$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/73B96F5AC43A4212760D6629FB36B21B2E801D90.cer File: 73B96F5AC43A4212760D6629FB36B21B2E801D90.cer (raw, json) Hash identifier: LoR4fHFFgL4LgcAHjOhLuO7J/cfki0nYu1V7yuCMoxM= Subject key identifier: 73:B9:6F:5A:C4:3A:42:12:76:0D:66:29:FB:36:B2:1B:2E:80:1D:90 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6495E43CCB9C0E846A79DBBEC54E4C945C0889E1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6cbea81d-85ac-40a5-a7f5-3fa362b17bcb/0/73B96F5AC43A4212760D6629FB36B21B2E801D90.mft caRepository: rsync://repo-rpki.idnic.net/repo/6cbea81d-85ac-40a5-a7f5-3fa362b17bcb/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 05 Sep 2023 04:48:04 +0000 Certificate not after: Tue 03 Sep 2024 04:53:04 +0000 Subordinate resources: IP: 103.174.232.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:95:e4:3c:cb:9c:0e:84:6a:79:db:be:c5:4e:4c:94:5c:08:89:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 5 04:48:04 2023 GMT Not After : Sep 3 04:53:04 2024 GMT Subject: CN=73B96F5AC43A4212760D6629FB36B21B2E801D90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:4d:fc:e8:34:96:22:f4:e4:33:70:88:eb:c2: 7f:cc:f9:38:20:ae:7e:d3:29:71:18:88:84:85:f6: ca:5e:02:6a:c0:df:94:f5:26:d7:52:2c:5c:66:3f: 32:69:e1:30:ca:60:ef:a3:84:d6:1e:94:cb:bc:14: 41:0b:8d:68:63:4b:d9:75:89:6d:51:b9:aa:b6:a3: ad:81:29:d0:7e:14:b9:a9:91:19:43:ea:0a:1e:81: d5:57:61:8c:71:c1:74:8c:79:33:49:e8:ce:38:c7: ef:68:86:3b:0b:79:4c:77:f7:1f:be:7b:bf:8c:cc: 2f:b3:65:f3:48:3d:68:9f:5d:f5:63:cd:03:6d:27: 92:66:14:13:af:54:6c:07:06:b6:ab:52:15:2c:02: d9:cc:f8:ce:a4:09:33:8f:d9:fb:d4:ec:18:61:41: fa:d1:f8:3a:0d:bd:e5:78:57:38:e4:e1:14:98:bb: 03:52:7b:bc:17:f4:30:ac:b2:a8:70:c6:ca:ee:b1: 6b:d9:44:4e:a4:9b:a4:5c:23:a1:69:f0:4e:a0:93: 96:5e:a7:1d:35:91:b4:32:bd:d0:3e:4d:c4:ea:0b: e4:61:75:21:aa:63:bc:12:5d:a0:78:67:b7:0e:f6: 2e:0c:06:2b:1f:79:c0:23:a5:83:59:50:9c:63:1f: 86:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 73:B9:6F:5A:C4:3A:42:12:76:0D:66:29:FB:36:B2:1B:2E:80:1D:90 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6cbea81d-85ac-40a5-a7f5-3fa362b17bcb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6cbea81d-85ac-40a5-a7f5-3fa362b17bcb/0/73B96F5AC43A4212760D6629FB36B21B2E801D90.