$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/993D6DBC0B37BB59CEA86CE024A349353C57D366.cer File: 993D6DBC0B37BB59CEA86CE024A349353C57D366.cer (raw, json) Hash identifier: 44MDjd3L7hKzQIoaOoSI4kQEohIIG21w+VHshPcSChA= Subject key identifier: 99:3D:6D:BC:0B:37:BB:59:CE:A8:6C:E0:24:A3:49:35:3C:57:D3:66 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 04029ED5B8F7FE464FB095D3FA0749EBC9969E98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/993D6DBC0B37BB59CEA86CE024A349353C57D366.mft caRepository: rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 15 Jun 2023 06:28:48 +0000 Certificate not after: Thu 13 Jun 2024 06:33:48 +0000 Subordinate resources: IP: 103.169.72.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:02:9e:d5:b8:f7:fe:46:4f:b0:95:d3:fa:07:49:eb:c9:96:9e:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 15 06:28:48 2023 GMT Not After : Jun 13 06:33:48 2024 GMT Subject: CN=993D6DBC0B37BB59CEA86CE024A349353C57D366 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:16:9f:df:b3:8a:40:b5:70:e4:f3:c3:28:3d: 8e:7a:9f:b1:9a:40:ad:68:2b:92:cb:ee:f1:52:1f: e0:7e:b8:0e:c8:4d:44:05:c7:93:46:12:a4:a4:ec: 47:05:e0:c0:a3:61:8d:47:e7:43:13:50:77:73:9a: cf:e9:a3:40:dc:8f:a6:ae:0b:18:d1:c3:a9:74:e5: 3d:0f:9b:38:9b:2a:1c:54:b0:61:bf:ef:02:85:10: 4e:e8:eb:d6:44:5a:57:4f:db:bb:f7:a0:51:4c:94: 8f:09:b7:82:5d:c8:dd:2e:7b:e5:da:78:e0:2a:bc: dd:be:85:54:50:81:7b:9c:f8:1c:bf:16:f6:db:2a: a0:90:1c:40:57:11:07:2f:ea:72:07:4e:94:8c:bd: 27:da:ce:bd:05:de:1d:e5:c8:c0:e4:30:74:98:95: c8:7f:be:06:2f:5d:7a:42:fa:aa:1c:bd:b6:cb:ed: 24:d3:aa:75:92:3b:19:f3:fb:52:13:49:da:08:a2: 83:ba:9f:1d:ff:8c:3a:a3:f7:c6:49:f2:92:00:18: f9:d4:3c:6f:09:fe:97:85:d2:b1:30:ae:4d:df:8e: d2:5a:06:c0:68:e2:49:1d:ca:55:0f:ed:a2:ad:22: 36:46:5c:c9:77:cf:c6:41:f2:24:92:a8:d0:b0:d2: 6d:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 99:3D:6D:BC:0B:37:BB:59:CE:A8:6C:E0:24:A3:49:35:3C:57:D3:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/141a02e6-2171-47c9-86c9-d5d80f458836/0/993D6DBC0B37BB59CEA86CE024A349353C57D366.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.72.0/23 Signature Algorithm: sha256WithRSAEncryption 60:af:8f:60:4b:19:15:6b:c1:a2:fc:9a:d2:03:b2:ed:44:c0: 38:10:9b:3a:05:39:d0:da:f7:03:69:7b:9b:95:bf:6a:f5:c6: d0:24:35:7f:8a:c5:87:4a:cf:f8:59:80:0a:3a:ea:30:8a:17: 70:5d:ff:49:46:cb:f3:0a:d1:6e:0b:4e:98:55:09:38:e1:ef: cd:ce:d6:f6:bf:fd:2d:f4:b0:8a:35:78:c6:84:88:1c:86:0f: 96:32:ab:c4:d6:e4:e4:58:f9:87:a1:9d:04:91:a3:44:3e:d4: 27:2e:f4:a9:e5:3c:df:2e:b5:9d:77:63:1e:da:4f:f7:b3:0a: a6:09:56:97:78:f2:e9:6f:55:cb:90:46:df:05:9b:d3:79:36: a5:49:c0:be:13:27:21:a3:03:86:0f:8f:63:15:8c:cf:cd:7a: 8b:25:a8:a0:13:cd:c8:96:0e:1d:c7:1f:fd:41:0b:e5:ca:20: 85:6f:3c:41:e2:90:66:f2:8f:3e:e7:5b:70:9a:0e:7d:4d:c0: b1:d5:73:4f:d7:07:d6:65:79:c7:de:c0:f7:c1:b3:5b:5d:07: d8:4b:01:dd:3f:4e:73:e6:df:93:fe:0a:af:17:c3:17:1d:4b: d3:f7:99:1e:0d:7a:73:80:79:93:db:03:3d:4c:22:e6:e3:46: bd:43:b7:96 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUBAKe1bj3/kZPsJXT+gdJ68mWnpgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYxNTA2Mjg0OFoX DTI0MDYxMzA2MzM0OFowMzExMC8GA1UEAxMoOTkzRDZEQkMwQjM3QkI1OUNFQTg2 Q0UwMjRBMzQ5MzUzQzU3RDM2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKIWn9+zikC1cOTzwyg9jnqfsZpArWgrksvu8VIf4H64DshNRAXHk0YSpKTs RwXgwKNhjUfnQxNQd3Oaz+mjQNyPpq4LGNHDqXTlPQ+bOJsqHFSwYb/vAoUQTujr 1kRaV0/bu/egUUyUjwm3gl3I3S575dp44Cq83b6FVFCBe5z4HL8W9tsqoJAcQFcR By/qcgdOlIy9J9rOvQXeHeXIwOQwdJiVyH++Bi9dekL6qhy9tsvtJNOqdZI7GfP7 UhNJ2giig7qfHf+MOqP3xknykgAY+dQ8bwn+l4XSsTCuTd+O0loGwGjiSR3KVQ/t oq0iNkZcyXfPxkHyJJKo0LDSbXcCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJk9bbwLN7tZzqhs4CSjSTU8V9NmMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xNDFhMDJlNi0yMTcxLTQ3YzktODZjOS1kNWQ4MGY0NTg4MzYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzE0MWEwMmU2 LTIxNzEtNDdjOS04NmM5LWQ1ZDgwZjQ1ODgzNi8wLzk5M0Q2REJDMEIzN0JCNTlD RUE4NkNFMDI0QTM0OTM1M0M1N0QzNjYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqUgwDQYJKoZIhvcNAQELBQADggEBAGCvj2BLGRVrwaL8mtIDsu1EwDgQmzoF OdDa9wNpe5uVv2r1xtAkNX+KxYdKz/hZgAo66jCKF3Bd/0lGy/MK0W4LTphVCTjh 783O1va//S30sIo1eMaEiByGD5Yyq8TW5ORY+YehnQSRo0Q+1Ccu9KnlPN8utZ13 Yx7aT/ezCqYJVpd48ulvVcuQRt8Fm9N5NqVJwL4TJyGjA4YPj2MVjM/NeoslqKAT zciWDh3HH/1BC+XKIIVvPEHikGbyjz7nW3CaDn1NwLHVc0/XB9ZlecfewPfBs1td B9hLAd0/TnPm35P+Cq8XwxcdS9P3mR4NenOAeZPbAz1MIubjRr1Dt5Y= -----END CERTIFICATE-----Generated at Wed May 8 15:17:39 2024 by rpki-client on console-fra.rpki-client.org