$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D0C90407CCD53717DFEA21D51A8921F20564AB25.cer File: D0C90407CCD53717DFEA21D51A8921F20564AB25.cer (raw, json) Hash identifier: QZx/e7wc+n1SFrQKFYwCpS7i/Me4cd9KP59y1gkxkvY= Subject key identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 132FCEA63FB2A7DF3BC8A05AE5ECA0B78C325F36 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft caRepository: rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 15 Jul 2023 15:46:19 +0000 Certificate not after: Sat 13 Jul 2024 15:51:19 +0000 Subordinate resources: IP: 103.10.136.0/22 IP: 114.199.80.0/20 IP: 202.47.64.0/20 IP: 202.52.8.0/22 IP: 202.58.216.0/21 IP: 2402:fc00::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:2f:ce:a6:3f:b2:a7:df:3b:c8:a0:5a:e5:ec:a0:b7:8c:32:5f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 15 15:46:19 2023 GMT Not After : Jul 13 15:51:19 2024 GMT Subject: CN=D0C90407CCD53717DFEA21D51A8921F20564AB25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:33:75:25:53:b0:00:78:46:6a:0d:cb:7f:b6: f7:4d:72:71:fa:e5:a9:2f:e4:d2:8b:95:e2:02:ed: fc:57:c5:e1:bb:be:8a:ed:3e:46:b9:14:9e:81:d4: 33:b2:ff:ea:a8:ad:f2:d6:bf:40:8c:74:97:33:7c: b1:d3:9e:bb:c3:92:62:7c:5e:20:31:d3:3f:12:b3: 8c:b6:9e:e0:b5:cb:f4:e8:2c:d5:d4:30:70:f2:f6: eb:d9:64:16:47:fb:87:12:af:db:d0:a0:a7:31:cc: 10:b5:c2:ac:96:ff:d4:a7:ee:3f:74:24:3d:cb:0e: 62:00:dd:6a:99:0e:05:99:5a:d6:15:2d:0a:65:f7: d2:b1:bc:03:85:74:c3:14:0f:a5:78:aa:04:bf:64: bf:63:63:77:0b:32:47:bf:0d:1f:1e:4a:da:b3:cc: 3b:37:6e:0a:38:f0:7b:03:4c:bf:c7:88:1b:bc:fc: fc:22:15:f0:6d:39:6f:76:2e:27:e6:69:a9:bc:7f: 73:45:63:f3:eb:71:8b:f3:70:d2:fa:4e:e0:f0:00: a7:5d:40:ab:22:a0:79:75:df:25:c8:9b:0a:5d:b8: 2f:19:dc:77:e2:46:a8:94:1d:f8:98:a5:a0:35:f9: 31:00:19:29:56:4a:56:be:0a:1e:5e:a5:51:5e:fe: 78:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D0:C9:04:07:CC:D5:37:17:DF:EA:21:D5:1A:89:21:F2:05:64:AB:25 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/8cebf116-fe2a-491b-aac8-220ead0b54e2/0/D0C90407CCD53717DFEA21D51A8921F20564AB25.