$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AA90F6A6378710CD695B4CC742651F235E503C5B.cer File: AA90F6A6378710CD695B4CC742651F235E503C5B.cer (raw, json) Hash identifier: dgCQbIHcb1s/hXzBCbrUmfYHedXkSJ5C8QJrPeWZvLE= Subject key identifier: AA:90:F6:A6:37:87:10:CD:69:5B:4C:C7:42:65:1F:23:5E:50:3C:5B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4172C66B717E46465846291B64B02243E3F24061 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/AA90F6A6378710CD695B4CC742651F235E503C5B.mft caRepository: rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 27 Nov 2023 12:00:34 +0000 Certificate not after: Mon 25 Nov 2024 12:05:34 +0000 Subordinate resources: IP: 180.131.128.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:72:c6:6b:71:7e:46:46:58:46:29:1b:64:b0:22:43:e3:f2:40:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 27 12:00:34 2023 GMT Not After : Nov 25 12:05:34 2024 GMT Subject: CN=AA90F6A6378710CD695B4CC742651F235E503C5B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:de:9e:7b:ce:82:78:d8:1e:64:0f:51:a9:1b: ea:52:75:0e:5a:2e:d6:74:41:ca:04:ab:b0:55:6b: 0f:c9:ae:f9:8b:1e:db:2f:dd:dc:9f:40:33:00:7c: 7c:be:89:4c:ab:0e:d2:40:ec:e1:96:6e:dd:9a:83: 1b:45:0b:ea:e4:14:2a:7b:d3:83:be:63:89:05:9c: 7f:9e:73:62:10:49:df:ca:49:7f:18:a0:49:ad:dd: bb:9d:c7:fe:85:01:35:fa:c6:80:62:6f:ba:df:62: 7e:85:be:b8:7b:be:41:a5:59:d7:43:a6:f0:8e:42: b3:f7:d7:9e:1d:29:d3:bd:3f:dc:08:88:9a:ef:14: 3a:03:60:15:08:cb:ec:c0:ed:9e:11:d5:5e:87:df: 2e:2f:4f:f1:e8:9c:81:3d:93:48:f6:4c:c6:eb:2d: ae:4d:77:fe:56:6a:92:29:45:d8:35:35:54:54:96: 65:1e:7a:8b:eb:4c:e9:46:32:08:1e:d7:b2:8a:12: 0f:04:a0:c8:c5:b1:d5:9b:89:39:be:4b:53:e9:42: 94:25:77:5d:40:c4:79:7a:91:b7:03:64:96:b8:1f: 5e:46:a3:a1:8c:92:df:77:46:f7:5c:cf:8f:78:47: 2b:0f:d8:87:3c:b3:1e:1c:17:9d:ca:24:1c:1a:32: 06:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AA:90:F6:A6:37:87:10:CD:69:5B:4C:C7:42:65:1F:23:5E:50:3C:5B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7d02a58d-b958-4219-86d3-61e43cee319a/0/AA90F6A6378710CD695B4CC742651F235E503C5B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 180.131.128.0/24 Signature Algorithm: sha256WithRSAEncryption 43:71:73:1f:3d:64:31:ac:2f:96:49:09:83:6e:c1:7e:af:20: a0:27:18:ac:d8:f7:a9:23:0a:62:33:e2:b8:41:f2:bf:71:9b: 1d:ac:b6:ab:c8:9a:09:59:33:9a:36:cd:a8:78:32:b3:fd:69: 5d:14:46:1f:67:69:39:28:09:1b:33:4e:1c:7e:b9:10:83:25: 9f:4a:bc:53:bb:2f:5b:b3:31:6f:b3:cd:03:68:2e:a5:46:e4: 51:ca:8a:67:41:19:41:ea:5c:35:97:52:f9:28:a5:ce:3c:b3: b8:b1:c1:29:a5:09:f6:4a:21:96:66:77:af:05:d6:dd:ca:31: 95:bf:36:c5:5d:c1:83:d1:65:0b:e1:c1:c4:b7:03:67:e5:36: dd:2e:1d:53:10:08:fa:90:f9:1e:96:e1:2a:88:53:5a:f5:2e: 8f:46:d8:89:da:c8:fa:a1:18:b3:6e:48:09:31:2b:e5:aa:83: fe:d2:4b:ec:1f:a3:5b:b5:aa:ff:bd:7e:20:cc:89:12:48:29: 97:6c:16:91:b4:de:a5:6a:a2:7c:b2:89:0c:ae:c2:a7:2f:30: 4a:4c:88:6d:4d:4c:6b:73:ed:d7:90:3e:00:b1:c7:b0:f6:f3: 14:a0:e2:df:cf:2a:e0:c6:a7:c3:5d:9a:1a:ca:74:f0:98:ef: 1f:28:6a:0f -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQXLGa3F+RkZYRikbZLAiQ+PyQGEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyNzEyMDAzNFoX DTI0MTEyNTEyMDUzNFowMzExMC8GA1UEAxMoQUE5MEY2QTYzNzg3MTBDRDY5NUI0 Q0M3NDI2NTFGMjM1RTUwM0M1QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJnennvOgnjYHmQPUakb6lJ1Dlou1nRBygSrsFVrD8mu+Yse2y/d3J9AMwB8 fL6JTKsO0kDs4ZZu3ZqDG0UL6uQUKnvTg75jiQWcf55zYhBJ38pJfxigSa3du53H /oUBNfrGgGJvut9ifoW+uHu+QaVZ10Om8I5Cs/fXnh0p070/3AiImu8UOgNgFQjL 7MDtnhHVXoffLi9P8eicgT2TSPZMxustrk13/lZqkilF2DU1VFSWZR56i+tM6UYy CB7XsooSDwSgyMWx1ZuJOb5LU+lClCV3XUDEeXqRtwNklrgfXkajoYyS33dG91zP j3hHKw/YhzyzHhwXncokHBoyBnMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKqQ9qY3hxDNaVtMx0JlHyNeUDxbMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZDAyYTU4ZC1iOTU4LTQyMTktODZkMy02MWU0M2NlZTMxOWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkMDJhNThk LWI5NTgtNDIxOS04NmQzLTYxZTQzY2VlMzE5YS8wL0FBOTBGNkE2Mzc4NzEwQ0Q2 OTVCNENDNzQyNjUxRjIzNUU1MDNDNUIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAC0g4AwDQYJKoZIhvcNAQELBQADggEBAENxcx89ZDGsL5ZJCYNuwX6vIKAnGKzY 96kjCmIz4rhB8r9xmx2stqvImglZM5o2zah4MrP9aV0URh9naTkoCRszThx+uRCD JZ9KvFO7L1uzMW+zzQNoLqVG5FHKimdBGUHqXDWXUvkopc48s7ixwSmlCfZKIZZm d68F1t3KMZW/NsVdwYPRZQvhwcS3A2flNt0uHVMQCPqQ+R6W4SqIU1r1Lo9G2Ina yPqhGLNuSAkxK+Wqg/7SS+wfo1u1qv+9fiDMiRJIKZdsFpG03qVqonyyiQyuwqcv MEpMiG1NTGtz7deQPgCxx7D28xSg4t/PKuDGp8NdmhrKdPCY7x8oag8= -----END CERTIFICATE-----Generated at Wed May 8 18:12:13 2024 by rpki-client on console-fra.rpki-client.org