$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer File: A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.cer (raw, json) Hash identifier: ZOd/7Udmsv7sYljJ4gEkavotmkajKVLnrkik98tOwKQ= Subject key identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3ABC0AD7A8E8C6BB01315478DAA6FF51B2398D15 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft caRepository: rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 16 Sep 2023 18:47:03 +0000 Certificate not after: Sat 14 Sep 2024 18:52:03 +0000 Subordinate resources: IP: 103.84.116.0/24 IP: 103.157.55.0/24 IP: 2001:df0:1700::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:bc:0a:d7:a8:e8:c6:bb:01:31:54:78:da:a6:ff:51:b2:39:8d:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 16 18:47:03 2023 GMT Not After : Sep 14 18:52:03 2024 GMT Subject: CN=A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:34:8a:47:0b:f8:e4:fa:ad:bf:ac:99:7c:5b: b2:33:a7:bb:ba:e1:b5:c1:e1:5f:7c:32:d0:90:88: af:6f:a4:6f:ab:7c:02:75:8e:fa:f3:0c:4d:59:b7: f7:0d:92:7d:e5:03:f1:3d:a9:56:ca:85:5a:ae:f2: 3f:d5:04:d2:0a:88:4d:67:d4:e3:90:7d:c5:52:98: b7:04:f6:2e:70:ef:1d:3e:ed:45:9e:95:9d:f7:b4: f6:79:ce:ca:4c:4c:1c:9b:f1:7f:03:83:35:ea:0e: 06:8c:2a:80:a3:66:60:0c:93:a4:d7:3d:7f:0c:98: 89:41:80:ae:96:99:75:2f:1c:b5:d2:96:87:e0:b4: 66:19:ac:7a:20:17:9e:13:2c:be:97:62:4d:31:34: 43:95:74:ca:71:43:52:2b:f5:3a:50:a4:93:4a:e0: 75:2e:68:bf:1c:1e:98:4e:4e:ca:5d:e1:ca:07:dd: 76:b6:81:2b:19:99:9d:dc:8c:05:8f:7c:4e:12:2b: e7:1f:30:ba:07:b8:d3:cf:a0:b1:5e:30:42:a6:b2: ec:fb:66:56:a6:b6:55:c0:cc:ba:9e:4b:25:ae:dc: 4b:dd:ce:c9:62:d6:73:ac:29:fc:7b:05:65:68:c1: 91:fc:4e:45:bc:21:fd:68:d2:0d:df:c9:b1:99:38: 36:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A0:A2:A5:CA:8C:20:A7:CF:6D:A1:32:5C:9B:D5:C3:37:6F:3F:E0:B3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4f377711-1e3d-4e5a-a4ac-05a1c502ad28/0/A0A2A5CA8C20A7CF6DA1325C9BD5C3376F3FE0B3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.116.0/24 103.157.55.0/24 IPv6: 2001:df0:1700::/48 Signature Algorithm: sha256WithRSAEncryption 0a:db:81:65:de:b7:3b:28:b8:74:2a:76:03:04:b5:f5:53:7a: ab:cf:b5:88:13:9b:26:ee:58:5a:df:2d:ff:5b:78:b4:c4:47: 8f:55:26:03:c2:20:ce:0e:da:36:dd:f6:31:ff:df:d7:19:7d: f4:5e:cd:30:37:04:0a:13:6d:47:3d:b1:2d:0f:fe:ee:8c:70: 72:65:66:1a:31:22:81:04:7d:58:8a:a2:97:f7:fd:d0:c0:31: 20:10:c9:e3:02:8c:2f:8c:36:49:b5:47:f6:25:97:64:ba:c8: 44:0d:99:86:ef:4e:99:2b:91:2f:13:e3:69:7d:d8:2e:10:14: 0a:bf:9e:61:1b:cc:b9:5d:30:32:13:05:e6:ee:9d:5b:7e:e4: 5f:20:a0:78:1d:b7:ca:f2:75:c6:f5:4e:02:0c:45:99:b0:66: ca:27:ca:c2:7d:73:bd:34:67:9c:59:b6:58:20:43:1f:2f:2f: 8d:0e:81:ee:e6:3d:42:96:89:bd:52:62:bc:cb:cc:f5:61:24: 64:08:0b:ad:96:4a:25:9f:0f:8a:4c:da:d5:8f:a7:5a:a6:60: 3d:6b:37:be:0e:af:c5:77:c6:e3:55:58:b4:bd:62:8e:7e:6d: 25:60:a4:7d:ce:15:5a:40:f5:6f:89:d3:74:f6:68:a9:00:72: fd:e5:e4:f8 -----BEGIN CERTIFICATE----- MIIF3DCCBMSgAwIBAgIUOrwK16joxrsBMVR42qb/UbI5jRUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxNjE4NDcwM1oX DTI0MDkxNDE4NTIwM1owMzExMC8GA1UEAxMoQTBBMkE1Q0E4QzIwQTdDRjZEQTEz MjVDOUJENUMzMzc2RjNGRTBCMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALs0ikcL+OT6rb+smXxbsjOnu7rhtcHhX3wy0JCIr2+kb6t8AnWO+vMMTVm3 9w2SfeUD8T2pVsqFWq7yP9UE0gqITWfU45B9xVKYtwT2LnDvHT7tRZ6Vnfe09nnO ykxMHJvxfwODNeoOBowqgKNmYAyTpNc9fwyYiUGArpaZdS8ctdKWh+C0ZhmseiAX nhMsvpdiTTE0Q5V0ynFDUiv1OlCkk0rgdS5ovxwemE5Oyl3hygfddraBKxmZndyM BY98ThIr5x8wuge408+gsV4wQqay7PtmVqa2VcDMup5LJa7cS93OyWLWc6wp/HsF ZWjBkfxORbwh/WjSDd/JsZk4Nk8CAwEAAaOCAs8wggLLMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKCipcqMIKfPbaEyXJvVwzdvP+CzMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZjM3NzcxMS0xZTNkLTRlNWEtYTRhYy0wNWExYzUwMmFkMjgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmMzc3NzEx LTFlM2QtNGU1YS1hNGFjLTA1YTFjNTAyYWQyOC8wL0EwQTJBNUNBOEMyMEE3Q0Y2 REExMzI1QzlCRDVDMzM3NkYzRkUwQjMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwNgYIKwYBBQUHAQcBAf8EJzAlMBIEAgABMAwD BABnVHQDBABnnTcwDwQCAAIwCQMHACABDfAXADANBgkqhkiG9w0BAQsFAAOCAQEA CtuBZd63Oyi4dCp2AwS19VN6q8+1iBObJu5YWt8t/1t4tMRHj1UmA8Igzg7aNt32 Mf/f1xl99F7NMDcEChNtRz2xLQ/+7oxwcmVmGjEigQR9WIqil/f90MAxIBDJ4wKM L4w2SbVH9iWXZLrIRA2Zhu9OmSuRLxPjaX3YLhAUCr+eYRvMuV0wMhMF5u6dW37k XyCgeB23yvJ1xvVOAgxFmbBmyifKwn1zvTRnnFm2WCBDHy8vjQ6B7uY9QpaJvVJi vMvM9WEkZAgLrZZKJZ8Pikza1Y+nWqZgPWs3vg6vxXfG41VYtL1ijn5tJWCkfc4V WkD1b4nTdPZoqQBy/eXk+A== -----END CERTIFICATE-----Generated at Wed May 8 21:02:19 2024 by rpki-client on console-fra.rpki-client.org