$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B70932ED6C688D58897E32E1D5C990B20910FF02.cer File: B70932ED6C688D58897E32E1D5C990B20910FF02.cer (raw, json) Hash identifier: 21MBPESQ4bgJskeItRJ0YbCtiw0Z9I1UNnGdluHYYlc= Subject key identifier: B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 748C315BE14CED263EE3A90B370A196A67F17912 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.mft caRepository: rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 03 Jan 2024 14:21:58 +0000 Certificate not after: Wed 01 Jan 2025 14:26:58 +0000 Subordinate resources: IP: 103.129.40.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:8c:31:5b:e1:4c:ed:26:3e:e3:a9:0b:37:0a:19:6a:67:f1:79:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 3 14:21:58 2024 GMT Not After : Jan 1 14:26:58 2025 GMT Subject: CN=B70932ED6C688D58897E32E1D5C990B20910FF02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c6:2d:5b:93:5a:41:ac:0d:72:16:20:33:2a: e7:e9:ac:71:ad:fa:3a:f7:46:7a:9a:0a:4b:6c:8a: 4c:45:34:50:ab:b0:42:0e:97:04:4a:b4:f9:c5:20: ba:c3:b7:86:b1:a8:80:4a:c7:24:dc:88:af:a3:6d: 90:52:e6:8c:9a:9a:69:cc:39:fb:17:8c:aa:1c:aa: 97:1b:94:bc:76:a7:b0:7d:a2:8d:73:18:f8:89:3c: 10:cb:77:3f:a2:ef:02:7e:07:ac:a6:7f:22:3e:96: a5:69:c1:59:c7:3c:44:76:32:97:97:f9:6f:de:09: eb:c7:58:39:0f:20:27:6e:fe:f6:e6:df:33:14:e2: 37:30:d9:f5:34:3a:97:21:21:02:0d:0b:8e:b5:f7: 67:97:c1:e5:54:d5:a4:84:72:23:38:77:8d:50:bb: 07:ee:9a:26:0a:71:71:90:d8:a9:54:a1:bb:b5:28: a0:5e:3a:d1:9e:23:29:84:73:60:75:4f:26:20:90: 87:53:e2:df:ec:e0:73:d1:5d:34:ef:0c:20:62:34: a3:89:2e:d8:8a:e0:a7:8b:ee:01:12:0d:6b:6e:91: fc:6b:18:3d:0d:77:cc:be:e9:05:d2:7f:06:5b:ef: 1b:44:08:7b:40:f5:a8:bf:36:e6:52:b8:91:1b:00: 53:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B7:09:32:ED:6C:68:8D:58:89:7E:32:E1:D5:C9:90:B2:09:10:FF:02 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a990da49-9862-41de-833e-b304f0c1ae57/0/B70932ED6C688D58897E32E1D5C990B20910FF02.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.129.40.0/22 Signature Algorithm: sha256WithRSAEncryption 32:f9:c1:e5:42:e7:bc:5b:1d:b0:b7:e0:13:a1:32:56:97:a1: a4:3c:e1:5b:7a:f6:13:ca:08:b7:a4:ae:35:be:1f:56:8d:c0: 1d:f7:cc:27:1a:93:8b:38:1a:74:c5:95:26:c2:48:f4:ca:5c: c2:26:e5:4a:00:96:6c:bc:16:95:95:ab:a0:39:58:82:84:9b: 46:01:c7:ec:74:53:e7:39:7b:12:71:8a:9f:45:23:f6:9f:ff: 23:91:e4:74:dc:8e:39:6d:3b:52:fd:7d:23:44:fa:f1:34:0d: 63:02:e3:ef:d4:50:d1:69:32:54:d0:b9:4d:4e:1d:67:8d:84: 8b:97:bb:50:dc:31:9b:03:af:6a:6c:28:c8:32:06:6d:8e:3f: 17:c3:ef:96:a3:c5:35:62:e2:e3:e0:08:44:2e:06:03:bc:22: a6:3e:00:d1:48:d7:2d:40:96:b3:55:41:38:da:99:d6:10:d9: 9c:78:d5:7a:73:5a:4f:fe:97:14:c6:65:40:92:4c:d2:d2:98: 36:19:8f:61:28:f2:84:6a:cb:6e:5b:1c:1a:e4:05:9d:e9:f3: 97:90:76:e5:cf:fc:9a:1d:71:60:ed:5f:22:86:c7:d8:7d:93: 39:fb:f8:83:86:17:9e:fc:d3:51:da:96:b7:7f:26:bc:a0:67: 94:53:f9:99 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdIwxW+FM7SY+46kLNwoZamfxeRIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwMzE0MjE1OFoX DTI1MDEwMTE0MjY1OFowMzExMC8GA1UEAxMoQjcwOTMyRUQ2QzY4OEQ1ODg5N0Uz MkUxRDVDOTkwQjIwOTEwRkYwMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMXGLVuTWkGsDXIWIDMq5+msca36OvdGepoKS2yKTEU0UKuwQg6XBEq0+cUg usO3hrGogErHJNyIr6NtkFLmjJqaacw5+xeMqhyqlxuUvHansH2ijXMY+Ik8EMt3 P6LvAn4HrKZ/Ij6WpWnBWcc8RHYyl5f5b94J68dYOQ8gJ27+9ubfMxTiNzDZ9TQ6 lyEhAg0LjrX3Z5fB5VTVpIRyIzh3jVC7B+6aJgpxcZDYqVShu7UooF460Z4jKYRz YHVPJiCQh1Pi3+zgc9FdNO8MIGI0o4ku2Irgp4vuARINa26R/GsYPQ13zL7pBdJ/ BlvvG0QIe0D1qL825lK4kRsAU8kCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLcJMu1saI1YiX4y4dXJkLIJEP8CMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hOTkwZGE0OS05ODYyLTQxZGUtODMzZS1iMzA0ZjBjMWFlNTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E5OTBkYTQ5 LTk4NjItNDFkZS04MzNlLWIzMDRmMGMxYWU1Ny8wL0I3MDkzMkVENkM2ODhENTg4 OTdFMzJFMUQ1Qzk5MEIyMDkxMEZGMDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJngSgwDQYJKoZIhvcNAQELBQADggEBADL5weVC57xbHbC34BOhMlaXoaQ84Vt6 9hPKCLekrjW+H1aNwB33zCcak4s4GnTFlSbCSPTKXMIm5UoAlmy8FpWVq6A5WIKE m0YBx+x0U+c5exJxip9FI/af/yOR5HTcjjltO1L9fSNE+vE0DWMC4+/UUNFpMlTQ uU1OHWeNhIuXu1DcMZsDr2psKMgyBm2OPxfD75ajxTVi4uPgCEQuBgO8IqY+ANFI 1y1AlrNVQTjamdYQ2Zx41XpzWk/+lxTGZUCSTNLSmDYZj2Eo8oRqy25bHBrkBZ3p 85eQduXP/JodcWDtXyKGx9h9kzn7+IOGF57801Halrd/JrygZ5RT+Zk= -----END CERTIFICATE-----Generated at Wed May 8 10:06:56 2024 by rpki-client on console-ams.rpki-client.org