$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer File: 95E800EBFF64709892CB5741D9EDC75EE74E2A6D.cer (raw, json) Hash identifier: tUDuV2/xIJt4e2nTVOQ4h1gGeoBVK8qkSY7GYa0lXU0= Subject key identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 441A014FE85B36E37AB39C2A46D7283D94D6CA5B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft caRepository: rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 03:47:54 +0000 Certificate not after: Mon 29 Jul 2024 03:52:54 +0000 Subordinate resources: IP: 103.134.104.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:1a:01:4f:e8:5b:36:e3:7a:b3:9c:2a:46:d7:28:3d:94:d6:ca:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 03:47:54 2023 GMT Not After : Jul 29 03:52:54 2024 GMT Subject: CN=95E800EBFF64709892CB5741D9EDC75EE74E2A6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9d:2e:36:b0:88:a3:b8:7a:38:90:2d:d9:26: fa:e3:93:44:e9:ef:be:5b:95:53:16:1a:2e:6e:91: 0f:72:b0:28:24:f2:7d:2c:80:39:f3:d4:81:8a:32: 58:99:d5:50:45:4d:9c:49:af:23:a8:34:eb:bd:85: 9e:d7:b0:94:65:56:ff:7a:f6:9d:6c:af:08:32:75: 31:b5:b4:2c:fd:31:27:fc:7d:82:1b:91:bc:f9:a5: ac:eb:6b:43:4c:95:1e:02:0b:be:0e:8c:19:d5:02: 2a:6e:f8:af:01:14:66:7e:26:b5:52:ff:d3:8a:f1: d2:bb:03:b1:2e:7c:54:7c:9b:51:0e:3d:46:27:6c: 49:00:3a:6d:4e:d3:ce:ff:53:89:8b:48:e4:94:b9: 62:7a:ff:1c:21:7e:2d:60:f0:9e:06:f7:af:19:3c: 27:58:7a:1c:eb:36:22:7c:87:23:4f:78:52:74:9d: 26:6e:57:07:ea:d0:84:a1:83:68:25:53:b3:e5:f1: 9d:51:5b:f3:75:1a:ab:ae:de:3a:1a:35:e8:bf:ae: e0:83:03:3d:b4:1f:df:d8:82:aa:03:01:09:62:0e: 04:e7:de:91:52:5f:54:21:e8:23:94:f8:49:65:da: 98:eb:18:6b:be:6d:75:6d:a0:e7:8e:56:85:68:d8: 92:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 95:E8:00:EB:FF:64:70:98:92:CB:57:41:D9:ED:C7:5E:E7:4E:2A:6D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f6b5ae1e-be66-4a30-a948-7d478c22ea2b/0/95E800EBFF64709892CB5741D9EDC75EE74E2A6D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.134.104.0/22 Signature Algorithm: sha256WithRSAEncryption 36:63:5a:5c:12:cd:cf:09:9d:b9:72:1c:20:cd:24:18:18:39: 76:82:51:e2:df:c1:a1:15:2e:92:71:e8:7d:d5:71:9f:cd:b3: 99:d2:d1:b0:c7:4a:d0:fc:1f:b3:84:44:c8:3c:4c:ea:3b:77: 8b:e6:04:39:fe:7e:f6:bc:45:ef:00:33:37:50:20:bc:2a:66: 35:4a:6a:22:14:76:4e:8b:d4:11:51:af:94:88:fe:68:d0:56: 39:46:f3:cb:a5:ec:9f:31:38:ca:2f:26:90:19:ae:ca:5d:1c: 92:0c:68:91:a9:ab:ba:00:e0:d2:54:7e:60:17:b1:07:bf:88: 3f:a8:bf:8c:94:a2:74:cb:73:57:66:fa:dd:f0:88:ca:cb:83: 8e:b3:ac:5a:0f:c0:e2:82:4e:5d:42:9f:2d:3e:4c:7d:4e:b0: 6c:6a:74:c1:0c:e0:a0:db:19:65:3f:68:11:16:ca:87:e1:f9: bc:95:bd:36:a7:c5:77:b4:80:1a:a8:8b:0c:a2:6e:cc:71:0a: 0e:d5:5d:c2:82:5a:43:73:7b:34:be:55:00:19:43:fe:d5:b5: 24:18:d7:50:47:4e:c3:de:3a:dc:8c:5d:1b:d4:f8:82:b6:67: 4f:39:a8:50:8e:ea:12:ea:4d:86:81:85:ad:be:a8:47:ca:94: 58:4f:c5:8a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIURBoBT+hbNuN6s5wqRtcoPZTWylswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTAzNDc1NFoX DTI0MDcyOTAzNTI1NFowMzExMC8GA1UEAxMoOTVFODAwRUJGRjY0NzA5ODkyQ0I1 NzQxRDlFREM3NUVFNzRFMkE2RDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALedLjawiKO4ejiQLdkm+uOTROnvvluVUxYaLm6RD3KwKCTyfSyAOfPUgYoy WJnVUEVNnEmvI6g0672FntewlGVW/3r2nWyvCDJ1MbW0LP0xJ/x9ghuRvPmlrOtr Q0yVHgILvg6MGdUCKm74rwEUZn4mtVL/04rx0rsDsS58VHybUQ49RidsSQA6bU7T zv9TiYtI5JS5Ynr/HCF+LWDwngb3rxk8J1h6HOs2InyHI094UnSdJm5XB+rQhKGD aCVTs+XxnVFb83Uaq67eOho16L+u4IMDPbQf39iCqgMBCWIOBOfekVJfVCHoI5T4 SWXamOsYa75tdW2g545WhWjYkisCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJXoAOv/ZHCYkstXQdntx17nTiptMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mNmI1YWUxZS1iZTY2LTRhMzAtYTk0OC03ZDQ3OGMyMmVhMmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y2YjVhZTFl LWJlNjYtNGEzMC1hOTQ4LTdkNDc4YzIyZWEyYi8wLzk1RTgwMEVCRkY2NDcwOTg5 MkNCNTc0MUQ5RURDNzVFRTc0RTJBNkQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnhmgwDQYJKoZIhvcNAQELBQADggEBADZjWlwSzc8JnblyHCDNJBgYOXaCUeLf waEVLpJx6H3VcZ/Ns5nS0bDHStD8H7OERMg8TOo7d4vmBDn+fva8Re8AMzdQILwq ZjVKaiIUdk6L1BFRr5SI/mjQVjlG88ul7J8xOMovJpAZrspdHJIMaJGpq7oA4NJU fmAXsQe/iD+ov4yUonTLc1dm+t3wiMrLg46zrFoPwOKCTl1Cny0+TH1OsGxqdMEM 4KDbGWU/aBEWyofh+byVvTanxXe0gBqoiwyibsxxCg7VXcKCWkNzezS+VQAZQ/7V tSQY11BHTsPeOtyMXRvU+IK2Z085qFCO6hLqTYaBha2+qEfKlFhPxYo= -----END CERTIFICATE-----Generated at Wed May 8 21:02:18 2024 by rpki-client on console-fra.rpki-client.org