$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer File: C1C0233DC07302E86D114AB772AB6566ED7F5FBB.cer (raw, json) Hash identifier: 7ZTCFKT1zTDZcJI13eWZGRyWUDMsBdCbS16PxYtb418= Subject key identifier: C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: CFB826F3DFFBC7091630C84C61D06E595D4F91 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.mft caRepository: rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 10 Aug 2023 20:12:25 +0000 Certificate not after: Thu 08 Aug 2024 20:17:25 +0000 Subordinate resources: IP: 103.152.92.0/23 IP: 2407:72c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: cf:b8:26:f3:df:fb:c7:09:16:30:c8:4c:61:d0:6e:59:5d:4f:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 10 20:12:25 2023 GMT Not After : Aug 8 20:17:25 2024 GMT Subject: CN=C1C0233DC07302E86D114AB772AB6566ED7F5FBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a9:77:29:27:53:d2:a9:6e:39:22:ea:71:7e: f2:1d:32:80:7c:d4:40:6d:34:7c:6f:ce:b5:48:35: c8:c9:0c:df:be:ef:28:bc:e5:d0:ce:b2:bf:0f:8c: ab:f3:d5:18:89:2a:2f:72:b5:0e:54:8e:a9:db:b1: 30:df:6c:ef:dc:9e:a5:6e:76:14:f6:d3:6e:a0:62: 74:75:e7:df:1a:02:44:2c:81:3f:e9:e5:73:51:d9: 63:72:09:98:f7:4d:f1:e6:31:47:c9:90:c1:70:76: 24:48:0f:07:91:e6:c0:f8:1c:24:9a:f1:84:f5:24: 6f:72:b4:42:a0:c1:3d:a0:44:c8:24:1c:0d:dc:e1: 10:05:bd:0f:ad:40:fa:06:3b:86:a9:28:f9:41:dc: 24:b7:14:26:00:2c:15:21:d6:05:b9:21:f2:ec:ff: a9:3a:e8:d6:c0:d4:72:bb:ef:1a:e4:f1:c1:bc:80: de:fe:75:03:10:7b:e6:8a:9b:29:f3:3f:22:b1:95: c6:5a:b5:d7:9c:f3:fa:6e:dd:23:7b:80:67:2e:fa: 10:f9:47:90:59:4d:c1:33:13:29:38:5a:9e:6a:2d: 83:aa:87:d1:8a:47:ad:d8:71:52:6b:74:ab:9d:ac: 96:b5:d1:a0:d4:6f:26:8c:85:fc:ac:d0:24:0b:a6: ed:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C1:C0:23:3D:C0:73:02:E8:6D:11:4A:B7:72:AB:65:66:ED:7F:5F:BB X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/38c9c252-f7ca-4dd5-88f6-22addc8934b3/0/C1C0233DC07302E86D114AB772AB6566ED7F5FBB.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.152.92.0/23 IPv6: 2407:72c0::/32 Signature Algorithm: sha256WithRSAEncryption 8f:1e:40:75:be:0b:dd:81:ff:77:26:24:0c:21:c0:d9:c8:2b: bc:67:f4:e7:40:60:5f:b2:ac:d3:90:6b:b5:48:ec:01:bd:a4: e6:0d:a8:b1:79:b2:15:44:f7:8e:11:22:bf:15:6c:2c:b6:e1: 7d:b3:78:a7:ee:ab:86:a4:f7:60:c9:52:ae:2c:01:51:ac:1a: 6d:e7:1b:9e:cb:a2:83:df:bc:5c:03:ec:08:3c:45:44:56:0b: a3:7c:e8:1d:a3:b6:36:a8:b2:24:c7:9e:16:65:a3:d4:b6:f9: ae:3b:6d:e9:f6:33:17:5e:d8:df:65:0c:31:8f:2e:53:bf:17: b0:5c:46:3d:ea:42:29:09:da:a6:20:f2:5c:47:f9:aa:bf:5e: 8e:a0:0d:9a:ce:22:88:70:40:cb:b4:d6:be:fc:5f:56:0d:e3: 28:e0:dd:d3:8b:2e:ca:64:6a:14:2d:a5:87:8f:f3:d6:7e:d9: ba:a1:d3:34:0c:5e:49:ea:54:09:84:fb:bb:4c:88:96:f7:2c: dd:2f:99:30:60:72:c6:ab:9e:b7:9f:78:e8:2e:5e:ac:c7:43: ac:63:7d:46:d8:42:7f:88:19:48:d0:8c:90:3c:b9:4f:2e:61: a8:46:24:48:d2:4c:61:9d:ee:76:fa:19:14:d0:ac:cd:50:04: 2d:71:43:6c -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUAM+4JvPf+8cJFjDITGHQblldT5EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxMDIwMTIyNVoX DTI0MDgwODIwMTcyNVowMzExMC8GA1UEAxMoQzFDMDIzM0RDMDczMDJFODZEMTE0 QUI3NzJBQjY1NjZFRDdGNUZCQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM+pdyknU9Kpbjki6nF+8h0ygHzUQG00fG/OtUg1yMkM377vKLzl0M6yvw+M q/PVGIkqL3K1DlSOqduxMN9s79yepW52FPbTbqBidHXn3xoCRCyBP+nlc1HZY3IJ mPdN8eYxR8mQwXB2JEgPB5HmwPgcJJrxhPUkb3K0QqDBPaBEyCQcDdzhEAW9D61A +gY7hqko+UHcJLcUJgAsFSHWBbkh8uz/qTro1sDUcrvvGuTxwbyA3v51AxB75oqb KfM/IrGVxlq115zz+m7dI3uAZy76EPlHkFlNwTMTKThanmotg6qH0YpHrdhxUmt0 q52slrXRoNRvJoyF/KzQJAum7a8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMHAIz3AcwLobRFKt3KrZWbtf1+7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zOGM5YzI1Mi1mN2NhLTRkZDUtODhmNi0yMmFkZGM4OTM0YjMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM4YzljMjUy LWY3Y2EtNGRkNS04OGY2LTIyYWRkYzg5MzRiMy8wL0MxQzAyMzNEQzA3MzAyRTg2 RDExNEFCNzcyQUI2NTY2RUQ3RjVGQkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnmFwwDQQCAAIwBwMFACQHcsAwDQYJKoZIhvcNAQELBQADggEBAI8eQHW+C92B /3cmJAwhwNnIK7xn9OdAYF+yrNOQa7VI7AG9pOYNqLF5shVE944RIr8VbCy24X2z eKfuq4ak92DJUq4sAVGsGm3nG57LooPfvFwD7Ag8RURWC6N86B2jtjaosiTHnhZl o9S2+a47ben2Mxde2N9lDDGPLlO/F7BcRj3qQikJ2qYg8lxH+aq/Xo6gDZrOIohw QMu01r78X1YN4yjg3dOLLspkahQtpYeP89Z+2bqh0zQMXknqVAmE+7tMiJb3LN0v mTBgcsarnrefeOguXqzHQ6xjfUbYQn+IGUjQjJA8uU8uYahGJEjSTGGd7nb6GRTQ rM1QBC1xQ2w= -----END CERTIFICATE-----Generated at Wed May 8 22:46:45 2024 by rpki-client on console-ams.rpki-client.org