$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/9E106F95CC461B5B1F487A53F6B2D5A36F627004.cer File: 9E106F95CC461B5B1F487A53F6B2D5A36F627004.cer (raw, json) Hash identifier: +fVNr6Vw8scZZJ6BaJAmFACdO68vkZz0rXXxHiAXGLo= Subject key identifier: 9E:10:6F:95:CC:46:1B:5B:1F:48:7A:53:F6:B2:D5:A3:6F:62:70:04 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5B821314A0C9754108F66AC8B75B0DF0BBBBDB67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/9ad73895-c84c-464f-9b4f-8d30306b9727/0/9E106F95CC461B5B1F487A53F6B2D5A36F627004.mft caRepository: rsync://repo-rpki.idnic.net/repo/9ad73895-c84c-464f-9b4f-8d30306b9727/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 22 Nov 2023 11:38:32 +0000 Certificate not after: Wed 20 Nov 2024 11:43:32 +0000 Subordinate resources: IP: 103.162.112.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:82:13:14:a0:c9:75:41:08:f6:6a:c8:b7:5b:0d:f0:bb:bb:db:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 22 11:38:32 2023 GMT Not After : Nov 20 11:43:32 2024 GMT Subject: CN=9E106F95CC461B5B1F487A53F6B2D5A36F627004 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:5e:e2:87:96:a9:51:d5:ac:6b:fe:8a:28:5b: 00:37:35:40:ce:d1:4e:c6:2a:75:95:2b:e4:51:83: bf:f7:71:7f:a3:9a:fb:52:50:ec:99:bd:21:fa:89: 71:81:61:5f:ca:5b:a7:a2:30:be:a5:1e:24:b5:2e: 1c:6c:85:f6:88:e1:a9:55:d8:1e:5a:e2:f1:0f:2a: 6a:9e:a0:14:69:97:3d:22:7a:a2:4d:51:cc:f0:f9: 07:57:94:95:d1:6c:6e:2d:62:c1:9f:6e:64:3e:bb: 18:a5:cc:74:ae:16:7d:e6:92:64:2f:1d:a2:54:76: 9a:83:7e:f2:44:46:99:02:b3:73:72:e7:9a:47:61: 11:54:c2:29:65:52:e6:55:6b:18:a8:e4:77:f9:c2: af:59:97:3f:78:bd:a6:d2:24:a4:93:65:08:15:ad: e8:bd:1c:5f:4a:9a:0f:48:67:02:56:1f:79:91:c0: ae:21:56:68:8f:f3:59:5e:13:11:dc:02:c7:cd:d8: a1:0e:34:0b:24:a9:cd:90:00:23:5f:55:00:c9:2d: fd:11:b8:a4:71:a1:15:10:f7:6d:b5:d7:89:b0:fa: 17:a4:4f:bb:cb:dd:61:bb:f7:4d:21:17:27:5f:06: 86:64:cd:c6:f2:43:0c:fe:17:ca:c8:44:a3:3b:d5: 21:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 9E:10:6F:95:CC:46:1B:5B:1F:48:7A:53:F6:B2:D5:A3:6F:62:70:04 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/9ad73895-c84c-464f-9b4f-8d30306b9727/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/9ad73895-c84c-464f-9b4f-8d30306b9727/0/9E106F95CC461B5B1F487A53F6B2D5A36F627004.