$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A708865394D992A01D1736F0AB500E24889B7F34.cer File: A708865394D992A01D1736F0AB500E24889B7F34.cer (raw, json) Hash identifier: HyMWz9EeqORMAVKDNLHzOxPU37I2afQMV3LBwF8DCpQ= Subject key identifier: A7:08:86:53:94:D9:92:A0:1D:17:36:F0:AB:50:0E:24:88:9B:7F:34 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 27E3A314988E1405D4F2FA9FF90C5A930BDEDDA7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/A708865394D992A01D1736F0AB500E24889B7F34.mft caRepository: rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 28 Jul 2023 01:47:15 +0000 Certificate not after: Fri 26 Jul 2024 01:52:15 +0000 Subordinate resources: IP: 103.242.10.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:e3:a3:14:98:8e:14:05:d4:f2:fa:9f:f9:0c:5a:93:0b:de:dd:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 28 01:47:15 2023 GMT Not After : Jul 26 01:52:15 2024 GMT Subject: CN=A708865394D992A01D1736F0AB500E24889B7F34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ee:20:40:f7:8b:41:5c:b7:2f:67:21:83:8e: b6:4a:a8:a4:4d:d9:1c:10:b0:eb:54:68:55:2a:24: 92:39:62:38:fd:c1:f0:7f:7b:fb:5e:d6:1e:af:92: 5f:fa:db:fa:8f:d8:8e:86:c3:af:4c:21:64:0d:10: 55:19:ae:b1:02:e7:ff:96:c7:16:fb:1b:1d:3a:e6: 35:e9:ba:2b:a0:4a:be:a8:c1:28:79:d4:91:d0:d1: 93:68:0d:70:0c:94:7c:d6:56:77:e2:f6:dd:8f:bd: b3:db:d5:0c:80:7a:84:e8:1f:69:a7:c7:b4:a9:2d: 86:f0:53:63:0e:b6:72:45:14:2b:bf:c0:d2:5d:c9: b8:7e:90:8f:42:d6:91:8f:77:e9:03:dd:e9:c4:4d: cc:44:c5:b0:73:07:d2:e7:ef:96:24:93:fc:36:86: 0e:d3:7d:a9:5e:54:97:29:57:18:5c:60:6b:c1:d8: 91:30:dd:ec:92:55:40:09:cf:14:60:54:eb:06:32: 72:ec:58:f0:76:16:eb:88:66:43:b0:1f:42:dc:8d: 5c:5e:7b:a3:e7:dd:97:5b:82:90:10:a4:0d:08:4e: 57:81:d9:b6:ee:d8:ff:28:fd:5f:f8:93:31:31:4e: d6:33:de:d3:88:2a:cf:65:6b:df:c3:93:1c:78:32: fb:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A7:08:86:53:94:D9:92:A0:1D:17:36:F0:AB:50:0E:24:88:9B:7F:34 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bf0c7a37-5d19-4c5c-9301-a14a7f185c92/0/A708865394D992A01D1736F0AB500E24889B7F34.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.242.10.0/23 Signature Algorithm: sha256WithRSAEncryption 78:67:f9:53:16:9e:d9:9a:d0:c3:ed:d3:be:59:8e:72:ce:15: 3b:f3:0d:a8:06:21:81:ff:7f:f5:3e:5f:b4:eb:9f:35:df:b4: 80:5b:6a:26:48:92:f0:69:78:fc:4c:b1:e0:3e:e8:ad:bc:a8: a3:91:0f:99:84:89:c4:15:58:e8:ea:2c:99:b0:07:25:f5:2e: 3c:27:4a:e4:66:93:36:9f:03:da:f0:4a:74:f2:f7:9e:69:b8: 37:56:a1:ba:52:02:8b:f6:16:94:2e:a8:37:2f:25:57:f6:fb: 85:26:64:a9:8e:e6:3e:3e:73:0f:09:92:1b:78:fd:70:cc:a3: 8c:79:3d:64:7a:89:64:d0:bd:9a:24:2e:07:85:ee:9d:df:ad: 43:43:5a:3f:33:49:f4:41:55:3a:6c:c5:14:e0:34:22:94:c2: a3:c7:8a:d0:4e:80:d7:12:04:1d:b7:81:ce:56:82:f3:53:6a: aa:9e:4e:07:8b:e6:42:c5:b2:b0:cd:de:df:0f:2d:a8:23:c2: 93:19:e8:4b:97:4c:50:a2:7c:04:c5:00:b5:99:0c:c3:62:ef: bd:9e:0b:c4:9f:3b:b9:51:08:76:71:98:e8:fb:b1:17:38:8f: d0:b7:7c:ba:3c:70:5e:9e:3e:05:3e:3e:61:e8:3c:57:81:18: 96:84:81:96 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJ+OjFJiOFAXU8vqf+Qxakwve3acwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyODAxNDcxNVoX DTI0MDcyNjAxNTIxNVowMzExMC8GA1UEAxMoQTcwODg2NTM5NEQ5OTJBMDFEMTcz NkYwQUI1MDBFMjQ4ODlCN0YzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOXuIED3i0Fcty9nIYOOtkqopE3ZHBCw61RoVSokkjliOP3B8H97+17WHq+S X/rb+o/YjobDr0whZA0QVRmusQLn/5bHFvsbHTrmNem6K6BKvqjBKHnUkdDRk2gN cAyUfNZWd+L23Y+9s9vVDIB6hOgfaafHtKkthvBTYw62ckUUK7/A0l3JuH6Qj0LW kY936QPd6cRNzETFsHMH0ufvliST/DaGDtN9qV5UlylXGFxga8HYkTDd7JJVQAnP FGBU6wYycuxY8HYW64hmQ7AfQtyNXF57o+fdl1uCkBCkDQhOV4HZtu7Y/yj9X/iT MTFO1jPe04gqz2Vr38OTHHgy+ycCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKcIhlOU2ZKgHRc28KtQDiSIm380MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZjBjN2EzNy01ZDE5LTRjNWMtOTMwMS1hMTRhN2YxODVjOTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmMGM3YTM3 LTVkMTktNGM1Yy05MzAxLWExNGE3ZjE4NWM5Mi8wL0E3MDg4NjUzOTREOTkyQTAx RDE3MzZGMEFCNTAwRTI0ODg5QjdGMzQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFn8gowDQYJKoZIhvcNAQELBQADggEBAHhn+VMWntma0MPt075ZjnLOFTvzDagG IYH/f/U+X7TrnzXftIBbaiZIkvBpePxMseA+6K28qKORD5mEicQVWOjqLJmwByX1 LjwnSuRmkzafA9rwSnTy955puDdWobpSAov2FpQuqDcvJVf2+4UmZKmO5j4+cw8J kht4/XDMo4x5PWR6iWTQvZokLgeF7p3frUNDWj8zSfRBVTpsxRTgNCKUwqPHitBO gNcSBB23gc5WgvNTaqqeTgeL5kLFsrDN3t8PLagjwpMZ6EuXTFCifATFALWZDMNi 772eC8SfO7lRCHZxmOj7sRc4j9C3fLo8cF6ePgU+PmHoPFeBGJaEgZY= -----END CERTIFICATE-----Generated at Wed May 8 22:46:41 2024 by rpki-client on console-ams.rpki-client.org