$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C00163880F235714759920507217F2A7D557C953.cer File: C00163880F235714759920507217F2A7D557C953.cer (raw, json) Hash identifier: lMpnSuuWM8qnahDMdAorDvZ8Rw2SkKazizqDwpaeBLg= Subject key identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 10C7C1018D9B114331AB6603A27850531F07D00B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft caRepository: rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 06:29:43 +0000 Certificate not after: Mon 29 Jul 2024 06:34:43 +0000 Subordinate resources: IP: 43.252.156.0/22 IP: 49.128.176.0/21 IP: 103.17.244.0/22 IP: 103.247.120.0/22 IP: 103.255.240.0/22 IP: 111.68.24.0/21 IP: 112.78.32.0/21 IP: 116.254.112.0/21 IP: 119.2.48.0/21 IP: 202.145.6.0/23 IP: 203.30.236.0/23 IP: 2401:1700::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:c7:c1:01:8d:9b:11:43:31:ab:66:03:a2:78:50:53:1f:07:d0:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 06:29:43 2023 GMT Not After : Jul 29 06:34:43 2024 GMT Subject: CN=C00163880F235714759920507217F2A7D557C953 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:f9:b5:8a:ea:c0:fd:68:f2:5c:61:df:7e:5b: 9d:ef:d1:7b:e8:3e:08:6f:6e:e6:5e:5f:c2:c7:67: 06:27:b7:c7:e1:11:74:26:3d:65:d0:0e:2e:5c:fb: cc:3b:6f:d4:f9:6d:1b:fc:24:6f:e9:ac:d4:47:f3: 62:90:b9:a4:dc:86:26:4e:5b:2b:6d:f8:c7:23:f3: 32:45:a8:c9:35:08:82:21:a1:54:32:6a:b3:22:e2: 0a:92:d0:87:57:de:a6:07:d5:2d:9d:1b:0d:ed:40: f7:eb:8f:cc:63:7d:8e:8b:24:04:0f:c1:f4:fe:55: 65:6a:e6:1f:19:18:7c:4e:60:2e:77:8f:0b:26:d1: 81:64:d9:b4:5c:b8:30:a8:e4:ad:a3:65:f7:9e:a3: f6:71:56:f8:79:c7:1f:04:b2:ba:05:00:31:27:4f: 11:13:ed:6c:e3:1f:da:6b:0d:1d:ee:88:18:50:32: d5:7c:39:e7:ae:5a:e7:9d:14:6b:aa:7f:ee:a5:01: 58:e5:2a:f7:16:f7:b6:36:76:b9:65:4a:5b:d7:e9: 75:5e:6c:a6:6b:87:0e:f1:bc:a8:9d:42:27:00:5e: 97:ad:eb:19:da:be:54:77:ff:c8:d6:61:e5:19:fe: 72:35:9c:0c:78:95:98:74:b1:c6:40:42:5e:6a:2a: b4:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C0:01:63:88:0F:23:57:14:75:99:20:50:72:17:F2:A7:D5:57:C9:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/aea7a115-b8b8-490b-8320-c9e59a1003dd/0/C00163880F235714759920507217F2A7D557C953.