$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer File: C3F745EDE7F4C0D8E5674965B52080083B271E3E.cer (raw, json) Hash identifier: nhWuCauHIlbKHeXAGzzCQEWwiA2KWJ+psKWGMMF8z6U= Subject key identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 45DC5AD5ECF25642681399F95D261B2C173EF504 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft caRepository: rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 30 Jul 2023 21:24:03 +0000 Certificate not after: Sun 28 Jul 2024 21:29:03 +0000 Subordinate resources: IP: 103.215.24.0/22 IP: 112.109.16.0/21 IP: 119.82.240.0/21 IP: 123.255.200.0/21 IP: 175.184.224.0/20 IP: 203.89.24.0/21 IP: 2403:ba00::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:dc:5a:d5:ec:f2:56:42:68:13:99:f9:5d:26:1b:2c:17:3e:f5:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 30 21:24:03 2023 GMT Not After : Jul 28 21:29:03 2024 GMT Subject: CN=C3F745EDE7F4C0D8E5674965B52080083B271E3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:09:c7:15:46:3e:be:ee:0b:25:10:89:7e:09: 2a:10:dc:a7:cd:c8:46:18:4f:1a:c0:cb:a4:4a:e5: 4e:2c:e0:44:a0:08:62:b5:88:2c:64:30:7b:e2:87: 9c:51:f1:84:43:c7:30:b1:cf:45:62:b0:e3:28:d1: e4:e2:8e:17:b2:d2:85:ac:97:cf:4b:f0:e4:28:01: 7e:ba:75:eb:69:2d:41:76:42:5b:24:2b:96:4f:ce: 5b:43:e3:1c:5d:6d:17:ad:33:e3:0b:09:24:9f:56: b6:e5:e9:78:e1:2c:c4:67:08:5e:f3:78:cb:96:9e: 7f:d3:5c:17:58:f8:e7:93:9f:a8:fa:8f:83:32:6f: 7f:73:18:19:a1:76:0f:cb:70:ec:a1:8a:5f:05:21: a6:82:c7:76:c4:2e:c1:78:f0:d8:71:c4:ac:87:0b: ee:ee:28:5a:a6:f4:6d:1e:e9:0c:97:e3:0f:c6:4b: c0:df:ff:50:b0:f1:f9:e2:98:0c:8d:3e:76:b0:8b: f2:04:30:4d:95:0e:5f:c5:15:95:91:95:c6:ff:d8: 8f:dd:25:76:2d:f3:c5:92:60:77:0d:39:3d:f4:e2: 0a:f6:b1:d8:6e:a7:8d:ad:54:37:e4:f6:78:40:3a: 6d:69:81:88:ed:9b:3a:83:97:cf:06:c9:a6:ff:b0: a5:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C3:F7:45:ED:E7:F4:C0:D8:E5:67:49:65:B5:20:80:08:3B:27:1E:3E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/009c22b1-1b7b-4671-ab94-5c5e74882547/0/C3F745EDE7F4C0D8E5674965B52080083B271E3E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.215.24.0/22 112.109.16.0/21 119.82.240.0/21 123.255.200.0/21 175.184.224.0/20 203.89.24.0/21 IPv6: 2403:ba00::/32 Signature Algorithm: sha256WithRSAEncryption 4a:18:d7:a3:22:c0:c3:b6:e3:9d:d8:ed:dc:18:be:cf:d2:e6: ea:5b:53:6b:cc:27:d8:ed:6d:87:fb:df:67:96:e1:7d:b2:9d: