$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/B956E5764D9917A7389654D67836D02779ED9E22.cer File: B956E5764D9917A7389654D67836D02779ED9E22.cer (raw, json) Hash identifier: 61Vk3A3sny3AQDJ53LIEZs63/Y2vawJYsYLy1ygclNQ= Subject key identifier: B9:56:E5:76:4D:99:17:A7:38:96:54:D6:78:36:D0:27:79:ED:9E:22 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 76DC704830A7E29195CA624F418CCF2A8F83C2B2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/B956E5764D9917A7389654D67836D02779ED9E22.mft caRepository: rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 10 Aug 2023 07:37:58 +0000 Certificate not after: Thu 08 Aug 2024 07:42:58 +0000 Subordinate resources: IP: 103.44.19.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:dc:70:48:30:a7:e2:91:95:ca:62:4f:41:8c:cf:2a:8f:83:c2:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 10 07:37:58 2023 GMT Not After : Aug 8 07:42:58 2024 GMT Subject: CN=B956E5764D9917A7389654D67836D02779ED9E22 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:d7:e3:48:14:f1:9b:42:c1:65:2a:b5:9c:c6: 3f:57:88:de:c5:aa:1f:6f:71:3e:ef:97:b5:18:20: 3d:8d:20:eb:d1:db:7d:f0:ac:a6:97:1f:db:60:48: f2:97:77:b3:8d:d8:25:31:b3:58:c8:f3:39:f3:6b: 2e:74:e5:f7:04:52:4c:a8:9c:0e:34:3f:5e:e8:67: 02:8a:57:21:52:9f:e4:58:cd:17:93:38:23:d8:1a: 19:1e:ff:71:20:98:7d:a8:b6:03:50:35:9e:0d:41: 68:18:b2:c0:1d:11:9c:4a:79:15:53:c6:68:aa:c3: bf:89:eb:02:8d:37:7b:1d:c1:d0:5a:35:fe:74:4f: 71:68:91:32:22:d5:24:88:95:7f:02:55:89:07:f7: 8e:b2:4c:76:63:0d:2e:46:37:86:36:db:0a:7f:09: d2:15:0e:54:40:55:6b:54:38:64:ab:a7:57:ee:21: 7e:ba:23:e0:70:35:bb:c6:1b:e6:f5:a0:da:bd:3d: 98:42:df:d4:59:f2:a3:f7:e9:56:5f:2f:da:fe:b5: 56:34:b4:1e:d6:7a:b2:67:ca:e2:27:e6:17:11:35: 23:5e:39:cc:53:86:9f:f9:08:a6:eb:9d:f6:1f:2c: 58:7a:f9:db:1e:a6:7e:e1:40:37:3c:77:6b:4b:f5: a6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: B9:56:E5:76:4D:99:17:A7:38:96:54:D6:78:36:D0:27:79:ED:9E:22 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b8117ca8-b4e5-467a-88a8-a4b63e40c3ed/0/B956E5764D9917A7389654D67836D02779ED9E22.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.44.19.0/24 Signature Algorithm: sha256WithRSAEncryption 49:34:1b:70:3f:b4:17:39:72:53:38:b0:94:42:d9:35:7c:fc: 45:5b:8a:5a:e0:2f:bd:07:27:0d:70:ee:76:35:bb:04:cb:a7: 89:5e:4e:75:c0:15:51:5e:97:6b:fc:51:b3:4d:ec:95:28:1f: 15:8d:66:37:1b:c5:2e:c5:07:45:2b:bd:fa:19:e8:fb:a5:b3: 05:3c:ab:8c:ac:f8:fd:74:c0:e7:93:ad:a0:c5:82:5d:7d:cb: af:65:8d:6b:15:d0:b5:62:c6:d8:18:8d:8d:ee:a8:1b:e6:2c: 5f:25:06:c1:c0:bf:ee:ab:82:9f:9f:aa:3b:6f:5c:1b:d2:1d: a4:91:ae:32:fb:a2:95:21:b4:09:85:a8:be:dc:5a:df:cc:6d: dd:7c:22:c7:9b:0a:c6:7b:12:5b:49:71:36:da:6a:f7:09:53: 66:11:a0:a2:0d:52:5e:57:75:3a:6d:f9:41:47:a9:1f:77:8d: b2:0b:1b:95:ab:8d:04:c5:8d:8c:05:76:2c:b0:72:04:10:f6: d2:85:53:b0:97:52:6a:b5:1e:57:4e:f3:8a:b7:8f:0e:50:1f: 71:6f:de:48:35:ec:23:b7:26:3a:31:a5:0b:51:9b:7e:e1:55: 05:61:10:66:6f:62:22:98:66:0a:0f:a5:9a:8c:14:82:f0:73: ff:86:ef:c9 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdtxwSDCn4pGVymJPQYzPKo+DwrIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxMDA3Mzc1OFoX DTI0MDgwODA3NDI1OFowMzExMC8GA1UEAxMoQjk1NkU1NzY0RDk5MTdBNzM4OTY1 NEQ2NzgzNkQwMjc3OUVEOUUyMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJjX40gU8ZtCwWUqtZzGP1eI3sWqH29xPu+XtRggPY0g69HbffCsppcf22BI 8pd3s43YJTGzWMjzOfNrLnTl9wRSTKicDjQ/XuhnAopXIVKf5FjNF5M4I9gaGR7/ cSCYfai2A1A1ng1BaBiywB0RnEp5FVPGaKrDv4nrAo03ex3B0Fo1/nRPcWiRMiLV JIiVfwJViQf3jrJMdmMNLkY3hjbbCn8J0hUOVEBVa1Q4ZKunV+4hfroj4HA1u8Yb 5vWg2r09mELf1Fnyo/fpVl8v2v61VjS0HtZ6smfK4ifmFxE1I145zFOGn/kIpuud 9h8sWHr52x6mfuFANzx3a0v1pusCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFLlW5XZNmRenOJZU1ng20Cd57Z4iMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iODExN2NhOC1iNGU1LTQ2N2EtODhhOC1hNGI2M2U0MGMzZWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I4MTE3Y2E4 LWI0ZTUtNDY3YS04OGE4LWE0YjYzZTQwYzNlZC8wL0I5NTZFNTc2NEQ5OTE3QTcz ODk2NTRENjc4MzZEMDI3NzlFRDlFMjIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnLBMwDQYJKoZIhvcNAQELBQADggEBAEk0G3A/tBc5clM4sJRC2TV8/EVbilrg L70HJw1w7nY1uwTLp4leTnXAFVFel2v8UbNN7JUoHxWNZjcbxS7FB0UrvfoZ6Pul swU8q4ys+P10wOeTraDFgl19y69ljWsV0LVixtgYjY3uqBvmLF8lBsHAv+6rgp+f qjtvXBvSHaSRrjL7opUhtAmFqL7cWt/Mbd18IsebCsZ7EltJcTbaavcJU2YRoKIN Ul5XdTpt+UFHqR93jbILG5WrjQTFjYwFdiywcgQQ9tKFU7CXUmq1HldO84q3jw5Q H3Fv3kg17CO3JjoxpQtRm37hVQVhEGZvYiKYZgoPpZqMFILwc/+G78k= -----END CERTIFICATE-----Generated at Wed May 8 21:02:26 2024 by rpki-client on console-fra.rpki-client.org