$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A.cer File: A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A.cer (raw, json) Hash identifier: Q3GdSJLLHfuBuWS/ZovfFV9WEdVxCbDhaEMIiO9Y+AQ= Subject key identifier: A7:D5:3E:B5:45:1E:AF:8A:CA:B6:38:48:7F:BD:EB:40:17:7A:0F:8A Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09DDDFB3B5AE6CC68854A3512EE6BD0D184E23E8 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7620b423-dd5d-448f-bbd3-04530ec1715d/0/A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A.mft caRepository: rsync://repo-rpki.idnic.net/repo/7620b423-dd5d-448f-bbd3-04530ec1715d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 29 Nov 2023 13:28:15 +0000 Certificate not after: Wed 27 Nov 2024 13:33:15 +0000 Subordinate resources: IP: 103.190.62.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:dd:df:b3:b5:ae:6c:c6:88:54:a3:51:2e:e6:bd:0d:18:4e:23:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 29 13:28:15 2023 GMT Not After : Nov 27 13:33:15 2024 GMT Subject: CN=A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e1:be:52:ba:92:e5:de:2b:8d:f5:3f:1e:1d: 08:5d:68:80:14:d8:91:e9:33:2d:c6:b9:41:b3:23: 6b:7e:c8:c7:91:5c:be:93:4d:69:81:cd:d3:aa:23: e7:a2:e5:25:b1:ce:cb:86:17:be:6e:bd:cd:92:f6: 1f:80:17:97:85:31:a5:6c:67:19:e7:fb:95:12:de: 25:ee:6e:d5:20:8b:b4:90:44:56:e0:80:47:18:66: 19:5c:6e:d8:03:1d:2e:22:42:4f:04:1a:b5:96:9d: 4d:c7:26:b1:9e:ef:2d:b7:c8:6f:5e:b2:d1:2b:3c: b6:01:40:bd:fa:b5:17:2e:46:34:d4:f3:59:18:cd: a2:2d:63:72:5e:89:d4:38:7b:aa:10:26:62:7a:7a: 38:8c:7a:50:03:80:ad:2b:97:67:4a:f0:04:73:eb: f6:52:dd:49:09:48:3f:15:68:b3:32:e3:93:22:7c: e6:49:04:af:82:0b:31:b6:fb:ab:e0:a2:a3:26:22: 87:c2:1b:cd:7d:f1:ea:4b:37:58:1a:d0:bf:c0:0f: 22:d2:0f:cd:72:bf:df:cb:ba:d8:13:81:17:6c:d9: 2e:2f:df:92:f1:a2:ea:f5:21:f1:98:02:e8:96:28: b8:dd:05:e0:b5:ab:79:19:51:e5:15:56:45:35:a0: 21:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A7:D5:3E:B5:45:1E:AF:8A:CA:B6:38:48:7F:BD:EB:40:17:7A:0F:8A X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7620b423-dd5d-448f-bbd3-04530ec1715d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7620b423-dd5d-448f-bbd3-04530ec1715d/0/A7D53EB5451EAF8ACAB638487FBDEB40177A0F8A.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.62.0/23 Signature Algorithm: sha256WithRSAEncryption 73:fd:ed:44:49:e4:8e:2f:ab:e3:8b:cb:f1:7d:27:60:c3:f6: 7a:ad:d5:88:13:19:2a:5b:4a:80:21:3a:7e:69:c0:bc:c8:85: c2:85:01:18:dc:48:8c:03:89:49:13:cb:04:60:ad:4a:b8:53: aa:a1:e9:7e:1d:53:40:8d:1f:95:2e:f9:5e:04:ef:f2:ee:cf: 61:04:d6:41:92:dd:0a:67:88:ab:3b:5e:70:96:fb:c9:20:af: 1e:88:9a:c5:93:a2:47:92:f8:cd:e8:a0:e9:a4:6a:e9:33:8c: 1f:b3:c1:b1:52:5e:90:dd:53:93:0f:fa:65:98:ec:57:e2:16: ff:83:50:38:90:c7:2a:2c:f3:ea:fa:0a:96:24:c4:39:0a:3d: 66:17:e3:4d:ce:1b:d8:c1:56:9f:b1:7b:c1:c0:3f:10:a3:7e: 48:36:32:71:75:64:db:f0:ef:a0:8f:72:14:39:9b:12:e5:ff: f7:3f:0f:6e:6d:43:4b:50:8b:2a:f7:74:16:a6:bd:74:37:64: a2:a2:60:6e:b7:bd:9d:6c:39:ef:13:6f:8c:06:95:a2:b6:84: 7d:b8:59:56:61:9b:2b:7f:77:a7:59:4f:36:9b:7e:e3:a8:01: f0:92:2b:91:34:97:41:3c:81:e1:da:0a:cc:c4:a1:1f:ee:79: 92:30:18:64 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCd3fs7WubMaIVKNRLua9DRhOI+gwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyOTEzMjgxNVoX DTI0MTEyNzEzMzMxNVowMzExMC8GA1UEAxMoQTdENTNFQjU0NTFFQUY4QUNBQjYz ODQ4N0ZCREVCNDAxNzdBMEY4QTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALHhvlK6kuXeK431Px4dCF1ogBTYkekzLca5QbMja37Ix5FcvpNNaYHN06oj 56LlJbHOy4YXvm69zZL2H4AXl4UxpWxnGef7lRLeJe5u1SCLtJBEVuCARxhmGVxu 2AMdLiJCTwQatZadTccmsZ7vLbfIb16y0Ss8tgFAvfq1Fy5GNNTzWRjNoi1jcl6J 1Dh7qhAmYnp6OIx6UAOArSuXZ0rwBHPr9lLdSQlIPxVoszLjkyJ85kkEr4ILMbb7 q+CioyYih8IbzX3x6ks3WBrQv8APItIPzXK/38u62BOBF2zZLi/fkvGi6vUh8ZgC 6JYouN0F4LWreRlR5RVWRTWgIa8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKfVPrVFHq+KyrY4SH+960AXeg+KMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NjIwYjQyMy1kZDVkLTQ0OGYtYmJkMy0wNDUzMGVjMTcxNWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc2MjBiNDIz LWRkNWQtNDQ4Zi1iYmQzLTA0NTMwZWMxNzE1ZC8wL0E3RDUzRUI1NDUxRUFGOEFD QUI2Mzg0ODdGQkRFQjQwMTc3QTBGOEEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvj4wDQYJKoZIhvcNAQELBQADggEBAHP97URJ5I4vq+OLy/F9J2DD9nqt1YgT GSpbSoAhOn5pwLzIhcKFARjcSIwDiUkTywRgrUq4U6qh6X4dU0CNH5Uu+V4E7/Lu z2EE1kGS3QpniKs7XnCW+8kgrx6ImsWTokeS+M3ooOmkaukzjB+zwbFSXpDdU5MP +mWY7FfiFv+DUDiQxyos8+r6CpYkxDkKPWYX403OG9jBVp+xe8HAPxCjfkg2MnF1 ZNvw76CPchQ5mxLl//c/D25tQ0tQiyr3dBamvXQ3ZKKiYG63vZ1sOe8Tb4wGlaK2 hH24WVZhmyt/d6dZTzabfuOoAfCSK5E0l0E8geHaCszEoR/ueZIwGGQ= -----END CERTIFICATE-----Generated at Wed May 8 18:12:13 2024 by rpki-client on console-fra.rpki-client.org