$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D1CE4EF910CAB784EF293D26D983A92FCB3A3428.cer File: D1CE4EF910CAB784EF293D26D983A92FCB3A3428.cer (raw, json) Hash identifier: /mymo0V6sqpG+ZkSF5+NEcOVUvVbJGCK2vZYhTSX8QI= Subject key identifier: D1:CE:4E:F9:10:CA:B7:84:EF:29:3D:26:D9:83:A9:2F:CB:3A:34:28 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5AA6148F8318DBC9ECAE8FCB9DA8B33A2BAE9BDF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0/D1CE4EF910CAB784EF293D26D983A92FCB3A3428.mft caRepository: rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 14 Jul 2023 21:07:30 +0000 Certificate not after: Fri 12 Jul 2024 21:12:30 +0000 Subordinate resources: IP: 103.82.180.0/22 IP: 2001:df7:8e00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:a6:14:8f:83:18:db:c9:ec:ae:8f:cb:9d:a8:b3:3a:2b:ae:9b:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 14 21:07:30 2023 GMT Not After : Jul 12 21:12:30 2024 GMT Subject: CN=D1CE4EF910CAB784EF293D26D983A92FCB3A3428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:97:4d:ae:a4:4f:3c:47:13:c3:c6:7b:05:f1: 84:79:0e:de:ca:b6:7a:d1:04:06:e3:e7:40:bc:3a: dc:f3:bf:82:27:56:9b:11:98:32:ca:4e:e0:c3:d0: f3:05:1d:f8:8b:59:db:2e:77:bb:7f:1c:23:2e:62: c4:fc:6c:86:d0:8e:bf:2e:e0:2d:ec:42:d4:69:d4: a9:db:8a:0a:41:11:37:d1:15:6b:c6:c5:1e:7d:a2: d2:7b:ff:bd:a3:96:53:75:22:da:b8:db:79:4b:93: b4:d8:6c:47:15:ee:73:c3:66:f1:5d:1e:93:ae:c6: 61:fc:84:6b:dc:7d:c3:61:7a:44:81:1a:93:80:19: fe:ab:82:0d:1a:5d:91:18:cc:0d:4e:e8:b4:1b:0f: d3:d0:7c:8c:17:d3:9c:00:1f:f2:a9:0b:c2:62:81: 6e:7f:33:8e:c5:25:4e:b6:f2:55:ae:26:50:c0:5c: c6:ac:82:f7:d7:ce:74:c4:b0:70:ee:7a:f8:bd:10: 85:1a:2d:cf:84:ff:cf:f1:68:0e:5e:4f:e6:b1:87: e0:98:bc:c9:ee:ad:25:39:12:c3:25:7c:2c:f9:5a: 06:c3:90:16:15:46:72:5b:ad:5b:c7:eb:f4:c1:bf: d2:c5:21:e2:6e:4f:27:b2:60:f0:a7:f8:00:44:6f: cc:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D1:CE:4E:F9:10:CA:B7:84:EF:29:3D:26:D9:83:A9:2F:CB:3A:34:28 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/80758f15-5de8-487d-9945-c3ea207e44ad/0/D1CE4EF910CAB784EF293D26D983A92FCB3A3428.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.180.0/22 IPv6: 2001:df7:8e00::/48 Signature Algorithm: sha256WithRSAEncryption 4b:ed:86:16:16:94:a5:b6:a3:10:f8:05:fa:89:f4:0e:4a:c8: 3a:4b:5a:72:81:f8:2f:6f:43:e3:76:51:5d:39:68:8b:d3:5d: f3:bf:b7:a6:28:ee:e4:e7:91:7b:8d:6d:77:b1:20:90:f3:c3: ff:99:ff:62:fd:c8:e7:98:8c:ff:c6:c1:fc:b8:07:28:39:66: e4:23:cc:96:fc:82:4f:ef:e4:34:a3:02:61:81:7d:37:83:bc: 61:98:e1:f5:33:d4:f4:c1:cc:9a:32:11:85:7b:f8:1d:65:0f: 75:6d:5d:62:fa:1b:d4:fd:74:53:4e:d3:aa:aa:86:77:ef:a2: cb:f1:1d:35:04:eb:60:0e:16:5b:5c:76:ba:0f:9b:96:13:52: a0:8b:99:02:90:c8:04:27:25:a0:7e:7b:c5:fa:43:2b:a3:6b: 56:1c:52:76:99:5f:4d:49:bb:e5:a6:a7:1a:6f:fb:55:ca:2c: 66:f3:b0:0b:18:5b:84:16:ea:93:58:3f:a8:99:f3:58:f2:fd: ff:ad:30:d6:84:43:66:fd:1c:53:26:c4:a7:3d:d1:7e:f2:3d: fa:1c:75:0e:c9:61:46:45:c5:54:a0:26:4e:1a:e2:9b:3a:f5: d2:d9:ef:6a:c7:20:39:d5:6f:43:a0:eb:a3:98:da:8d:91:3b: fd:06:d5:f0 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUWqYUj4MY28nsro/LnaizOiuum98wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxNDIxMDczMFoX DTI0MDcxMjIxMTIzMFowMzExMC8GA1UEAxMoRDFDRTRFRjkxMENBQjc4NEVGMjkz RDI2RDk4M0E5MkZDQjNBMzQyODCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMCXTa6kTzxHE8PGewXxhHkO3sq2etEEBuPnQLw63PO/gidWmxGYMspO4MPQ 8wUd+ItZ2y53u38cIy5ixPxshtCOvy7gLexC1GnUqduKCkERN9EVa8bFHn2i0nv/ vaOWU3Ui2rjbeUuTtNhsRxXuc8Nm8V0ek67GYfyEa9x9w2F6RIEak4AZ/quCDRpd kRjMDU7otBsP09B8jBfTnAAf8qkLwmKBbn8zjsUlTrbyVa4mUMBcxqyC99fOdMSw cO56+L0QhRotz4T/z/FoDl5P5rGH4Ji8ye6tJTkSwyV8LPlaBsOQFhVGclutW8fr 9MG/0sUh4m5PJ7Jg8Kf4AERvzCkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNHOTvkQyreE7yk9JtmDqS/LOjQoMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84MDc1OGYxNS01ZGU4LTQ4N2QtOTk0NS1jM2VhMjA3ZTQ0YWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgwNzU4ZjE1 LTVkZTgtNDg3ZC05OTQ1LWMzZWEyMDdlNDRhZC8wL0QxQ0U0RUY5MTBDQUI3ODRF RjI5M0QyNkQ5ODNBOTJGQ0IzQTM0MjgubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnUrQwDwQCAAIwCQMHACABDfeOADANBgkqhkiG9w0BAQsFAAOCAQEAS+2GFhaU pbajEPgF+on0DkrIOktacoH4L29D43ZRXTloi9Nd87+3piju5OeRe41td7EgkPPD /5n/Yv3I55iM/8bB/LgHKDlm5CPMlvyCT+/kNKMCYYF9N4O8YZjh9TPU9MHMmjIR hXv4HWUPdW1dYvob1P10U07TqqqGd++iy/EdNQTrYA4WW1x2ug+blhNSoIuZApDI BCcloH57xfpDK6NrVhxSdplfTUm75aanGm/7VcosZvOwCxhbhBbqk1g/qJnzWPL9 /60w1oRDZv0cUybEpz3RfvI9+hx1DslhRkXFVKAmThrimzr10tnvascgOdVvQ6Dr o5jajZE7/QbV8A== -----END CERTIFICATE-----Generated at Wed May 8 15:17:48 2024 by rpki-client on console-fra.rpki-client.org