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.10.136.0/22 114.199.80.0/20 202.47.64.0/20 202.52.8.0/22 202.58.216.0/21 IPv6: 2402:fc00::/32 Signature Algorithm: sha256WithRSAEncryption 04:7c:81:44:44:c4:77:17:09:ec:b0:20:79:00:73:24:a9:0e: 3d:66:7a:e9:97:d4:41:01:9e:32:5c:e0:58:0c:d9:ee:2e:37: 06:1d:db:b5:38:98:f5:8f:aa:11:92:a2:1a:62:31:cb:4b:90: c6:22:20:7b:f1:c2:8b:74:de:c1:7f:ac:72:b7:3a:63:1e:33: bb:a1:b1:dd:c3:31:98:e6:82:16:1b:c2:fe:de:ae:89:08:3a: 8d:e3:66:d7:2b:a2:fe:5b:49:d1:0f:90:4b:9c:6a:73:1a:06: 0a:d6:f6:14:ec:3e:fe:32:02:30:e6:e0:df:73:e3:54:f7:3b: f5:00:ce:ad:d9:24:04:35:05:94:19:20:b0:95:fa:ae:29:1d: 7b:69:03:a2:51:f8:9b:5f:81:c8:8b:3a:54:78:2a:fa:ec:3e: b2:ae:27:b2:4b:81:0d:4f:f3:34:78:91:1c:50:8b:55:3e:1c: e4:5e:d8:76:7a:86:94:fc:94:5e:f7:78:14:11:a4:1a:72:40: 1c:35:4e:cc:d6:6b:4f:44:71:53:9a:c4:80:74:66:69:7a:6a: d3:e2:ea:cf:50:4f:b9:c4:fe:1f:72:36:8b:5b:6d:e1:de:7e: e3:fe:17:4c:f4:46:28:a2:38:7e:8a:83:a3:26:66:dc:ec:35: 9b:6a:92:b5 -----BEGIN CERTIFICATE----- MIIF7DCCBNSgAwIBAgIUEy/Opj+yp987yKBa5eygt4wyXzYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxNTE1NDYxOVoX DTI0MDcxMzE1NTExOVowMzExMC8GA1UEAxMoRDBDOTA0MDdDQ0Q1MzcxN0RGRUEy MUQ1MUE4OTIxRjIwNTY0QUIyNTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL4zdSVTsAB4RmoNy3+2901ycfrlqS/k0ouV4gLt/FfF4bu+iu0+RrkUnoHU M7L/6qit8ta/QIx0lzN8sdOeu8OSYnxeIDHTPxKzjLae4LXL9Ogs1dQwcPL269lk Fkf7hxKv29CgpzHMELXCrJb/1KfuP3QkPcsOYgDdapkOBZla1hUtCmX30rG8A4V0 wxQPpXiqBL9kv2NjdwsyR78NHx5K2rPMOzduCjjwewNMv8eIG7z8/CIV8G05b3Yu J+Zpqbx/c0Vj8+txi/Nw0vpO4PAAp11AqyKgeXXfJcibCl24Lxncd+JGqJQd+Jil oDX5MQAZKVZKVr4KHl6lUV7+eF0CAwEAAaOCAt8wggLbMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNDJBAfM1TcX3+oh1RqJIfIFZKslMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84Y2ViZjExNi1mZTJhLTQ5MWItYWFjOC0yMjBlYWQwYjU0ZTIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhjZWJmMTE2 LWZlMmEtNDkxYi1hYWM4LTIyMGVhZDBiNTRlMi8wL0QwQzkwNDA3Q0NENTM3MTdE RkVBMjFENTFBODkyMUYyMDU2NEFCMjUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwRgYIKwYBBQUHAQcBAf8ENzA1MCQEAgABMB4D BAJnCogDBARyx1ADBATKL0ADBALKNAgDBAPKOtgwDQQCAAIwBwMFACQC/AAwDQYJ KoZIhvcNAQELBQADggEBAAR8gURExHcXCeywIHkAcySpDj1meumX1EEBnjJc4FgM 2e4uNwYd27U4mPWPqhGSohpiMctLkMYiIHvxwot03sF/rHK3OmMeM7uhsd3DMZjm ghYbwv7erokIOo3jZtcrov5bSdEPkEucanMaBgrW9hTsPv4yAjDm4N9z41T3O/UA zq3ZJAQ1BZQZILCV+q4pHXtpA6JR+JtfgciLOlR4KvrsPrKuJ7JLgQ1P8zR4kRxQ i1U+HORe2HZ6hpT8lF73eBQRpBpyQBw1TszWa09EcVOaxIB0Zml6atPi6s9QT7nE /h9yNotbbeHefuP+F0z0RiiiOH6Kg6MmZtzsNZtqkrU= -----END CERTIFICATE-----Generated at Wed May 8 17:45:25 2024 by rpki-client on console-ams.rpki-client.org