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.162.112.0/23 Signature Algorithm: sha256WithRSAEncryption 3a:e7:39:6d:f6:9c:f3:85:00:86:23:9b:1a:4c:a2:c2:bd:6e: f3:37:77:66:73:16:41:98:c9:e4:b7:bb:82:85:c3:d8:6f:a9: d8:13:d7:77:4b:12:a8:b3:e9:90:e6:f1:3a:87:16:1b:4f:54: eb:2c:de:69:c6:91:d7:36:64:02:76:29:6e:02:1d:dd:5c:0d: 7a:e0:8c:71:5e:0e:d7:37:c5:d1:c4:1a:68:98:e1:be:9c:1b: 5b:0f:4c:07:85:c7:8c:9d:38:c1:4e:f3:ad:c9:66:97:e8:6c: 56:8e:f0:65:e7:ec:34:92:20:fb:b6:7f:8e:0f:8c:a2:97:eb: 63:26:1c:e2:d7:7d:ea:cb:a3:2a:18:56:c5:98:34:4d:ce:c3: fd:2d:bc:72:d2:a7:e9:7e:a9:08:7d:af:5e:10:4f:be:7d:41: f8:e0:5f:d8:27:ce:b7:4d:52:36:85:9c:14:55:03:0d:5c:fc: 92:56:77:4b:88:36:e1:1a:6c:fa:19:4d:5d:a2:37:7c:d4:4d: 96:d3:6e:70:88:16:c3:b2:bc:10:7d:b8:2a:96:f8:f9:fe:d3: c6:1d:e3:40:f1:04:de:07:39:b9:4d:cf:5c:aa:02:a0:bf:09: 3b:4c:d3:4d:21:5a:eb:96:ff:98:7d:02:4b:c4:36:1f:e7:2d: 03:22:29:54 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUW4ITFKDJdUEI9mrIt1sN8Lu722cwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyMjExMzgzMloX DTI0MTEyMDExNDMzMlowMzExMC8GA1UEAxMoOUUxMDZGOTVDQzQ2MUI1QjFGNDg3 QTUzRjZCMkQ1QTM2RjYyNzAwNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM9e4oeWqVHVrGv+iihbADc1QM7RTsYqdZUr5FGDv/dxf6Oa+1JQ7Jm9IfqJ cYFhX8pbp6IwvqUeJLUuHGyF9ojhqVXYHlri8Q8qap6gFGmXPSJ6ok1RzPD5B1eU ldFsbi1iwZ9uZD67GKXMdK4WfeaSZC8dolR2moN+8kRGmQKzc3LnmkdhEVTCKWVS 5lVrGKjkd/nCr1mXP3i9ptIkpJNlCBWt6L0cX0qaD0hnAlYfeZHAriFWaI/zWV4T EdwCx83YoQ40CySpzZAAI19VAMkt/RG4pHGhFRD3bbXXibD6F6RPu8vdYbv3TSEX J18GhmTNxvJDDP4XyshEozvVIdkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJ4Qb5XMRhtbH0h6U/ay1aNvYnAEMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85YWQ3Mzg5NS1jODRjLTQ2NGYtOWI0Zi04ZDMwMzA2Yjk3MjcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzlhZDczODk1 LWM4NGMtNDY0Zi05YjRmLThkMzAzMDZiOTcyNy8wLzlFMTA2Rjk1Q0M0NjFCNUIx RjQ4N0E1M0Y2QjJENUEzNkY2MjcwMDQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnonAwDQYJKoZIhvcNAQELBQADggEBADrnOW32nPOFAIYjmxpMosK9bvM3d2Zz FkGYyeS3u4KFw9hvqdgT13dLEqiz6ZDm8TqHFhtPVOss3mnGkdc2ZAJ2KW4CHd1c DXrgjHFeDtc3xdHEGmiY4b6cG1sPTAeFx4ydOMFO863JZpfobFaO8GXn7DSSIPu2 f44PjKKX62MmHOLXferLoyoYVsWYNE3Ow/0tvHLSp+l+qQh9r14QT759QfjgX9gn zrdNUjaFnBRVAw1c/JJWd0uINuEabPoZTV2iN3zUTZbTbnCIFsOyvBB9uCqW+Pn+ 08Yd40DxBN4HOblNz1yqAqC/CTtM000hWuuW/5h9AkvENh/nLQMiKVQ= -----END CERTIFICATE-----Generated at Wed May 8 15:17:40 2024 by rpki-client on console-fra.rpki-client.org