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.252.156.0/22 49.128.176.0/21 103.17.244.0/22 103.247.120.0/22 103.255.240.0/22 111.68.24.0/21 112.78.32.0/21 116.254.112.0/21 119.2.48.0/21 202.145.6.0/23 203.30.236.0/23 IPv6: 2401:1700::/32 Signature Algorithm: sha256WithRSAEncryption 32:5c:fa:ee:59:d6:e5:ec:92:1c:ee:4c:eb:c7:6e:0e:64:e1: 2a:1a:b1:73:6f:76:c6:5b:92:92:e7:8e:ea:3e:8a:2c:ad:41: 87:65:a7:db:70:ed:12:57:8e:7d:06:2e:64:6d:6e:bf:d7:13: 64:75:ee:1c:fa:ed:df:a1:dd:ae:ce:0e:ea:e7:cd:b8:ec:47: bd:9f:70:b7:2f:4c:25:d8:12:80:89:d6:b5:fd:bf:7d:be:62: 11:f6:f4:dd:7f:1b:58:93:a1:e8:e5:68:3f:e6:fd:c4:86:f0: 0d:b8:b9:15:ba:e2:55:a5:45:36:31:82:42:56:ca:96:40:85: e0:15:92:63:9d:8f:16:5d:78:6e:ac:b9:8f:2f:41:3f:fd:85: 2c:9b:3a:34:18:00:7f:9d:c1:61:01:a6:65:07:0b:9f:23:05: 50:eb:29:a8:75:13:db:db:56:34:9d:b2:16:9f:0d:f2:dd:d5: 13:67:12:f3:8c:e6:37:8e:ca:6f:ce:c3:e5:f9:be:a3:6e:e1: be:cf:99:1d:bb:21:7e:d0:f4:3f:97:14:8b:b4:f9:2f:7d:59: 3f:85:63:ac:1b:41:be:b5:0a:b8:3c:85:fc:21:07:f7:84:fe: b4:fe:31:02:d3:ae:a0:44:fc:63:d2:97:47:f6:fe:b3:eb:21: 4f:6b:a4:b4 -----BEGIN CERTIFICATE----- MIIGEDCCBPigAwIBAgIUEMfBAY2bEUMxq2YDonhQUx8H0AswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA2Mjk0M1oX DTI0MDcyOTA2MzQ0M1owMzExMC8GA1UEAxMoQzAwMTYzODgwRjIzNTcxNDc1OTky MDUwNzIxN0YyQTdENTU3Qzk1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOn5tYrqwP1o8lxh335bne/Re+g+CG9u5l5fwsdnBie3x+ERdCY9ZdAOLlz7 zDtv1PltG/wkb+ms1EfzYpC5pNyGJk5bK234xyPzMkWoyTUIgiGhVDJqsyLiCpLQ h1fepgfVLZ0bDe1A9+uPzGN9joskBA/B9P5VZWrmHxkYfE5gLnePCybRgWTZtFy4 MKjkraNl956j9nFW+HnHHwSyugUAMSdPERPtbOMf2msNHe6IGFAy1Xw5565a550U a6p/7qUBWOUq9xb3tjZ2uWVKW9fpdV5spmuHDvG8qJ1CJwBel63rGdq+VHf/yNZh 5Rn+cjWcDHiVmHSxxkBCXmoqtNUCAwEAAaOCAwMwggL/MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMABY4gPI1cUdZkgUHIX8qfVV8lTMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZWE3YTExNS1iOGI4LTQ5MGItODMyMC1jOWU1OWExMDAzZGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlYTdhMTE1 LWI4YjgtNDkwYi04MzIwLWM5ZTU5YTEwMDNkZC8wL0MwMDE2Mzg4MEYyMzU3MTQ3 NTk5MjA1MDcyMTdGMkE3RDU1N0M5NTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwagYIKwYBBQUHAQcBAf8EWzBZMEgEAgABMEID BAIr/JwDBAMxgLADBAJnEfQDBAJn93gDBAJn//ADBANvRBgDBANwTiADBAN0/nAD BAN3AjADBAHKkQYDBAHLHuwwDQQCAAIwBwMFACQBFwAwDQYJKoZIhvcNAQELBQAD ggEBADJc+u5Z1uXskhzuTOvHbg5k4SoasXNvdsZbkpLnjuo+iiytQYdlp9tw7RJX jn0GLmRtbr/XE2R17hz67d+h3a7ODurnzbjsR72fcLcvTCXYEoCJ1rX9v32+YhH2 9N1/G1iToejlaD/m/cSG8A24uRW64lWlRTYxgkJWypZAheAVkmOdjxZdeG6suY8v QT/9hSybOjQYAH+dwWEBpmUHC58jBVDrKah1E9vbVjSdshafDfLd1RNnEvOM5jeO ym/Ow+X5vqNu4b7PmR27IX7Q9D+XFIu0+S99WT+FY6wbQb61Crg8hfwhB/eE/rT+ MQLTrqBE/GPSl0f2/rPrIU9rpLQ= -----END CERTIFICATE-----Generated at Wed May 8 09:50:43 2024 by rpki-client on console-fra.rpki-client.org