$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer File: A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.cer (raw, json) Hash identifier: Xg5zoDVhPR3/tPO1YjmSZ3iLZgDlqv6mUcRlnyAL8yo= Subject key identifier: A4:AC:49:C4:F5:5B:F5:D4:AF:3D:42:10:4A:8A:5E:C1:F2:12:3E:6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 3F625959A59471E308333FBFBA5B685441F2AD6B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.mft caRepository: rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 27 Feb 2024 05:01:53 +0000 Certificate not after: Tue 25 Feb 2025 05:06:53 +0000 Subordinate resources: IP: 103.81.64.0/22 IP: 2400:64c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:62:59:59:a5:94:71:e3:08:33:3f:bf:ba:5b:68:54:41:f2:ad:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 27 05:01:53 2024 GMT Not After : Feb 25 05:06:53 2025 GMT Subject: CN=A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:d1:3c:a2:82:90:09:0e:29:df:67:1e:65:d2: f3:e1:7d:ee:6d:54:a0:d3:6f:fe:80:a3:b8:79:96: ef:f2:02:2f:4c:60:21:f8:ec:4a:74:73:98:03:42: 54:10:3e:60:a7:32:6d:29:12:4a:d4:93:a4:63:d5: b6:5d:aa:a1:fc:38:a6:e5:15:c4:2e:3c:5d:c8:31: 36:ff:90:81:d4:09:bc:e3:b1:3e:12:a9:26:ab:72: 02:2a:de:34:49:2c:91:a9:b4:93:8b:6f:9b:71:7f: f1:d3:ba:7f:16:9f:c7:f3:65:83:71:71:f2:eb:0c: 3d:51:c7:ae:f2:ef:fd:c4:c8:a2:1a:fe:88:5b:7f: e0:d7:cc:a6:27:1e:ff:48:9d:c9:0b:37:83:d5:dc: d4:ca:1e:1a:ad:db:e5:8a:dc:47:e3:01:d6:d7:bc: f4:f3:8f:7c:cb:00:b4:76:15:9d:08:c5:3a:37:f7: 8e:87:97:33:57:d8:b0:bb:0c:b7:da:a0:99:7e:8a: 1c:ae:10:27:73:cd:10:5e:24:a6:51:af:ec:07:89: 92:34:0f:ec:7e:d7:b2:32:ed:49:6d:4c:56:fa:d1: a0:9b:e3:b7:1d:35:1f:22:d7:c6:12:e4:11:c1:33: 68:89:68:57:bd:d8:99:65:6b:76:72:6a:f5:48:02: 57:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A4:AC:49:C4:F5:5B:F5:D4:AF:3D:42:10:4A:8A:5E:C1:F2:12:3E:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/57280400-9654-4d45-888b-9067bada190b/0/A4AC49C4F55BF5D4AF3D42104A8A5EC1F2123E6F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.81.64.0/22 IPv6: 2400:64c0::/32 Signature Algorithm: sha256WithRSAEncryption 90:6a:fe:2f:f9:8c:4c:0c:a4:19:40:a1:17:c5:03:1d:2d:3c: c5:26:8d:27:49:fd:50:18:8d:9e:00:e7:a1:b1:60:6b:81:20: 20:4a:15:f9:94:26:13:a0:3f:9e:d0:85:a5:f7:ad:03:7a:05: 0a:6f:4e:a3:80:35:9b:87:bf:be:97:1e:19:85:31:97:e8:1c: 43:da:9e:90:60:3f:dc:b2:a7:30:97:c1:7c:ae:eb:b4:fd:40: 14:d2:2a:72:3a:9d:92:f1:c3:2c:eb:8f:d3:a6:8e:a0:d1:48: 0b:7a:44:af:4d:9a:46:61:9a:15:d6:5b:5f:37:c1:eb:e1:80: 5a:8b:a3:41:fc:7a:98:7b:23:90:ac:ff:0f:28:01:17:78:3d: 57:a7:62:e5:db:af:a6:0a:ce:9f:c9:72:d7:06:94:b4:18:ff: 4c:f5:15:e5:d3:9d:35:cf:28:82:38:e6:8f:73:18:28:18:42: 3b:bc:57:93:18:a3:ab:46:7d:27:be:9b:a8:08:8c:fd:90:92: 8d:bf:2f:1c:b7:7d:4a:3b:72:dc:9e:67:bf:aa:1f:9e:cc:c6: 7d:fe:ff:ae:7e:b4:3d:d9:15:2b:c2:ca:47:3b:ed:2f:ce:31: 54:62:7e:b2:24:58:9a:8d:ff:9b:01:02:23:ac:eb:f5:9e:c3: e2:73:d9:3d -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUP2JZWaWUceMIMz+/ultoVEHyrWswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyNzA1MDE1M1oX DTI1MDIyNTA1MDY1M1owMzExMC8GA1UEAxMoQTRBQzQ5QzRGNTVCRjVENEFGM0Q0 MjEwNEE4QTVFQzFGMjEyM0U2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANTRPKKCkAkOKd9nHmXS8+F97m1UoNNv/oCjuHmW7/ICL0xgIfjsSnRzmANC VBA+YKcybSkSStSTpGPVtl2qofw4puUVxC48XcgxNv+QgdQJvOOxPhKpJqtyAire NEkskam0k4tvm3F/8dO6fxafx/Nlg3Fx8usMPVHHrvLv/cTIohr+iFt/4NfMpice /0idyQs3g9Xc1MoeGq3b5YrcR+MB1te89POPfMsAtHYVnQjFOjf3joeXM1fYsLsM t9qgmX6KHK4QJ3PNEF4kplGv7AeJkjQP7H7XsjLtSW1MVvrRoJvjtx01HyLXxhLk EcEzaIloV73YmWVrdnJq9UgCV7sCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKSsScT1W/XUrz1CEEqKXsHyEj5vMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81NzI4MDQwMC05NjU0LTRkNDUtODg4Yi05MDY3YmFkYTE5MGIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU3MjgwNDAw LTk2NTQtNGQ0NS04ODhiLTkwNjdiYWRhMTkwYi8wL0E0QUM0OUM0RjU1QkY1RDRB RjNENDIxMDRBOEE1RUMxRjIxMjNFNkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnUUAwDQQCAAIwBwMFACQAZMAwDQYJKoZIhvcNAQELBQADggEBAJBq/i/5jEwM pBlAoRfFAx0tPMUmjSdJ/VAYjZ4A56GxYGuBICBKFfmUJhOgP57QhaX3rQN6BQpv TqOANZuHv76XHhmFMZfoHEPanpBgP9yypzCXwXyu67T9QBTSKnI6nZLxwyzrj9Om jqDRSAt6RK9NmkZhmhXWW183wevhgFqLo0H8eph7I5Cs/w8oARd4PVenYuXbr6YK zp/JctcGlLQY/0z1FeXTnTXPKII45o9zGCgYQju8V5MYo6tGfSe+m6gIjP2Qko2/ Lxy3fUo7ctyeZ7+qH57Mxn3+/65+tD3ZFSvCykc77S/OMVRifrIkWJqN/5sBAiOs 6/Wew+Jz2T0= -----END CERTIFICATE-----Generated at Wed May 8 04:37:54 2024 by rpki-client on console-fra.rpki-client.org