$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A17DC55845B70106CEB3A498496454BE640F44AB.cer File: A17DC55845B70106CEB3A498496454BE640F44AB.cer (raw, json) Hash identifier: o1sF9NDnuNfcBNW5Hz8hKJPo4J+9X9Mv4SIipTxyaLk= Subject key identifier: A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 140DA61BF881EB4E1F2F0F75925FFCB425A88C54 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.mft caRepository: rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 05 Aug 2023 04:10:09 +0000 Certificate not after: Sat 03 Aug 2024 04:15:09 +0000 Subordinate resources: IP: 103.31.248.0/23 IP: 103.52.60.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:0d:a6:1b:f8:81:eb:4e:1f:2f:0f:75:92:5f:fc:b4:25:a8:8c:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 5 04:10:09 2023 GMT Not After : Aug 3 04:15:09 2024 GMT Subject: CN=A17DC55845B70106CEB3A498496454BE640F44AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:74:05:e6:d5:a2:71:e6:1a:13:85:a7:c4:7d: 53:6f:eb:15:4c:30:ba:19:96:1b:0d:2c:fd:f1:01: f0:9b:99:25:0e:97:b5:37:94:37:49:52:36:48:a0: 52:3b:be:ca:56:04:db:21:de:39:de:0f:ea:53:f0: f2:17:cc:2b:74:ab:ce:f6:9a:c1:20:13:20:4c:e4: 79:a7:e4:63:af:66:77:41:5f:72:3e:73:02:8a:e6: c4:a5:43:78:b1:bf:c9:08:84:51:b0:3d:42:21:dd: 9a:9d:77:13:82:e2:2c:2f:8c:bf:32:46:df:9a:04: 51:14:d5:2d:1a:b2:39:ba:15:10:81:90:32:9f:60: ba:39:46:91:88:51:cf:2c:d3:3a:be:cf:a7:df:90: 6f:3e:f5:1c:80:f5:66:44:ed:5d:33:61:59:19:d0: e4:57:3a:cd:e1:bc:1d:b5:72:4a:c4:e0:0d:68:2a: 98:3a:ad:66:fe:2e:ff:d7:e6:72:e5:94:4d:3c:d0: cf:99:f3:e7:1d:8e:1d:53:23:5f:82:cb:fb:9c:1d: 9f:29:d4:ce:a9:bf:2a:47:87:6f:3d:da:44:6d:94: 0c:f3:a0:61:6d:35:ef:a1:77:14:01:ef:92:af:1d: 51:ef:d4:28:82:3f:dc:2b:e9:ae:a9:a3:c9:e1:86: f6:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A1:7D:C5:58:45:B7:01:06:CE:B3:A4:98:49:64:54:BE:64:0F:44:AB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d61b8ccc-6c22-424e-9614-8ab8ad28849c/0/A17DC55845B70106CEB3A498496454BE640F44AB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.31.248.0/23 103.52.60.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:06:12:7a:05:fb:39:87:7c:15:b3:2c:c8:71:00:99:ec:3d: c0:1b:4d:e0:29:10:72:02:21:ad:14:9c:95:4a:04:36:cf:1a: e6:ab:06:b6:86:a8:b2:16:f9:b1:99:6c:99:a6:68:14:52:cb: d7:b5:60:eb:97:31:da:81:ac:05:82:71:3a:b5:30:a7:bc:b8: 12:80:d5:66:21:23:f9:14:ad:ad:d1:ff:c5:29:4d:ea:46:0c: b1:38:70:78:21:f7:46:15:88:1f:db:b3:c8:8d:ed:52:57:c2: c0:1c:7a:4b:25:48:bd:2e:74:9a:da:b0:56:41:c1:70:65:5a: a6:43:2e:0f:62:df:96:82:1f:5c:92:0b:21:63:5b:3a:12:4c: b0:1c:4d:08:c2:e7:5f:c2:fc:31:bf:8a:2f:b7:a4:16:66:4c: 0d:9b:85:55:20:c6:02:38:b4:96:b1:42:f3:c2:19:f7:d9:40: 0e:3d:fe:a1:e9:8c:ad:fe:d1:44:bb:20:cc:df:50:ed:73:a9: 7e:b4:9a:93:2a:c3:8c:c1:0b:b3:99:cb:75:40:d0:4a:c7:2f: d7:dd:07:ab:5e:5c:b2:f9:ce:85:b3:a1:eb:e5:63:e4:bc:60: 25:85:7e:f2:89:3a:a1:84:89:29:ce:be:07:67:af:4d:aa:c5: 49:ea:37:2c -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUFA2mG/iB604fLw91kl/8tCWojFQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgwNTA0MTAwOVoX DTI0MDgwMzA0MTUwOVowMzExMC8GA1UEAxMoQTE3REM1NTg0NUI3MDEwNkNFQjNB NDk4NDk2NDU0QkU2NDBGNDRBQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL10BebVonHmGhOFp8R9U2/rFUwwuhmWGw0s/fEB8JuZJQ6XtTeUN0lSNkig Uju+ylYE2yHeOd4P6lPw8hfMK3SrzvaawSATIEzkeafkY69md0Ffcj5zAormxKVD eLG/yQiEUbA9QiHdmp13E4LiLC+MvzJG35oEURTVLRqyOboVEIGQMp9gujlGkYhR zyzTOr7Pp9+Qbz71HID1ZkTtXTNhWRnQ5Fc6zeG8HbVySsTgDWgqmDqtZv4u/9fm cuWUTTzQz5nz5x2OHVMjX4LL+5wdnynUzqm/KkeHbz3aRG2UDPOgYW0176F3FAHv kq8dUe/UKII/3CvprqmjyeGG9ukCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKF9xVhFtwEGzrOkmElkVL5kD0SrMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kNjFiOGNjYy02YzIyLTQyNGUtOTYxNC04YWI4YWQyODg0OWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q2MWI4Y2Nj LTZjMjItNDI0ZS05NjE0LThhYjhhZDI4ODQ5Yy8wL0ExN0RDNTU4NDVCNzAxMDZD RUIzQTQ5ODQ5NjQ1NEJFNjQwRjQ0QUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAFnH/gDBAFnNDwwDQYJKoZIhvcNAQELBQADggEBAF8GEnoF+zmHfBWzLMhxAJns PcAbTeApEHICIa0UnJVKBDbPGuarBraGqLIW+bGZbJmmaBRSy9e1YOuXMdqBrAWC cTq1MKe8uBKA1WYhI/kUra3R/8UpTepGDLE4cHgh90YViB/bs8iN7VJXwsAceksl SL0udJrasFZBwXBlWqZDLg9i35aCH1ySCyFjWzoSTLAcTQjC51/C/DG/ii+3pBZm TA2bhVUgxgI4tJaxQvPCGffZQA49/qHpjK3+0US7IMzfUO1zqX60mpMqw4zBC7OZ y3VA0ErHL9fdB6teXLL5zoWzoevlY+S8YCWFfvKJOqGEiSnOvgdnr02qxUnqNyw= -----END CERTIFICATE-----Generated at Wed May 8 21:02:19 2024 by rpki-client on console-fra.rpki-client.org