$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer File: CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.cer (raw, json) Hash identifier: gWUdJZkmKRU4i9y6TX/RuCwBFTjl8MMfy0mtvPahgCQ= Subject key identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 70DDCFFF7956E250A71D8407C98E7332FDA4A311 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft caRepository: rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 19 Oct 2023 07:04:12 +0000 Certificate not after: Thu 17 Oct 2024 07:09:12 +0000 Subordinate resources: IP: 103.6.204.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:dd:cf:ff:79:56:e2:50:a7:1d:84:07:c9:8e:73:32:fd:a4:a3:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 19 07:04:12 2023 GMT Not After : Oct 17 07:09:12 2024 GMT Subject: CN=CF0CF43F294A5C8416E3F7A6FDBF077B234CA446 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0f:c4:18:67:d0:b4:ab:85:1a:cf:49:33:97: 28:0a:68:68:8d:4e:f4:d0:e9:f3:88:a5:4e:c8:d9: a3:49:a8:83:1e:5d:cb:33:82:96:da:82:c6:b6:0d: 7f:96:c9:0d:cc:8e:75:89:6d:fc:61:83:c0:fa:e9: d1:cc:c7:f1:33:7b:6e:5b:c2:dd:53:f2:79:d2:41: f6:2f:2e:f4:4c:3e:d9:94:ae:9e:36:02:a1:03:73: 99:dd:20:09:c0:a9:c4:ac:40:5d:de:9c:c2:b8:7f: 74:14:d8:9c:86:b9:96:87:c9:03:08:04:43:d5:89: 53:87:d8:1d:c8:c2:76:b4:59:f8:b5:73:bd:d3:c2: c9:22:e7:ce:08:6e:d7:09:f0:f2:c6:01:9c:c9:52: 96:d3:97:32:40:a0:c6:f7:a8:4f:9b:90:99:56:72: ee:e9:f9:e7:d2:de:01:0f:9f:10:27:61:9c:f2:fa: 92:4a:a8:bc:c0:a6:63:78:d2:28:d9:41:33:a3:7e: 04:52:52:22:7f:d5:05:33:85:90:79:b2:b9:fb:f0: 7e:46:de:93:9e:73:3c:e1:12:90:db:a7:d9:25:75: e8:66:f2:a4:1e:24:46:26:84:f3:6b:b5:a8:75:18: 85:80:c7:cd:31:bc:b7:64:48:12:fa:b5:a5:56:0f: e2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: CF:0C:F4:3F:29:4A:5C:84:16:E3:F7:A6:FD:BF:07:7B:23:4C:A4:46 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/582f2b38-addf-4bd3-9249-e5ba56cd052e/0/CF0CF43F294A5C8416E3F7A6FDBF077B234CA446.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.6.204.0/22 Signature Algorithm: sha256WithRSAEncryption 66:c9:a4:b9:09:46:59:43:fc:f3:02:a1:3b:3c:d6:4b:f0:4d: 57:e8:19:2f:25:cc:38:67:88:bd:4c:d8:5e:40:dc:26:c8:a3: a7:9f:68:1f:17:f8:95:30:eb:c2:53:0e:98:27:b5:ce:b0:21: da:bc:0e:e2:19:86:15:cd:ea:9a:da:7b:8e:4c:c7:30:2f:ec: 42:97:85:d7:27:aa:10:f3:cd:7d:1a:04:42:be:79:6c:2f:bf: 93:8a:e5:e3:53:e7:88:ee:4b:0f:db:ce:6e:df:3f:33:a4:73: c2:86:fd:fc:04:d5:fb:5f:e5:47:77:70:60:4e:0e:ff:06:9b: c4:a9:f9:33:fd:f1:6d:e1:48:61:09:e1:f1:f0:95:61:b3:e0: 5c:3d:88:c7:8e:33:68:ed:2c:b5:bd:7c:4c:5b:48:3e:83:84: 5b:46:98:5e:1f:b2:68:a2:16:ca:f5:59:cf:2f:47:f6:81:e6: e4:26:75:23:d0:42:f4:24:eb:95:a9:d1:db:12:4e:92:11:8e: 4b:a0:e6:43:3b:55:0c:90:23:e2:94:2e:91:5e:0f:b7:1c:31: bf:3a:fb:f2:7b:ab:d7:5b:f5:7a:de:a8:aa:97:55:92:9c:2b: f3:18:63:ca:50:79:01:01:7a:4e:25:54:a6:c0:3c:f6:1e:48: d5:dd:81:ee -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUcN3P/3lW4lCnHYQHyY5zMv2koxEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxOTA3MDQxMloX DTI0MTAxNzA3MDkxMlowMzExMC8GA1UEAxMoQ0YwQ0Y0M0YyOTRBNUM4NDE2RTNG N0E2RkRCRjA3N0IyMzRDQTQ0NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANMPxBhn0LSrhRrPSTOXKApoaI1O9NDp84ilTsjZo0mogx5dyzOCltqCxrYN f5bJDcyOdYlt/GGDwPrp0czH8TN7blvC3VPyedJB9i8u9Ew+2ZSunjYCoQNzmd0g CcCpxKxAXd6cwrh/dBTYnIa5lofJAwgEQ9WJU4fYHcjCdrRZ+LVzvdPCySLnzghu 1wnw8sYBnMlSltOXMkCgxveoT5uQmVZy7un559LeAQ+fECdhnPL6kkqovMCmY3jS KNlBM6N+BFJSIn/VBTOFkHmyufvwfkbek55zPOESkNun2SV16GbypB4kRiaE82u1 qHUYhYDHzTG8t2RIEvq1pVYP4hMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFM8M9D8pSlyEFuP3pv2/B3sjTKRGMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ODJmMmIzOC1hZGRmLTRiZDMtOTI0OS1lNWJhNTZjZDA1MmUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU4MmYyYjM4 LWFkZGYtNGJkMy05MjQ5LWU1YmE1NmNkMDUyZS8wL0NGMENGNDNGMjk0QTVDODQx NkUzRjdBNkZEQkYwNzdCMjM0Q0E0NDYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAJnBswwDQYJKoZIhvcNAQELBQADggEBAGbJpLkJRllD/PMCoTs81kvwTVfoGS8l zDhniL1M2F5A3CbIo6efaB8X+JUw68JTDpgntc6wIdq8DuIZhhXN6prae45MxzAv 7EKXhdcnqhDzzX0aBEK+eWwvv5OK5eNT54juSw/bzm7fPzOkc8KG/fwE1ftf5Ud3 cGBODv8Gm8Sp+TP98W3hSGEJ4fHwlWGz4Fw9iMeOM2jtLLW9fExbSD6DhFtGmF4f smiiFsr1Wc8vR/aB5uQmdSPQQvQk65Wp0dsSTpIRjkug5kM7VQyQI+KULpFeD7cc Mb86+/J7q9db9XreqKqXVZKcK/MYY8pQeQEBek4lVKbAPPYeSNXdge4= -----END CERTIFICATE-----Generated at Thu May 9 00:29:18 2024 by rpki-client on console-ams.rpki-client.org