$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C43D9C91D389ADDD2039882757F731CAFAAC740F.cer File: C43D9C91D389ADDD2039882757F731CAFAAC740F.cer (raw, json) Hash identifier: VkKyQ2QqomYG8tK8tAJyxhBWUCLXI6WXTQ+hjXJL374= Subject key identifier: C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2409575AE39EFE2376B9520B34404D1FEB43BB4C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.mft caRepository: rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 17 Apr 2024 16:00:00 +0000 Certificate not after: Wed 16 Apr 2025 16:05:00 +0000 Subordinate resources: IP: 103.142.194.0/23 IP: 2001:df1:5480::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:09:57:5a:e3:9e:fe:23:76:b9:52:0b:34:40:4d:1f:eb:43:bb:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 17 16:00:00 2024 GMT Not After : Apr 16 16:05:00 2025 GMT Subject: CN=C43D9C91D389ADDD2039882757F731CAFAAC740F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ee:a8:6d:a0:70:fd:59:c0:f2:d0:64:ce:13: 63:bd:15:ef:d5:d4:f7:e1:08:bb:a0:cb:69:12:99: f4:e4:43:e8:5a:6f:12:2f:12:8f:b6:48:d7:bb:48: ff:6f:69:12:da:0f:75:ea:fe:7e:0d:7b:61:0d:48: 3a:bf:cc:77:29:06:70:c8:11:5f:33:57:93:be:6d: a4:38:f7:cf:a2:37:58:8f:34:f7:46:c9:2a:d4:5e: 04:3c:8a:10:4e:bd:69:3f:9e:e5:7f:24:98:92:97: 32:48:07:b4:09:d9:56:af:29:eb:0b:96:8c:e3:bb: 7a:5c:ae:2f:56:2a:60:8b:79:2e:d4:cf:ad:82:8f: 87:a8:e3:a5:8c:20:88:8f:09:6d:fc:9c:76:b7:c2: 03:40:93:49:d6:0d:3f:f9:f9:a1:40:df:bd:e3:75: 02:83:f0:02:73:fd:d4:9d:0f:b9:06:9e:58:33:0e: eb:4f:08:e2:23:75:2b:ae:4d:bc:d6:1b:d8:30:ad: bf:43:33:ad:74:c0:6f:5f:ad:13:b5:33:19:d7:f1: 6e:b7:40:1a:53:68:41:0b:54:a2:2a:6c:6d:0b:8c: f2:d0:1a:24:b1:be:0a:3e:2e:87:5b:a6:5e:fb:c9: 83:5b:31:db:0d:82:0d:88:8c:09:5a:2e:f1:18:50: ac:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C4:3D:9C:91:D3:89:AD:DD:20:39:88:27:57:F7:31:CA:FA:AC:74:0F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f2aa2d10-3faa-4272-be1f-8102957b65e6/0/C43D9C91D389ADDD2039882757F731CAFAAC740F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.194.0/23 IPv6: 2001:df1:5480::/48 Signature Algorithm: sha256WithRSAEncryption 6e:8c:25:7d:ac:32:1a:39:e3:ce:9f:66:a6:95:bf:70:f4:70: 3d:13:99:e1:50:fe:8a:28:cf:ea:ca:a0:2d:af:57:b4:9e:32: 4c:1e:3a:34:87:90:fd:dc:eb:31:82:0d:ba:09:60:34:b3:df: 31:79:f8:2f:7b:a6:58:77:16:2f:3b:bc:eb:aa:97:49:e2:fd: c8:02:49:2c:68:1f:b4:0e:2a:6d:52:ff:3d:88:14:7f:cf:a0: ef:4c:1b:7b:5a:76:aa:8d:dd:8c:e4:0b:7b:34:10:67:90:48: 31:47:52:33:7d:ff:90:75:bb:19:a4:ce:7b:39:a2:4a:cc:c6: 1d:1b:5d:bd:a4:80:72:29:ff:ce:c4:cc:68:6c:b5:6f:30:62: f6:35:e1:75:b5:50:43:80:aa:22:1f:cd:76:19:c4:da:01:e9: e9:4f:eb:23:0e:ce:f4:3b:75:bb:bd:b6:6a:48:cf:4b:02:24: 6c:09:11:41:39:81:de:89:24:f1:d7:ab:74:6f:c9:76:54:d9: 3d:f2:43:e8:49:a2:41:22:e9:7a:25:7d:bb:2c:2c:8e:54:4c: 53:55:8b:d9:0d:8c:87:43:c5:e6:a6:92:f9:c7:26:d2:2e:1d: ba:c8:51:7c:a2:71:1c:46:56:28:dd:75:35:76:83:74:8e:92: fe:ad:1a:44 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUJAlXWuOe/iN2uVILNEBNH+tDu0wwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxNzE2MDAwMFoX DTI1MDQxNjE2MDUwMFowMzExMC8GA1UEAxMoQzQzRDlDOTFEMzg5QURERDIwMzk4 ODI3NTdGNzMxQ0FGQUFDNzQwRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANzuqG2gcP1ZwPLQZM4TY70V79XU9+EIu6DLaRKZ9ORD6FpvEi8Sj7ZI17tI /29pEtoPder+fg17YQ1IOr/MdykGcMgRXzNXk75tpDj3z6I3WI8090bJKtReBDyK EE69aT+e5X8kmJKXMkgHtAnZVq8p6wuWjOO7elyuL1YqYIt5LtTPrYKPh6jjpYwg iI8JbfycdrfCA0CTSdYNP/n5oUDfveN1AoPwAnP91J0PuQaeWDMO608I4iN1K65N vNYb2DCtv0MzrXTAb1+tE7UzGdfxbrdAGlNoQQtUoipsbQuM8tAaJLG+Cj4uh1um XvvJg1sx2w2CDYiMCVou8RhQrNMCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMQ9nJHTia3dIDmIJ1f3Mcr6rHQPMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMmFhMmQxMC0zZmFhLTQyNzItYmUxZi04MTAyOTU3YjY1ZTYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YyYWEyZDEw LTNmYWEtNDI3Mi1iZTFmLTgxMDI5NTdiNjVlNi8wL0M0M0Q5QzkxRDM4OUFEREQy MDM5ODgyNzU3RjczMUNBRkFBQzc0MEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnjsIwDwQCAAIwCQMHACABDfFUgDANBgkqhkiG9w0BAQsFAAOCAQEAbowlfawy Gjnjzp9mppW/cPRwPROZ4VD+iijP6sqgLa9XtJ4yTB46NIeQ/dzrMYINuglgNLPf MXn4L3umWHcWLzu866qXSeL9yAJJLGgftA4qbVL/PYgUf8+g70wbe1p2qo3djOQL ezQQZ5BIMUdSM33/kHW7GaTOezmiSszGHRtdvaSAcin/zsTMaGy1bzBi9jXhdbVQ Q4CqIh/NdhnE2gHp6U/rIw7O9Dt1u722akjPSwIkbAkRQTmB3okk8derdG/JdlTZ PfJD6EmiQSLpeiV9uywsjlRMU1WL2Q2Mh0PF5qaS+ccm0i4dushRfKJxHEZWKN11 NXaDdI6S/q0aRA== -----END CERTIFICATE-----Generated at Tue May 7 18:07:22 2024 by rpki-client on console-fra.rpki-client.org