$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B4771724B89252E420CF8D2504309C8B69AC30CB.cer File: B4771724B89252E420CF8D2504309C8B69AC30CB.cer (raw, json) Hash identifier: 3nMEupSKEXFUATuA6YRPW4SLTY4ig3L6oubK1xkBeVo= Subject key identifier: B4:77:17:24:B8:92:52:E4:20:CF:8D:25:04:30:9C:8B:69:AC:30:CB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A83797F25EC87863971E7CAED7EDADBFB8D0112 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/B4771724B89252E420CF8D2504309C8B69AC30CB.mft caRepository: rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 05 Oct 2023 10:47:12 +0000 Certificate not after: Thu 03 Oct 2024 10:52:12 +0000 Subordinate resources: IP: 103.13.136.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:83:79:7f:25:ec:87:86:39:71:e7:ca:ed:7e:da:db:fb:8d:01:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 5 10:47:12 2023 GMT Not After : Oct 3 10:52:12 2024 GMT Subject: CN=B4771724B89252E420CF8D2504309C8B69AC30CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:13:41:4a:79:16:fd:f6:9f:cd:e2:c4:a4:40: f3:f5:7d:30:83:b2:ba:d0:30:5c:81:41:f5:37:30: 14:d5:49:8c:9a:73:08:cd:d0:c5:f6:86:b9:8e:16: 41:58:81:c5:65:4b:a6:ba:a5:d1:2b:5e:95:64:af: 0b:0a:25:b0:b0:0f:51:dd:a0:3f:7f:e9:6d:24:f5: 47:f4:23:58:8e:e5:2a:84:52:a0:31:56:f1:fa:20: 37:c2:13:d8:d1:a3:4f:30:70:71:95:f3:3e:71:20: 9a:7c:9b:03:a7:96:84:c0:c8:78:e3:cd:5c:8c:02: 38:22:26:6f:bf:cd:e3:f8:96:3c:1a:35:0c:0e:5d: 99:70:5e:d3:b8:d1:1b:26:33:e4:23:6a:11:41:04: f3:f8:de:07:7b:99:c9:3d:73:54:6b:ff:8b:92:b8: d3:96:08:15:c0:68:90:e5:a7:24:33:f8:19:a5:de: 35:40:47:49:b7:f9:4f:ee:0a:4d:99:3d:e9:e1:fd: 7e:a6:17:10:88:60:f6:ed:67:46:3d:49:af:5a:7d: d7:0c:c1:5c:89:ec:c8:ad:5c:c2:ad:9d:ee:63:bc: 1a:f2:d0:61:49:f7:cc:b2:d0:64:af:cb:b5:c7:d8: 34:3b:fa:b1:20:b8:ea:c3:53:75:62:7f:e8:47:bf: 66:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B4:77:17:24:B8:92:52:E4:20:CF:8D:25:04:30:9C:8B:69:AC:30:CB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b55af8af-a40f-42c7-9f4c-18e0ca5cd47e/0/B4771724B89252E420CF8D2504309C8B69AC30CB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.13.136.0/23 Signature Algorithm: sha256WithRSAEncryption 18:69:df:17:10:31:c5:7e:08:e1:cd:3a:44:22:16:78:0a:26: 2c:e8:4f:72:95:8e:2d:4f:4c:07:2b:0b:89:a3:47:bc:80:89: ca:7e:ac:d6:48:89:1d:67:39:9d:a4:5f:e7:ac:86:ca:d9:ec: 74:3e:6d:b7:63:0e:e4:27:87:9a:04:26:30:20:70:91:9a:e2: f3:08:d8:0a:ac:46:46:e2:a7:4a:6b:d4:cc:fb:fb:c0:00:d2: f6:2e:a2:8d:3f:86:6f:95:fe:9b:2a:ec:34:1e:73:34:0e:11: 36:64:a5:ec:34:b7:5b:db:39:da:b9:e0:b4:32:b5:b7:4e:41: 19:83:42:7e:5d:bb:28:ce:52:58:fd:7d:62:91:1a:35:15:c0: bb:e3:9a:5c:37:08:bd:c1:3c:f2:43:77:d1:4c:e2:cd:9f:db: 40:54:43:50:52:de:0c:c7:66:db:70:6b:42:15:e8:9c:ab:08: 06:90:73:4a:20:e8:c1:cd:20:f8:40:fd:1d:45:9e:c3:7d:77: 99:bf:72:55:a6:d2:bc:ab:e1:11:59:40:74:90:f7:06:9e:66: ad:9b:84:ab:57:67:40:0f:30:e6:02:b9:3d:55:83:31:98:f2: 9c:d9:38:05:dd:e8:8e:3c:24:1c:87:c4:d2:a1:f5:c4:7f:af: 50:53:6d:1c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGoN5fyXsh4Y5cefK7X7a2/uNARIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNTEwNDcxMloX DTI0MTAwMzEwNTIxMlowMzExMC8GA1UEAxMoQjQ3NzE3MjRCODkyNTJFNDIwQ0Y4 RDI1MDQzMDlDOEI2OUFDMzBDQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYTQUp5Fv32n83ixKRA8/V9MIOyutAwXIFB9TcwFNVJjJpzCM3QxfaGuY4W QViBxWVLprql0StelWSvCwolsLAPUd2gP3/pbST1R/QjWI7lKoRSoDFW8fogN8IT 2NGjTzBwcZXzPnEgmnybA6eWhMDIeOPNXIwCOCImb7/N4/iWPBo1DA5dmXBe07jR GyYz5CNqEUEE8/jeB3uZyT1zVGv/i5K405YIFcBokOWnJDP4GaXeNUBHSbf5T+4K TZk96eH9fqYXEIhg9u1nRj1Jr1p91wzBXInsyK1cwq2d7mO8GvLQYUn3zLLQZK/L tcfYNDv6sSC46sNTdWJ/6Ee/ZjkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLR3FyS4klLkIM+NJQQwnItprDDLMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iNTVhZjhhZi1hNDBmLTQyYzctOWY0Yy0xOGUwY2E1Y2Q0N2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I1NWFmOGFm LWE0MGYtNDJjNy05ZjRjLTE4ZTBjYTVjZDQ3ZS8wL0I0NzcxNzI0Qjg5MjUyRTQy MENGOEQyNTA0MzA5QzhCNjlBQzMwQ0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnDYgwDQYJKoZIhvcNAQELBQADggEBABhp3xcQMcV+COHNOkQiFngKJizoT3KV ji1PTAcrC4mjR7yAicp+rNZIiR1nOZ2kX+eshsrZ7HQ+bbdjDuQnh5oEJjAgcJGa 4vMI2AqsRkbip0pr1Mz7+8AA0vYuoo0/hm+V/psq7DQeczQOETZkpew0t1vbOdq5 4LQytbdOQRmDQn5duyjOUlj9fWKRGjUVwLvjmlw3CL3BPPJDd9FM4s2f20BUQ1BS 3gzHZttwa0IV6JyrCAaQc0og6MHNIPhA/R1FnsN9d5m/clWm0ryr4RFZQHSQ9wae Zq2bhKtXZ0APMOYCuT1VgzGY8pzZOAXd6I48JByHxNKh9cR/r1BTbRw= -----END CERTIFICATE-----Generated at Wed May 8 09:50:42 2024 by rpki-client on console-fra.rpki-client.org