c1:fc:53:b3:09:df:f3:a6:9b:0f:1f:e8:a6:a5:8b:d2:76:1d: f6:63:bf:b8:5d:05:10:89:25:9c:bc:df:ea:6e:e8:15:8b:d0: fc:7b:29:2a:1c:25:19:a3:d3:49:ee:d0:db:dc:9f:53:47:81: 0e:a3:4e:4d:c7:98:20:6a:3e:22:3a:1c:f8:b4:04:19:25:45: d8:37:61:d5:f5:74:c1:a5:04:2a:3c:9a:83:e9:3d:49:9b:32: 01:93:2b:f3:78:c9:a6:59:99:8b:8e:f1:01:ef:65:50:0e:1f: 4b:57:5d:b4:68:cf:e0:6e:d5:61:c1:9f:e3:ea:57:60:0f:31: 3b:76:3e:80:65:68:69:76:23:88:1a:08:1f:de:fb:a7:26:48: 92:db:81:45:21:20:84:84:fc:70:be:75:e8:a5:b4:99:36:bd: fd:5f:f7:62:17:58:07:d7:1b:e6:c3:c7:b1:66:1f:67:19:f8: 23:0c:62:3f:24:eb:df:c5:0f:d5:78:0e:f0:51:3b:4d:d1:0c: e9:e8:79:21:aa:8a:bb:b4:1e:9f:58:67:a7:06:2f:a2:5b:17: c3:0a:ee:5c -----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgIURdxa1ezyVkJoE5n5XSYbLBc+9QQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMDIxMjQwM1oX DTI0MDcyODIxMjkwM1owMzExMC8GA1UEAxMoQzNGNzQ1RURFN0Y0QzBEOEU1Njc0 OTY1QjUyMDgwMDgzQjI3MUUzRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANwJxxVGPr7uCyUQiX4JKhDcp83IRhhPGsDLpErlTizgRKAIYrWILGQwe+KH nFHxhEPHMLHPRWKw4yjR5OKOF7LShayXz0vw5CgBfrp162ktQXZCWyQrlk/OW0Pj HF1tF60z4wsJJJ9WtuXpeOEsxGcIXvN4y5aef9NcF1j455OfqPqPgzJvf3MYGaF2 D8tw7KGKXwUhpoLHdsQuwXjw2HHErIcL7u4oWqb0bR7pDJfjD8ZLwN//ULDx+eKY DI0+drCL8gQwTZUOX8UVlZGVxv/Yj90ldi3zxZJgdw05PfTiCvax2G6nja1UN+T2 eEA6bWmBiO2bOoOXzwbJpv+wpV0CAwEAAaOCAuUwggLhMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMP3Re3n9MDY5WdJZbUggAg7Jx4+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wMDljMjJiMS0xYjdiLTQ2NzEtYWI5NC01YzVlNzQ4ODI1NDcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAwOWMyMmIx LTFiN2ItNDY3MS1hYjk0LTVjNWU3NDg4MjU0Ny8wL0MzRjc0NUVERTdGNEMwRDhF NTY3NDk2NUI1MjA4MDA4M0IyNzFFM0UubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwTAYIKwYBBQUHAQcBAf8EPTA7MCoEAgABMCQD BAJn1xgDBANwbRADBAN3UvADBAN7/8gDBASvuOADBAPLWRgwDQQCAAIwBwMFACQD ugAwDQYJKoZIhvcNAQELBQADggEBAEoY16MiwMO2453Y7dwYvs/S5upbU2vMJ9jt bYf732eW4X2yncH8U7MJ3/Ommw8f6Kali9J2HfZjv7hdBRCJJZy83+pu6BWL0Px7 KSocJRmj00nu0Nvcn1NHgQ6jTk3HmCBqPiI6HPi0BBklRdg3YdX1dMGlBCo8moPp PUmbMgGTK/N4yaZZmYuO8QHvZVAOH0tXXbRoz+Bu1WHBn+PqV2APMTt2PoBlaGl2 I4gaCB/e+6cmSJLbgUUhIISE/HC+deiltJk2vf1f92IXWAfXG+bDx7FmH2cZ+CMM Yj8k69/FD9V4DvBRO03RDOnoeSGqiru0Hp9YZ6cGL6JbF8MK7lw= -----END CERTIFICATE-----Generated at Wed May 8 21:02:27 2024 by rpki-client on console-fra.rpki-client.org