$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/849E9E240A6BF4423B1E7D2205D41EC80D6EAB4F.cer File: 849E9E240A6BF4423B1E7D2205D41EC80D6EAB4F.cer (raw, json) Hash identifier: lDKui+onAKVuEHwJIvDLmfm3fAV0oXF73quRSySeTe4= Subject key identifier: 84:9E:9E:24:0A:6B:F4:42:3B:1E:7D:22:05:D4:1E:C8:0D:6E:AB:4F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 28CEA2EEBE7FD3EE3ED2322931DF8E8DE42A5D55 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/9eeb45de-5183-4a3a-b06d-8bb8d4506b06/0/849E9E240A6BF4423B1E7D2205D41EC80D6EAB4F.mft caRepository: rsync://repo-rpki.idnic.net/repo/9eeb45de-5183-4a3a-b06d-8bb8d4506b06/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 17 Oct 2023 15:47:50 +0000 Certificate not after: Tue 15 Oct 2024 15:52:50 +0000 Subordinate resources: IP: 103.6.166.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:ce:a2:ee:be:7f:d3:ee:3e:d2:32:29:31:df:8e:8d:e4:2a:5d:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 17 15:47:50 2023 GMT Not After : Oct 15 15:52:50 2024 GMT Subject: CN=849E9E240A6BF4423B1E7D2205D41EC80D6EAB4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:43:88:74:fa:d8:b5:df:e5:f2:fa:85:b2:b8: e8:18:a1:33:9d:4e:2a:a8:3f:fa:5f:d0:28:b7:00: e6:85:eb:c2:24:0e:cb:4f:a4:d0:d7:64:3d:02:d0: 0e:1d:e3:f5:7d:af:de:25:75:bb:56:6d:82:b6:e9: 3a:9c:0c:df:85:b1:10:13:26:97:cf:58:b9:87:05: 2d:b5:cd:92:b4:d4:1b:64:8f:ec:bf:95:ce:94:e3: 06:b6:78:e8:e1:38:c2:80:34:61:76:50:8c:f2:81: ea:d5:a0:a9:22:f8:a9:e2:55:b4:2f:cd:be:8b:cc: b4:89:d0:06:58:f7:3a:55:cc:63:60:e7:a6:bc:04: e3:3b:73:cc:5e:2d:dd:05:4c:25:09:30:89:1d:cc: f5:95:54:a9:08:84:d6:87:95:47:09:73:c0:43:3f: 14:4b:5f:2c:de:8d:9e:6d:fc:9a:29:23:a0:39:ab: 79:6f:78:54:76:5e:bb:cd:31:d6:d5:b7:e0:07:13: 80:04:ae:34:55:7b:c1:b9:bc:b4:50:5c:60:b4:4f: 0a:47:4a:db:96:96:68:f3:a0:a4:38:b9:5a:10:fa: 4e:0c:d2:48:1a:4d:78:9b:13:01:0b:2f:d0:2e:59: 62:fd:05:79:13:d2:39:2e:28:cd:2f:ef:02:c2:00: 8b:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 84:9E:9E:24:0A:6B:F4:42:3B:1E:7D:22:05:D4:1E:C8:0D:6E:AB:4F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9eeb45de-5183-4a3a-b06d-8bb8d4506b06/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9eeb45de-5183-4a3a-b06d-8bb8d4506b06/0/849E9E240A6BF4423B1E7D2205D41EC80D6EAB4F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.166.0/24 Signature Algorithm: