$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.cer File: A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.cer (raw, json) Hash identifier: M8/UqeTznvDP9Ho5gns8JkAQ20PcONGTedZZy71fO3I= Subject key identifier: A3:EF:DD:DA:D5:26:EF:A3:F2:82:1E:9E:6E:C6:E7:47:BB:5B:12:46 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1E330FF25011E293B600C60E4CC9D537AAF240B7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.mft caRepository: rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 29 Nov 2023 02:51:42 +0000 Certificate not after: Wed 27 Nov 2024 02:56:42 +0000 Subordinate resources: IP: 103.147.80.0/23 IP: 2405:b240::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:33:0f:f2:50:11:e2:93:b6:00:c6:0e:4c:c9:d5:37:aa:f2:40:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 29 02:51:42 2023 GMT Not After : Nov 27 02:56:42 2024 GMT Subject: CN=A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b0:db:7b:7f:91:0b:f7:20:58:c9:c1:9e:af: 6e:67:52:34:70:cb:a1:19:43:eb:6b:05:8d:26:44: 07:8d:cf:8b:14:37:1e:aa:6e:8f:86:16:57:3e:01: 4d:7c:0a:6e:b1:e6:00:06:f9:92:d1:93:c0:0c:b8: dd:6e:9d:7c:2e:05:82:22:01:a0:ec:f0:ea:de:02: df:83:6c:13:ff:ff:0a:3c:76:40:76:9f:17:5d:6f: 6e:af:8c:58:e1:71:0d:5d:f0:c8:f3:8f:fb:d2:73: 7a:9e:1c:bc:9f:af:3d:05:82:ef:01:f4:46:35:39: bf:32:e6:9e:36:5e:40:e0:19:9a:a2:16:21:26:e2: 85:5a:46:17:64:b1:2d:76:b4:95:b5:b7:ee:63:f5: 27:00:5e:6d:9a:d0:41:2c:bf:a0:38:ac:b9:c5:ca: dc:dd:a6:f4:68:f8:e5:de:80:91:10:a7:74:61:13: 2c:e3:37:b1:5e:e3:ee:53:82:bc:fd:c4:af:ae:4d: 06:8b:06:49:28:f0:1a:6d:ba:fd:2a:ce:b5:48:1a: d9:d3:9c:7a:b6:8e:90:48:cf:03:63:b1:c6:20:c0: 25:50:45:87:e4:6a:2a:e5:75:60:00:77:d4:71:05: aa:b8:45:f4:c5:c3:f1:b8:73:aa:f0:52:2b:d0:24: 69:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A3:EF:DD:DA:D5:26:EF:A3:F2:82:1E:9E:6E:C6:E7:47:BB:5B:12:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c6c570ef-6efd-4f97-bf31-968126ab57c0/0/A3EFDDDAD526EFA3F2821E9E6EC6E747BB5B1246.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.147.80.0/23 IPv6: 2405:b240::/32 Signature Algorithm: sha256WithRSAEncryption 30:11:a4:9c:9b:0c:f1:fa:32:03:09:5e:b9:28:82:44:d9:81: ba:44:32:36:29:35:5b:fe:1a:75:b0:42:72:1f:a5:a0:38:77: 28:2b:45:0f:ba:cb:9c:e8:85:00:45:2c:4a:f1:3b:82:5c:b9: 22:7e:0b:99:3d:77:24:10:b3:30:6f:4b:1a:53:40:c5:5c:bf: 74:c8:dc:f1:a6:8b:1a:73:8e:28:eb:af:f6:d5:2f:9a:dc:94: 94:32:76:f8:5b:dd:05:b5:6d:7e:44:fe:e7:8d:69:c1:8a:03: 6a:dc:0b:30:a5:79:a9:b5:d2:a5:fc:ea:06:7d:7d:5a:da:3e: a5:be:bd:c3:e8:56:b1:c8:3e:cb:ab:bc:40:dc:ef:bd:58:b0: f2:dc:49:f7:fc:17:e4:97:26:b4:8c:d7:6e:9c:69:a9:f1:d1: 0d:00:83:f0:44:17:bc:86:6a:cf:df:b5:4b:f2:a4:5f:46:c5: 26:5c:34:16:59:55:fb:50:e0:12:3a:66:c6:77:48:9a:fe:5c: e5:e0:79:7f:09:ec:a3:17:af:00:77:ae:57:44:50:4b:ef:e9: 70:c3:ac:14:14:7f:bc:30:46:ce:30:c6:72:74:be:19:95:b5: 46:4c:91:66:f8:db:01:e7:ec:13:d8:ed:ce:39:a8:a6:1a:a6: 05:88:dd:e7 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUHjMP8lAR4pO2AMYOTMnVN6ryQLcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyOTAyNTE0MloX DTI0MTEyNzAyNTY0MlowMzExMC8GA1UEAxMoQTNFRkREREFENTI2RUZBM0YyODIx RTlFNkVDNkU3NDdCQjVCMTI0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALGw23t/kQv3IFjJwZ6vbmdSNHDLoRlD62sFjSZEB43PixQ3Hqpuj4YWVz4B TXwKbrHmAAb5ktGTwAy43W6dfC4FgiIBoOzw6t4C34NsE///Cjx2QHafF11vbq+M WOFxDV3wyPOP+9Jzep4cvJ+vPQWC7wH0RjU5vzLmnjZeQOAZmqIWISbihVpGF2Sx LXa0lbW37mP1JwBebZrQQSy/oDisucXK3N2m9Gj45d6AkRCndGETLOM3sV7j7lOC vP3Er65NBosGSSjwGm26/SrOtUga2dOceraOkEjPA2OxxiDAJVBFh+RqKuV1YAB3 1HEFqrhF9MXD8bhzqvBSK9AkaR0CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKPv3drVJu+j8oIenm7G50e7WxJGMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jNmM1NzBlZi02ZWZkLTRmOTctYmYzMS05NjgxMjZhYjU3YzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M2YzU3MGVm LTZlZmQtNGY5Ny1iZjMxLTk2ODEyNmFiNTdjMC8wL0EzRUZERERBRDUyNkVGQTNG MjgyMUU5RTZFQzZFNzQ3QkI1QjEyNDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnk1AwDQQCAAIwBwMFACQFskAwDQYJKoZIhvcNAQELBQADggEBADARpJybDPH6 MgMJXrkogkTZgbpEMjYpNVv+GnWwQnIfpaA4dygrRQ+6y5zohQBFLErxO4JcuSJ+ C5k9dyQQszBvSxpTQMVcv3TI3PGmixpzjijrr/bVL5rclJQydvhb3QW1bX5E/ueN acGKA2rcCzCleam10qX86gZ9fVraPqW+vcPoVrHIPsurvEDc771YsPLcSff8F+SX JrSM126caanx0Q0Ag/BEF7yGas/ftUvypF9GxSZcNBZZVftQ4BI6ZsZ3SJr+XOXg eX8J7KMXrwB3rldEUEvv6XDDrBQUf7wwRs4wxnJ0vhmVtUZMkWb42wHn7BPY7c45 qKYapgWI3ec= -----END CERTIFICATE-----Generated at Wed May 8 10:06:51 2024 by rpki-client on console-ams.rpki-client.org