$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/7B9F50722EE5D5DB8DF552ED32CB8764B64FA902.cer File: 7B9F50722EE5D5DB8DF552ED32CB8764B64FA902.cer (raw, json) Hash identifier: 2LTC9U9SfK36yl63CDY/7T5VAr+MCvNETvtJvv8Munk= Subject key identifier: 7B:9F:50:72:2E:E5:D5:DB:8D:F5:52:ED:32:CB:87:64:B6:4F:A9:02 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 314B3238D1AA7AF5BF63AAF0ACC24C9C43497A7E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ce3d8c03-17bb-4cab-8526-118f587dcc09/0/7B9F50722EE5D5DB8DF552ED32CB8764B64FA902.mft caRepository: rsync://repo-rpki.idnic.net/repo/ce3d8c03-17bb-4cab-8526-118f587dcc09/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 29 Nov 2023 03:40:06 +0000 Certificate not after: Wed 27 Nov 2024 03:45:06 +0000 Subordinate resources: IP: 103.183.100.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:4b:32:38:d1:aa:7a:f5:bf:63:aa:f0:ac:c2:4c:9c:43:49:7a:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 29 03:40:06 2023 GMT Not After : Nov 27 03:45:06 2024 GMT Subject: CN=7B9F50722EE5D5DB8DF552ED32CB8764B64FA902 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:82:22:a6:8d:21:27:0a:ab:6b:0a:11:71:0a: 86:ad:79:5a:c0:69:8b:cc:d7:37:75:34:8f:cb:d2: a3:74:ae:62:e1:00:13:4b:cb:d5:98:00:9e:57:73: a0:cb:eb:94:f4:04:ea:2a:6d:b6:c9:77:f8:14:31: 93:12:da:6a:72:46:a5:95:92:ec:0b:22:38:8a:74: cc:87:26:04:71:ce:38:0b:cb:5d:62:bb:0a:c9:85: de:02:7d:f9:03:cc:0b:f9:d6:5b:c4:7e:0d:42:94: 0c:c4:5c:24:28:cf:6c:6e:af:5a:7e:54:de:a5:4f: a1:62:2b:60:86:2d:5a:55:3a:a8:54:9d:b0:b6:68: 5d:51:86:fb:93:fa:0c:66:be:b1:26:83:db:6f:da: 53:3a:ab:2c:61:d7:a6:f3:c7:fe:78:90:c2:77:cf: 21:ce:71:b3:a9:32:00:70:74:83:a6:34:2d:e2:6d: e4:50:34:32:e0:13:4a:5c:ac:c8:e5:f5:20:2a:9c: 85:52:43:c9:fe:fe:9e:2a:3c:b1:cb:5a:8d:c3:12: 3a:9c:db:2d:68:01:a8:b7:1d:6a:74:e7:a3:0b:19: 57:8c:13:03:10:93:d2:c7:17:05:7a:52:24:71:99: 99:3d:9a:d2:01:3e:b5:9d:c9:82:7e:3a:da:5b:c4: 82:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 7B:9F:50:72:2E:E5:D5:DB:8D:F5:52:ED:32:CB:87:64:B6:4F:A9:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ce3d8c03-17bb-4cab-8526-118f587dcc09/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ce3d8c03-17bb-4cab-8526-118f587dcc09/0/7B9F50722EE5D5DB8DF552ED32CB8764B64FA902.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.100.0/23 Signature Algorithm: sha256WithRSAEncryption 11:d0:bb:57:b2:af:20:e7:65:5b:dc:01:92:90:15:f9:b1:f3: 81:db:ca:52:97:8d:bb:67:47:c9:3e:79:48:56:16:13:df:4d: 2d:58:fb:8b:8d:23:03:b7:57:33:de:73:9b:af:f1:0a:46:87: 4e:ca:7c:c6:44:08:e8:20:52:28:96:d7:b5:2c:b8:0a:29:45: dd:a6:4f:8d:c8:fd:16:42:e8:e0:d7:66:f5:98:7e:4a:ee:04: be:20:e4:57:3e:8f:d6:78:f7:d8:63:f6:18:33:08:cf:fb:44: f6:d2:0d:87:cb:89:38:fa:fe:82:91:3c:60:74:5b:65:ea:61: 5c:60:07:5b:1b:b8:aa:8d:42:5d:64:38:1f:4b:ba:e8:ad:2e: be:89:a8:dd:57:8f:ee:21:38:f9:44:51:d8:08:11:52:5b:1a: 01:78:e9:4a:d5:dc:81:f4:50:79:07:bf:26:ae:7d:81:ae:78: 8f:22:b9:f3:1b:18:3c:93:00:ae:44:ac:67:53:a8:17:05:35: d7:7a:45:70:13:0b:2f:00:5d:f0:65:84:24:77:41:b8:18:7b: 7b:4f:33:62:c0:4f:2c:18:38:27:73:0b:8f:de:b0:0e:9f:95: 32:1d:d6:be:54:52:1f:68:e3:b7:b2:d2:de:46:3a:ed:80:02: ec:14:f2:fc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUMUsyONGqevW/Y6rwrMJMnENJen4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyOTAzNDAwNloX DTI0MTEyNzAzNDUwNlowMzExMC8GA1UEAxMoN0I5RjUwNzIyRUU1RDVEQjhERjU1 MkVEMzJDQjg3NjRCNjRGQTkwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALyCIqaNIScKq2sKEXEKhq15WsBpi8zXN3U0j8vSo3SuYuEAE0vL1ZgAnldz oMvrlPQE6ipttsl3+BQxkxLaanJGpZWS7AsiOIp0zIcmBHHOOAvLXWK7CsmF3gJ9 +QPMC/nWW8R+DUKUDMRcJCjPbG6vWn5U3qVPoWIrYIYtWlU6qFSdsLZoXVGG+5P6 DGa+sSaD22/aUzqrLGHXpvPH/niQwnfPIc5xs6kyAHB0g6Y0LeJt5FA0MuATSlys yOX1ICqchVJDyf7+nio8sctajcMSOpzbLWgBqLcdanTnowsZV4wTAxCT0scXBXpS JHGZmT2a0gE+tZ3Jgn462lvEgmECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHufUHIu5dXbjfVS7TLLh2S2T6kCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jZTNkOGMwMy0xN2JiLTRjYWItODUyNi0xMThmNTg3ZGNjMDkvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NlM2Q4YzAz LTE3YmItNGNhYi04NTI2LTExOGY1ODdkY2MwOS8wLzdCOUY1MDcyMkVFNUQ1REI4 REY1NTJFRDMyQ0I4NzY0QjY0RkE5MDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnt2QwDQYJKoZIhvcNAQELBQADggEBABHQu1eyryDnZVvcAZKQFfmx84HbylKX jbtnR8k+eUhWFhPfTS1Y+4uNIwO3VzPec5uv8QpGh07KfMZECOggUiiW17UsuAop Rd2mT43I/RZC6ODXZvWYfkruBL4g5Fc+j9Z499hj9hgzCM/7RPbSDYfLiTj6/oKR PGB0W2XqYVxgB1sbuKqNQl1kOB9LuuitLr6JqN1Xj+4hOPlEUdgIEVJbGgF46UrV 3IH0UHkHvyaufYGueI8iufMbGDyTAK5ErGdTqBcFNdd6RXATCy8AXfBlhCR3QbgY e3tPM2LATywYOCdzC4/esA6flTId1r5UUh9o47ey0t5GOu2AAuwU8vw= -----END CERTIFICATE-----Generated at Wed May 8 09:50:32 2024 by rpki-client on console-fra.rpki-client.org