$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer File: C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.cer (raw, json) Hash identifier: 0DyhMOxgsSEIigWnVeQAaRlPGL3QBcGKy71fSCbDS2o= Subject key identifier: C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 53728EA4E27088F67AE00B2E9EF52373E2A8FD9C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.mft caRepository: rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 16 Apr 2024 12:54:07 +0000 Certificate not after: Tue 15 Apr 2025 12:59:07 +0000 Subordinate resources: IP: 103.189.122.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:72:8e:a4:e2:70:88:f6:7a:e0:0b:2e:9e:f5:23:73:e2:a8:fd:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 16 12:54:07 2024 GMT Not After : Apr 15 12:59:07 2025 GMT Subject: CN=C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c7:84:78:2f:7d:97:01:16:1b:bd:62:50:0a: db:ac:b6:3b:fb:a8:1d:66:36:e6:3b:0e:a6:95:c5: be:3e:eb:71:de:17:64:9a:08:4b:fa:b6:b1:5b:94: 54:7d:1c:5e:f2:db:29:0c:ee:ad:1a:19:55:7f:01: 14:23:1c:ff:b1:ac:7e:56:6e:95:70:29:58:a5:75: 24:5e:9b:a2:a7:b0:49:a3:7e:60:1a:22:54:2e:1d: 24:e7:e1:99:c7:c1:eb:56:34:4b:c8:71:f3:22:8d: 1d:7d:f8:83:c4:3d:80:9d:10:2f:78:87:58:bf:89: f1:79:0d:7d:60:31:d0:42:5f:44:a6:66:49:bb:7f: 2c:20:89:f4:f4:cd:d1:f2:a0:54:5b:05:52:8b:0e: 70:ed:15:5d:52:80:c2:7f:5a:a2:fa:92:de:f2:cf: 96:bd:fa:c3:18:54:26:4f:dd:fa:e0:14:87:a2:07: e4:22:b0:52:1f:1d:d4:be:fc:91:43:62:9c:b4:51: b7:a8:59:56:81:c0:bd:84:e2:23:96:9a:1f:bd:a1: 98:f0:b0:20:a4:77:e2:34:ad:1a:e0:0d:da:28:f9: 55:d8:7e:fd:af:8e:d3:0e:8c:c3:bb:0f:fd:d6:01: e5:fb:ea:83:49:4a:4d:67:48:ab:6e:db:3f:77:32: 3b:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: C9:F4:4E:61:DD:69:59:AC:A8:B0:B0:BE:9C:51:6F:5B:68:3E:D7:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0ba0b8f8-4fcf-4b9b-9794-cd3b4e406eab/0/C9F44E61DD6959ACA8B0B0BE9C516F5B683ED728.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.189.122.0/23 Signature Algorithm: sha256WithRSAEncryption 38:ba:13:fb:68:61:95:3f:75:e1:49:50:07:e8:bd:2f:26:8b: 04:33:21:08:b4:28:bc:e9:42:73:7b:70:8a:41:9b:29:23:c6: 78:59:7d:13:4d:99:9b:39:d4:43:f2:00:64:70:c2:ba:fe:e7: 4f:fa:e8:25:48:29:1b:ec:6f:bc:a3:3b:b6:24:b7:72:5a:64: 79:73:1d:59:8b:8f:e4:19:03:22:b9:ea:8f:66:a4:65:6c:c6: bf:f8:2b:f3:a0:1a:98:d0:d3:00:13:3d:84:27:1c:92:34:ba: ad:7f:b9:a2:3b:46:85:f4:ea:5c:94:8d:10:cf:ad:1f:51:30: d1:2a:1d:74:9d:e8:22:ff:9e:8a:7c:2c:8f:3b:80:d3:e7:c9: 77:1a:22:ef:5c:1b:d7:5e:04:6c:5e:79:de:d1:61:83:70:e7: e1:7f:30:3e:72:6d:f6:47:c7:43:31:0c:e7:0e:6a:32:1e:e0: 87:b8:5b:47:e0:d0:c5:8f:2d:06:b2:eb:6d:b0:35:1d:8c:67: 60:16:dc:7b:71:c2:67:2a:4a:8c:f5:26:53:3f:b2:56:04:e0: d5:03:f4:2d:5c:a0:d8:ea:ea:6b:21:26:3a:6d:bb:5c:5b:de: a2:22:e5:7d:14:8c:84:1f:37:c7:70:bc:4c:2c:0e:61:45:f4: df:d8:4d:c2 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUU3KOpOJwiPZ64AsunvUjc+Ko/ZwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQxNjEyNTQwN1oX DTI1MDQxNTEyNTkwN1owMzExMC8GA1UEAxMoQzlGNDRFNjFERDY5NTlBQ0E4QjBC MEJFOUM1MTZGNUI2ODNFRDcyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALHHhHgvfZcBFhu9YlAK26y2O/uoHWY25jsOppXFvj7rcd4XZJoIS/q2sVuU VH0cXvLbKQzurRoZVX8BFCMc/7GsflZulXApWKV1JF6boqewSaN+YBoiVC4dJOfh mcfB61Y0S8hx8yKNHX34g8Q9gJ0QL3iHWL+J8XkNfWAx0EJfRKZmSbt/LCCJ9PTN 0fKgVFsFUosOcO0VXVKAwn9aovqS3vLPlr36wxhUJk/d+uAUh6IH5CKwUh8d1L78 kUNinLRRt6hZVoHAvYTiI5aaH72hmPCwIKR34jStGuAN2ij5Vdh+/a+O0w6Mw7sP /dYB5fvqg0lKTWdIq27bP3cyO/sCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFMn0TmHdaVmsqLCwvpxRb1toPtcoMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wYmEwYjhmOC00ZmNmLTRiOWItOTc5NC1jZDNiNGU0MDZlYWIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBiYTBiOGY4 LTRmY2YtNGI5Yi05Nzk0LWNkM2I0ZTQwNmVhYi8wL0M5RjQ0RTYxREQ2OTU5QUNB OEIwQjBCRTlDNTE2RjVCNjgzRUQ3MjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnvXowDQYJKoZIhvcNAQELBQADggEBADi6E/toYZU/deFJUAfovS8miwQzIQi0 KLzpQnN7cIpBmykjxnhZfRNNmZs51EPyAGRwwrr+50/66CVIKRvsb7yjO7Ykt3Ja ZHlzHVmLj+QZAyK56o9mpGVsxr/4K/OgGpjQ0wATPYQnHJI0uq1/uaI7RoX06lyU jRDPrR9RMNEqHXSd6CL/nop8LI87gNPnyXcaIu9cG9deBGxeed7RYYNw5+F/MD5y bfZHx0MxDOcOajIe4Ie4W0fg0MWPLQay622wNR2MZ2AW3HtxwmcqSoz1JlM/slYE 4NUD9C1coNjq6mshJjptu1xb3qIi5X0UjIQfN8dwvEwsDmFF9N/YTcI= -----END CERTIFICATE-----Generated at Wed May 8 17:45:25 2024 by rpki-client on console-ams.rpki-client.org