sha256WithRSAEncryption 6b:49:ae:f6:28:15:df:29:06:c1:91:4b:26:7b:e8:ef:70:6f: 59:c2:3e:81:6e:d4:cc:17:67:e2:a9:6e:b8:5d:d8:e6:78:53: 96:f2:1f:d8:11:06:da:46:ca:ce:ab:2c:de:45:9b:f8:0e:f6: f5:c2:dc:b1:ef:af:f6:5c:f1:e6:59:de:c8:c5:30:21:11:2c: 79:8c:07:57:3c:2f:07:46:80:d3:ba:23:10:04:91:49:16:c6: 23:04:9d:f3:f7:62:6b:b6:69:50:d3:12:44:d6:12:cb:31:c2: e2:8c:89:06:e4:93:e6:0c:50:69:6d:d2:7c:76:b1:61:d3:d9: 2e:7b:e9:f4:ad:26:81:fb:f0:d1:4d:a8:67:d1:8b:d9:4e:fb: b9:d2:66:6d:56:16:f0:1e:76:b0:5a:dc:f7:72:70:c9:84:2b: 63:3e:f2:ea:33:2d:8b:f9:e1:bf:59:11:ba:17:c0:6b:19:22: 8b:24:9f:44:91:13:68:b6:c0:88:b5:c1:b6:9e:3f:01:51:77: a7:25:11:24:b8:35:c2:04:4c:5c:df:4c:41:71:a4:9b:35:e5: a4:98:c8:1a:3a:e4:ad:83:fc:75:fd:02:2d:7e:2e:b6:5e:44: 5e:29:2c:72:55:86:68:ac:47:4f:56:e6:ab:fb:8b:44:ca:a2: e0:4b:2c:d2 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUKM6i7r5/0+4+0jIpMd+OjeQqXVUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxNzE1NDc1MFoX DTI0MTAxNTE1NTI1MFowMzExMC8GA1UEAxMoODQ5RTlFMjQwQTZCRjQ0MjNCMUU3 RDIyMDVENDFFQzgwRDZFQUI0RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANdDiHT62LXf5fL6hbK46BihM51OKqg/+l/QKLcA5oXrwiQOy0+k0NdkPQLQ Dh3j9X2v3iV1u1ZtgrbpOpwM34WxEBMml89YuYcFLbXNkrTUG2SP7L+VzpTjBrZ4 6OE4woA0YXZQjPKB6tWgqSL4qeJVtC/NvovMtInQBlj3OlXMY2DnprwE4ztzzF4t 3QVMJQkwiR3M9ZVUqQiE1oeVRwlzwEM/FEtfLN6Nnm38mikjoDmreW94VHZeu80x 1tW34AcTgASuNFV7wbm8tFBcYLRPCkdK25aWaPOgpDi5WhD6TgzSSBpNeJsTAQsv 0C5ZYv0FeRPSOS4ozS/vAsIAi98CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFISeniQKa/RCOx59IgXUHsgNbqtPMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85ZWViNDVkZS01MTgzLTRhM2EtYjA2ZC04YmI4ZDQ1MDZiMDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzllZWI0NWRl LTUxODMtNGEzYS1iMDZkLThiYjhkNDUwNmIwNi8wLzg0OUU5RTI0MEE2QkY0NDIz QjFFN0QyMjA1RDQxRUM4MEQ2RUFCNEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnBqYwDQYJKoZIhvcNAQELBQADggEBAGtJrvYoFd8pBsGRSyZ76O9wb1nCPoFu 1MwXZ+Kpbrhd2OZ4U5byH9gRBtpGys6rLN5Fm/gO9vXC3LHvr/Zc8eZZ3sjFMCER LHmMB1c8LwdGgNO6IxAEkUkWxiMEnfP3Ymu2aVDTEkTWEssxwuKMiQbkk+YMUGlt 0nx2sWHT2S576fStJoH78NFNqGfRi9lO+7nSZm1WFvAedrBa3PdycMmEK2M+8uoz LYv54b9ZEboXwGsZIoskn0SRE2i2wIi1wbaePwFRd6clESS4NcIETFzfTEFxpJs1 5aSYyBo65K2D/HX9Ai1+LrZeRF4pLHJVhmisR09W5qv7i0TKouBLLNI= -----END CERTIFICATE-----Generated at Wed May 8 15:17:38 2024 by rpki-client on console-fra.rpki-client.org