$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C740DD931883C284135261B25A6958E80CDF63D2.cer File: C740DD931883C284135261B25A6958E80CDF63D2.cer (raw, json) Hash identifier: Gh//6B1GNt2WEpiQ777O8oASzIk2PanBhcsBe2kqdQk= Subject key identifier: C7:40:DD:93:18:83:C2:84:13:52:61:B2:5A:69:58:E8:0C:DF:63:D2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 09D7AD29B115111DB11A868313D67AFAD4DAF379 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.mft caRepository: rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 24 Nov 2023 09:00:44 +0000 Certificate not after: Fri 22 Nov 2024 09:05:44 +0000 Subordinate resources: IP: 103.139.120.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:d7:ad:29:b1:15:11:1d:b1:1a:86:83:13:d6:7a:fa:d4:da:f3:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 24 09:00:44 2023 GMT Not After : Nov 22 09:05:44 2024 GMT Subject: CN=C740DD931883C284135261B25A6958E80CDF63D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:17:06:29:85:3b:c8:2c:79:34:bc:b4:ce:8a: f3:3e:5b:1d:58:1a:eb:37:43:b4:ec:0a:8e:41:d9: 27:3b:b5:20:e5:8f:62:62:89:67:a7:72:78:58:31: cf:21:23:49:86:52:f7:0f:5d:28:fa:58:84:c0:5a: 21:ad:c7:fc:b5:27:24:b7:59:fb:40:15:70:7b:97: 9e:fc:8f:b0:d9:04:cd:8d:b4:4a:74:59:46:4f:a3: 4d:85:34:65:99:d8:ef:2f:c9:22:9e:1f:e1:b4:b0: a5:70:52:13:21:25:06:13:e2:87:75:12:3d:f2:fd: 02:40:5e:e0:73:81:50:cc:2d:be:dd:0d:5c:fa:0e: 19:15:b8:9c:57:93:34:85:bc:28:65:68:17:88:f1: 9f:d1:71:c7:2c:ec:ac:d9:3f:67:ed:a2:81:bb:ac: 4e:1e:e6:0a:8b:42:1d:c0:2c:33:c0:66:c2:6f:df: 9a:a4:7a:c4:6c:4d:62:56:e6:3b:83:35:2f:a2:65: 52:44:4f:56:5e:db:bc:65:ca:a6:a4:db:b8:32:50: bc:88:05:30:03:0f:f3:83:5f:7c:cc:06:ae:70:a0: e7:1d:88:77:f0:f9:6c:e2:97:c0:19:94:04:be:54: a5:47:57:6a:f0:e4:e0:5a:ed:d0:aa:f4:38:88:a5: 4d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C7:40:DD:93:18:83:C2:84:13:52:61:B2:5A:69:58:E8:0C:DF:63:D2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/74714665-c670-451e-bdcb-9074219d55ce/0/C740DD931883C284135261B25A6958E80CDF63D2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.139.120.0/23 Signature Algorithm: sha256WithRSAEncryption 34:b9:14:68:6e:42:54:56:0d:89:d1:a0:dd:6b:41:ae:d2:92: 46:ad:52:69:ed:64:96:87:5e:fd:57:16:42:e2:d7:b3:04:55: a7:4b:eb:f0:4f:c5:a1:2a:55:54:63:d9:87:48:e6:b5:fc:a5: b3:59:bb:a2:d8:ee:00:a7:77:8a:3a:d7:e8:98:3d:b0:d8:35: 96:64:1b:d9:3d:0d:d7:84:e9:65:8e:cb:40:46:0a:1a:b2:9e: c1:a5:39:94:5e:c2:ed:1e:fc:ae:8e:47:77:ca:93:53:59:61: 25:4f:fd:5d:c6:58:9d:77:c3:5a:a8:20:92:a4:b4:0b:af:86: e0:dc:f6:4f:15:77:42:93:e8:1e:d6:15:74:a0:9e:38:40:da: 17:cb:4e:b7:76:10:fc:31:d4:fc:24:2b:53:d5:61:08:b6:36: 31:6b:33:eb:2d:6a:5e:70:f1:bc:70:ec:e0:7f:01:b5:71:0c: 65:90:eb:d7:1a:2b:bf:79:de:38:0f:38:cc:85:53:e5:49:23: ab:c3:97:4f:cd:0e:91:90:c1:b1:1f:d7:dc:78:27:ca:46:aa: cd:4a:f3:14:51:58:28:8c:a6:00:44:fe:aa:0f:1c:41:4f:af: 56:7f:ad:a5:f5:95:e0:e6:01:c5:89:55:18:c8:1b:92:8b:c1: d2:64:57:88 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCdetKbEVER2xGoaDE9Z6+tTa83kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyNDA5MDA0NFoX DTI0MTEyMjA5MDU0NFowMzExMC8GA1UEAxMoQzc0MEREOTMxODgzQzI4NDEzNTI2 MUIyNUE2OTU4RTgwQ0RGNjNEMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANYXBimFO8gseTS8tM6K8z5bHVga6zdDtOwKjkHZJzu1IOWPYmKJZ6dyeFgx zyEjSYZS9w9dKPpYhMBaIa3H/LUnJLdZ+0AVcHuXnvyPsNkEzY20SnRZRk+jTYU0 ZZnY7y/JIp4f4bSwpXBSEyElBhPih3USPfL9AkBe4HOBUMwtvt0NXPoOGRW4nFeT NIW8KGVoF4jxn9FxxyzsrNk/Z+2igbusTh7mCotCHcAsM8Bmwm/fmqR6xGxNYlbm O4M1L6JlUkRPVl7bvGXKpqTbuDJQvIgFMAMP84NffMwGrnCg5x2Id/D5bOKXwBmU BL5UpUdXavDk4Frt0Kr0OIilTZkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMdA3ZMYg8KEE1JhslppWOgM32PSMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NDcxNDY2NS1jNjcwLTQ1MWUtYmRjYi05MDc0MjE5ZDU1Y2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc0NzE0NjY1 LWM2NzAtNDUxZS1iZGNiLTkwNzQyMTlkNTVjZS8wL0M3NDBERDkzMTg4M0MyODQx MzUyNjFCMjVBNjk1OEU4MENERjYzRDIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFni3gwDQYJKoZIhvcNAQELBQADggEBADS5FGhuQlRWDYnRoN1rQa7SkkatUmnt ZJaHXv1XFkLi17MEVadL6/BPxaEqVVRj2YdI5rX8pbNZu6LY7gCnd4o61+iYPbDY NZZkG9k9DdeE6WWOy0BGChqynsGlOZRewu0e/K6OR3fKk1NZYSVP/V3GWJ13w1qo IJKktAuvhuDc9k8Vd0KT6B7WFXSgnjhA2hfLTrd2EPwx1PwkK1PVYQi2NjFrM+st al5w8bxw7OB/AbVxDGWQ69caK7953jgPOMyFU+VJI6vDl0/NDpGQwbEf19x4J8pG qs1K8xRRWCiMpgBE/qoPHEFPr1Z/raX1leDmAcWJVRjIG5KLwdJkV4g= -----END CERTIFICATE-----Generated at Thu May 9 00:29:18 2024 by rpki-client on console-ams.rpki-client.org