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.232.0/23 Signature Algorithm: sha256WithRSAEncryption 0b:54:75:f6:a9:96:c4:e6:ea:36:31:63:1b:80:f3:f9:88:e3: 59:a2:cc:1e:cc:71:70:4f:89:71:19:19:79:44:21:ce:bc:53: 6c:f1:01:0d:74:3f:74:53:84:8e:73:54:fb:6f:33:9f:8a:df: 09:fe:15:f5:24:dd:1e:13:e6:1f:34:3f:17:79:25:e3:1e:9e: 7a:6d:4d:78:b5:c0:d1:42:f5:a0:85:f8:80:cd:fe:c7:e6:4f: a4:ae:03:ec:04:24:9b:14:7d:9e:69:99:25:8d:07:e1:24:7f: 52:43:80:95:6a:48:bd:36:f4:20:d7:2f:37:f4:37:6e:9c:30: 94:f7:10:5c:2d:d3:1e:10:cf:bb:3c:2b:d2:7c:f1:95:20:c9: 24:d9:39:ff:00:b4:d8:e9:10:ea:21:63:22:f0:f6:64:f0:41: ac:3d:b2:6e:3e:a4:ee:4f:a0:27:2f:8e:41:e0:5d:fd:be:d7: 9f:ee:7b:66:e9:5e:b3:0d:71:aa:24:de:05:9d:94:02:35:04: 97:5c:63:a3:8f:4d:b2:a7:ae:ae:5d:0c:1a:48:4f:a8:8f:b8: 6f:2d:1d:b5:25:7a:20:fa:5c:0c:31:30:c8:2c:40:7b:4f:ce: b4:76:4f:7d:e4:b6:6e:96:56:3d:79:87:b1:23:e4:d9:5f:3e: 3a:d7:2c:92 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZJXkPMucDoRqedu+xU5MlFwIieEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwNTA0NDgwNFoX DTI0MDkwMzA0NTMwNFowMzExMC8GA1UEAxMoNzNCOTZGNUFDNDNBNDIxMjc2MEQ2 NjI5RkIzNkIyMUIyRTgwMUQ5MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMdN/Og0liL05DNwiOvCf8z5OCCuftMpcRiIhIX2yl4CasDflPUm11IsXGY/ MmnhMMpg76OE1h6Uy7wUQQuNaGNL2XWJbVG5qrajrYEp0H4UuamRGUPqCh6B1Vdh jHHBdIx5M0nozjjH72iGOwt5THf3H757v4zML7Nl80g9aJ9d9WPNA20nkmYUE69U bAcGtqtSFSwC2cz4zqQJM4/Z+9TsGGFB+tH4Og295XhXOOThFJi7A1J7vBf0MKyy qHDGyu6xa9lETqSbpFwjoWnwTqCTll6nHTWRtDK90D5NxOoL5GF1IapjvBJdoHhn tw72LgwGKx95wCOlg1lQnGMfhmcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHO5b1rEOkISdg1mKfs2shsugB2QMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82Y2JlYTgxZC04NWFjLTQwYTUtYTdmNS0zZmEzNjJiMTdiY2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjYmVhODFk LTg1YWMtNDBhNS1hN2Y1LTNmYTM2MmIxN2JjYi8wLzczQjk2RjVBQzQzQTQyMTI3 NjBENjYyOUZCMzZCMjFCMkU4MDFEOTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrugwDQYJKoZIhvcNAQELBQADggEBAAtUdfaplsTm6jYxYxuA8/mI41mizB7M cXBPiXEZGXlEIc68U2zxAQ10P3RThI5zVPtvM5+K3wn+FfUk3R4T5h80Pxd5JeMe nnptTXi1wNFC9aCF+IDN/sfmT6SuA+wEJJsUfZ5pmSWNB+Ekf1JDgJVqSL029CDX Lzf0N26cMJT3EFwt0x4Qz7s8K9J88ZUgySTZOf8AtNjpEOohYyLw9mTwQaw9sm4+ pO5PoCcvjkHgXf2+15/ue2bpXrMNcaok3gWdlAI1BJdcY6OPTbKnrq5dDBpIT6iP uG8tHbUleiD6XAwxMMgsQHtPzrR2T33ktm6WVj15h7Ej5NlfPjrXLJI= -----END CERTIFICATE-----Generated at Wed May 8 17:45:19 2024 by rpki-client on console-ams.rpki-client.org