$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7470038419B67CD1743CE4D96953077ECE6928FE.cer File: 7470038419B67CD1743CE4D96953077ECE6928FE.cer (raw, json) Hash identifier: eCaAN40tJHtwwfYURWJqx4twPnt7/Nank17XhEGQQzU= Subject key identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 72070D383470A2B2BF78CBCFBA2D7C86D9B168C7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft caRepository: rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 30 Oct 2023 14:53:38 +0000 Certificate not after: Mon 28 Oct 2024 14:58:38 +0000 Subordinate resources: IP: 103.154.52.0/23 IP: 2406:54c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:07:0d:38:34:70:a2:b2:bf:78:cb:cf:ba:2d:7c:86:d9:b1:68:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 30 14:53:38 2023 GMT Not After : Oct 28 14:58:38 2024 GMT Subject: CN=7470038419B67CD1743CE4D96953077ECE6928FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:42:6e:93:e1:f5:6c:04:be:cf:1a:ae:12:a7: 3b:c2:ff:ef:93:6a:f5:2c:f6:bc:77:55:a5:26:e8: 95:62:89:db:97:bf:63:09:ca:40:39:90:ee:f9:36: 75:06:42:69:4f:c9:9b:79:13:70:e9:32:a9:6b:d6: 27:25:bc:ff:51:8f:7a:25:9a:b4:b6:78:2f:14:0d: aa:e2:1e:0e:a8:4e:16:d7:c1:14:58:8a:7f:67:25: fd:cb:58:71:89:ec:94:35:d0:77:1a:e1:c7:f6:5d: 22:c8:34:97:91:07:ea:b4:ab:0a:c6:5e:39:6d:d2: f5:20:12:96:1f:2e:2f:a0:83:2f:59:4e:56:82:7d: b3:92:61:3c:4e:62:05:8b:71:17:6d:52:c8:e5:89: 12:d4:19:5b:e2:69:6d:44:6b:da:18:3f:4a:73:ef: 12:04:83:6a:2d:70:9e:6a:6d:96:ec:70:b3:e7:95: 62:be:13:61:3d:78:46:1d:12:b2:f7:13:7e:ab:be: 40:fa:25:d4:6b:d9:79:0b:7d:8b:ee:58:44:ae:cc: 0c:29:87:4a:69:c9:88:f5:ef:d1:56:32:5f:e5:85: ee:a0:31:4d:e1:ae:c4:1f:4a:a3:31:0b:a5:d4:c0: 54:da:52:64:43:4b:1c:27:96:90:bc:c0:c8:8c:bc: 2d:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 74:70:03:84:19:B6:7C:D1:74:3C:E4:D9:69:53:07:7E:CE:69:28:FE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0c765d51-b0b1-435d-a66b-604c6e5d29ef/0/7470038419B67CD1743CE4D96953077ECE6928FE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.154.52.0/23 IPv6: 2406:54c0::/32 Signature Algorithm: sha256WithRSAEncryption 07:65:74:4c:b2:8d:47:3a:cf:7c:d5:a9:ba:e0:34:b1:5a:3a: f2:f0:df:f2:6a:69:e6:d9:cf:56:76:ee:f0:d2:c5:44:e5:67: e7:0f:8c:68:56:9c:d1:6e:be:f3:b3:e5:38:ed:46:17:5a:09: 42:fe:04:40:d1:e6:b4:d2:c5:54:5b:5c:bf:8b:6b:6a:01:55: ea:7e:ec:86:e2:04:fd:22:7d:b3:89:cc:f7:36:44:47:a2:db: 26:1e:3a:15:15:8d:11:32:33:05:9c:79:2d:fe:aa:7e:46:da: 54:58:c3:9f:ba:cf:84:66:40:9c:30:6c:cf:dd:5f:e5:e0:4e: 5d:cd:55:cf:fa:5e:ac:f6:da:6e:c9:e4:59:ae:5d:63:10:03: 10:91:b1:a0:a8:0d:8a:13:3a:4f:1d:e0:3c:4e:81:ab:f9:6e: d8:00:25:b3:d2:4c:be:d5:af:ea:8b:57:56:12:84:34:cd:2a: d9:b2:f9:de:db:3a:1c:a7:ea:4c:04:c3:6c:92:c0:d1:6a:61: 76:17:2c:97:cb:6e:38:f3:41:73:ca:2d:55:8e:8a:84:93:de: 24:73:6d:bf:6d:99:4a:6d:13:2a:e4:e7:05:fe:f5:89:68:05: 40:df:f2:19:64:28:5a:03:31:eb:fb:ae:18:2a:d8:f1:21:dd: 1a:bd:26:97 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUcgcNODRworK/eMvPui18htmxaMcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAzMDE0NTMzOFoX DTI0MTAyODE0NTgzOFowMzExMC8GA1UEAxMoNzQ3MDAzODQxOUI2N0NEMTc0M0NF NEQ5Njk1MzA3N0VDRTY5MjhGRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJ1CbpPh9WwEvs8arhKnO8L/75Nq9Sz2vHdVpSbolWKJ25e/YwnKQDmQ7vk2 dQZCaU/Jm3kTcOkyqWvWJyW8/1GPeiWatLZ4LxQNquIeDqhOFtfBFFiKf2cl/ctY cYnslDXQdxrhx/ZdIsg0l5EH6rSrCsZeOW3S9SASlh8uL6CDL1lOVoJ9s5JhPE5i BYtxF21SyOWJEtQZW+JpbURr2hg/SnPvEgSDai1wnmptluxws+eVYr4TYT14Rh0S svcTfqu+QPol1GvZeQt9i+5YRK7MDCmHSmnJiPXv0VYyX+WF7qAxTeGuxB9KozEL pdTAVNpSZENLHCeWkLzAyIy8LdcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHRwA4QZtnzRdDzk2WlTB37OaSj+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wYzc2NWQ1MS1iMGIxLTQzNWQtYTY2Yi02MDRjNmU1ZDI5ZWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBjNzY1ZDUx LWIwYjEtNDM1ZC1hNjZiLTYwNGM2ZTVkMjllZi8wLzc0NzAwMzg0MTlCNjdDRDE3 NDNDRTREOTY5NTMwNzdFQ0U2OTI4RkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnmjQwDQQCAAIwBwMFACQGVMAwDQYJKoZIhvcNAQELBQADggEBAAdldEyyjUc6 z3zVqbrgNLFaOvLw3/JqaebZz1Z27vDSxUTlZ+cPjGhWnNFuvvOz5TjtRhdaCUL+ BEDR5rTSxVRbXL+La2oBVep+7IbiBP0ifbOJzPc2REei2yYeOhUVjREyMwWceS3+ qn5G2lRYw5+6z4RmQJwwbM/dX+XgTl3NVc/6Xqz22m7J5FmuXWMQAxCRsaCoDYoT Ok8d4DxOgav5btgAJbPSTL7Vr+qLV1YShDTNKtmy+d7bOhyn6kwEw2ySwNFqYXYX LJfLbjjzQXPKLVWOioST3iRzbb9tmUptEyrk5wX+9YloBUDf8hlkKFoDMev7rhgq 2PEh3Rq9Jpc= -----END CERTIFICATE-----Generated at Wed May 8 15:17:38 2024 by rpki-client on console-fra.rpki-client.org