$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C70A343932991281F91796DB87B011987603BBF4.cer File: C70A343932991281F91796DB87B011987603BBF4.cer (raw, json) Hash identifier: jGwCoyZKnhGYj9VCC2HpeVUDpjan4aHKNZ3IpDxaFa0= Subject key identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0684A4B0EA64BF333F2778D45F8F3C55BFC39E47 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft caRepository: rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 20 Feb 2024 12:29:37 +0000 Certificate not after: Tue 18 Feb 2025 12:34:37 +0000 Subordinate resources: IP: 103.184.120.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:84:a4:b0:ea:64:bf:33:3f:27:78:d4:5f:8f:3c:55:bf:c3:9e:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 20 12:29:37 2024 GMT Not After : Feb 18 12:34:37 2025 GMT Subject: CN=C70A343932991281F91796DB87B011987603BBF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:b0:b5:f1:a9:d3:53:81:87:3c:bc:e3:fb:5a: 20:2d:ab:70:28:ca:a3:29:a8:d1:a4:39:19:be:56: 48:60:7f:c4:91:06:72:12:cb:33:1e:4b:7e:ec:c6: e6:a4:90:06:44:40:5d:20:6c:4d:db:df:a4:26:3d: 0f:b0:12:1e:5c:48:5d:24:e7:d9:b7:50:7e:fd:0e: c3:78:67:04:75:d4:0c:1e:6f:94:18:0a:94:ce:ac: dd:ba:cb:96:b8:1b:39:bb:cb:cc:70:d9:9e:ac:2e: 0c:0c:df:f8:1d:69:be:dc:93:84:1b:71:be:fe:ea: 73:63:c7:76:80:ba:27:39:2a:6e:46:6c:f4:ea:a9: f2:3b:42:f8:b3:ac:ae:a8:e0:17:13:ab:fc:35:9c: d0:53:ef:18:8c:bd:11:2d:48:c6:7c:43:35:49:33: 47:a4:18:a5:d0:f7:ff:e0:5b:f4:a1:4b:b5:ba:11: 6e:29:19:47:74:e4:84:3a:3d:5a:b6:ac:e3:63:04: 05:aa:b5:3d:15:d5:36:5b:2b:71:76:7f:f8:d9:25: 3f:4f:ab:d3:6a:10:ee:0a:1f:0d:c2:f9:01:20:7e: 2d:8b:09:84:77:92:09:00:57:ac:10:d6:6b:c1:24: 36:9e:9d:2a:09:b0:55:f2:3a:49:36:9e:d6:be:cd: 84:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C7:0A:34:39:32:99:12:81:F9:17:96:DB:87:B0:11:98:76:03:BB:F4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bfc17cc2-f4a2-415e-8ea2-f9c47f75c4ca/0/C70A343932991281F91796DB87B011987603BBF4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.120.0/23 Signature Algorithm: sha256WithRSAEncryption 44:46:1a:2a:06:5b:90:54:dc:ad:20:7c:4b:8e:67:58:f0:a5: 2e:89:18:13:0f:64:75:dd:34:d3:e5:5f:7c:c2:dd:eb:f0:cd: d9:cb:0d:7b:03:f8:f5:a6:6c:6a:4a:a0:e7:5b:fa:d0:a5:3c: 90:0c:68:ff:37:c3:dd:b8:e1:4d:9c:f4:2f:db:6c:fe:62:70: 45:41:f1:49:df:d5:5d:b7:a1:fa:34:d0:ec:b9:7d:6f:f6:e8: a0:79:e9:fa:6f:63:07:62:c0:e4:12:fe:83:e1:06:f3:13:1a: d0:8c:bd:23:7d:71:f8:df:d4:1e:85:21:d5:e3:79:3b:3a:91: e1:a4:6d:05:97:f1:fd:1b:ca:77:1c:f2:48:69:c0:a0:e2:6c: ef:09:44:01:87:a7:62:93:63:44:b7:ea:19:03:ee:68:a1:6f: d0:3c:06:86:c0:97:cb:ab:8c:8e:10:8c:81:08:dd:3f:3c:de: 9b:cb:75:87:f0:98:79:53:f1:36:ae:54:be:df:03:2b:4f:8d: c9:2b:ce:1c:71:c4:31:ea:3d:6d:3f:1a:17:97:3e:d4:9f:9c: 2b:26:3a:e7:39:f5:f6:44:2e:1b:28:93:2d:fc:d9:c9:9e:9a: ed:2a:0a:7b:4a:61:13:7a:c0:bf:5d:2c:cd:b3:61:eb:84:c9: 0e:bf:f6:e6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUBoSksOpkvzM/J3jUX488Vb/DnkcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyMDEyMjkzN1oX DTI1MDIxODEyMzQzN1owMzExMC8GA1UEAxMoQzcwQTM0MzkzMjk5MTI4MUY5MTc5 NkRCODdCMDExOTg3NjAzQkJGNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALSwtfGp01OBhzy84/taIC2rcCjKoymo0aQ5Gb5WSGB/xJEGchLLMx5LfuzG 5qSQBkRAXSBsTdvfpCY9D7ASHlxIXSTn2bdQfv0Ow3hnBHXUDB5vlBgKlM6s3brL lrgbObvLzHDZnqwuDAzf+B1pvtyThBtxvv7qc2PHdoC6JzkqbkZs9Oqp8jtC+LOs rqjgFxOr/DWc0FPvGIy9ES1IxnxDNUkzR6QYpdD3/+Bb9KFLtboRbikZR3TkhDo9 Wras42MEBaq1PRXVNlsrcXZ/+NklP0+r02oQ7gofDcL5ASB+LYsJhHeSCQBXrBDW a8EkNp6dKgmwVfI6STae1r7NhN0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMcKNDkymRKB+ReW24ewEZh2A7v0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZmMxN2NjMi1mNGEyLTQxNWUtOGVhMi1mOWM0N2Y3NWM0Y2EvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JmYzE3Y2My LWY0YTItNDE1ZS04ZWEyLWY5YzQ3Zjc1YzRjYS8wL0M3MEEzNDM5MzI5OTEyODFG OTE3OTZEQjg3QjAxMTk4NzYwM0JCRjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuHgwDQYJKoZIhvcNAQELBQADggEBAERGGioGW5BU3K0gfEuOZ1jwpS6JGBMP ZHXdNNPlX3zC3evwzdnLDXsD+PWmbGpKoOdb+tClPJAMaP83w9244U2c9C/bbP5i cEVB8Unf1V23ofo00Oy5fW/26KB56fpvYwdiwOQS/oPhBvMTGtCMvSN9cfjf1B6F IdXjeTs6keGkbQWX8f0byncc8khpwKDibO8JRAGHp2KTY0S36hkD7mihb9A8BobA l8urjI4QjIEI3T883pvLdYfwmHlT8TauVL7fAytPjckrzhxxxDHqPW0/GheXPtSf nCsmOuc59fZELhsoky382cmemu0qCntKYRN6wL9dLM2zYeuEyQ6/9uY= -----END CERTIFICATE-----Generated at Wed May 8 09:50:43 2024 by rpki-client on console-fra.rpki-client.org