy+vlaMP5D8FGefHwd+fkv5eCT OrHKdVtVOKNRJJ5n4wm+5zdjYDUT2iASxXIfvaMlx6pyxLPw9p09csQRCL18lOV7 M1tfeSNbX1Wj9vyNbb7znDxZfO5vn+ZteOcxR/tVOOUAQdILhWwQleQ= -----END CERTIFICATE-----Generated at Wed May 8 09:50:31 2024 by rpki-client on console-fra.rpki-client.org