$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D3917D15F87332C50BFC1165A882EFEA7D8B6162.cer File: D3917D15F87332C50BFC1165A882EFEA7D8B6162.cer (raw, json) Hash identifier: ngSfY94d1nk8KcqcmOOpH7k+n7tu1OSBTYDDkmaHRo4= Subject key identifier: D3:91:7D:15:F8:73:32:C5:0B:FC:11:65:A8:82:EF:EA:7D:8B:61:62 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 75463718E474AF1D4361EC783465AB0E0E09926D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0/D3917D15F87332C50BFC1165A882EFEA7D8B6162.mft caRepository: rsync://repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 27 Feb 2024 05:28:10 +0000 Certificate not after: Tue 25 Feb 2025 05:33:10 +0000 Subordinate resources: IP: 103.15.251.0/24 IP: 2001:df0:446::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:46:37:18:e4:74:af:1d:43:61:ec:78:34:65:ab:0e:0e:09:92:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 27 05:28:10 2024 GMT Not After : Feb 25 05:33:10 2025 GMT Subject: CN=D3917D15F87332C50BFC1165A882EFEA7D8B6162 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:64:39:4b:a8:8c:a8:28:d7:25:e5:fc:b2:aa: d0:d1:fa:01:da:58:42:18:55:14:29:07:7b:14:25: ac:86:38:30:bc:b9:8f:53:f6:d1:33:d3:0d:16:15: 96:cb:04:b5:62:7b:6e:26:a2:0c:3c:23:fb:64:c8: 1d:06:00:40:93:c9:c5:01:15:db:74:f4:ad:32:72: 13:92:43:d6:9b:a4:75:51:5e:6f:7e:40:88:1d:5a: 21:da:59:43:a1:1b:b9:57:66:89:aa:60:ac:13:7a: bf:88:7c:bf:84:fc:55:91:eb:85:41:0f:79:5e:0a: 16:6d:eb:39:3a:87:73:29:a8:eb:82:4e:01:93:32: f1:16:31:fe:e1:3c:27:aa:35:00:c6:31:ad:81:56: 22:ad:f8:ea:80:24:2a:1f:d1:54:bd:dd:36:fd:5a: d7:bf:e2:c4:a0:39:d4:cb:0c:59:1d:3b:c6:71:8f: f1:65:67:e6:8a:b3:eb:91:e0:e4:48:87:e8:98:83: e4:82:37:97:45:fd:46:6f:83:34:19:46:47:97:4f: 7e:ab:21:0d:0e:f0:eb:f7:00:4b:b0:2d:28:3b:35: 50:57:42:1f:03:17:00:7c:50:62:8e:16:23:d5:3c: 84:dd:e3:ca:b1:da:0c:48:9b:ee:79:4c:40:2d:30: ff:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D3:91:7D:15:F8:73:32:C5:0B:FC:11:65:A8:82:EF:EA:7D:8B:61:62 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6cdfd8eb-8a40-4e8b-a9e0-9278cd04fa43/0/D3917D15F87332C50BFC1165A882EFEA7D8B6162.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.15.251.0/24 IPv6: 2001:df0:446::/48 Signature Algorithm: sha256WithRSAEncryption 82:72:69:e2:bf:48:6e:8d:6b:16:09:c2:ed:49:0e:9f:ce:79: 5a:85:a0:9c:12:33:8e:44:bb:41:91:32:bd:33:23:c2:3f:ae: 27:9f:8b:64:6d:75:6d:d4:5e:13:24:1a:bf:b0:f4:1f:5b:69: 63:58:87:84:90:21:8e:8b:43:68:06:8a:2f:bf:53:46:e4:98: 33:ba:98:46:15:25:29:e4:d9:59:22:75:58:fe:0d:0b:ab:77: 13:78:59:24:51:7e:ab:e4:e1:70:71:2a:d5:13:3a:f6:31:e9: 96:4f:1e:a2:01:12:b3:92:1f:3c:71:95:fc:7e:86:85:f1:44: 6f:d5:42:9e:3f:23:1d:51:86:70:3c:01:22:6f:95:3c:c2:3c: b2:73:f8:4c:d0:4e:79:36:3b:37:12:44:d1:96:d2:d1:66:fa: 4a:6d:a6:51:e5:d8:2a:b1:5a:ad:bb:fa:f2:99:42:89:19:bf: c2:6b:13:8c:ee:4f:61:d7:7e:0c:bc:e0:05:6d:b8:65:f1:38: 24:c7:c3:f3:13:c7:3c:93:05:a1:46:94:d2:1f:f3:fd:33:ac: 4a:ee:71:25:63:96:3d:df:2f:61:74:d0:10:ae:c3:b2:e4:81: 8f:fd:c5:1b:00:ae:79:fb:66:d4:29:d8:70:8b:72:f5:2a:72: b4:86:65:ef -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUdUY3GOR0rx1DYex4NGWrDg4Jkm0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIyNzA1MjgxMFoX DTI1MDIyNTA1MzMxMFowMzExMC8GA1UEAxMoRDM5MTdEMTVGODczMzJDNTBCRkMx MTY1QTg4MkVGRUE3RDhCNjE2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMFkOUuojKgo1yXl/LKq0NH6AdpYQhhVFCkHexQlrIY4MLy5j1P20TPTDRYV lssEtWJ7biaiDDwj+2TIHQYAQJPJxQEV23T0rTJyE5JD1pukdVFeb35AiB1aIdpZ Q6EbuVdmiapgrBN6v4h8v4T8VZHrhUEPeV4KFm3rOTqHcymo64JOAZMy8RYx/uE8 J6o1AMYxrYFWIq346oAkKh/RVL3dNv1a17/ixKA51MsMWR07xnGP8WVn5oqz65Hg 5EiH6JiD5II3l0X9Rm+DNBlGR5dPfqshDQ7w6/cAS7AtKDs1UFdCHwMXAHxQYo4W I9U8hN3jyrHaDEib7nlMQC0w/5kCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNORfRX4czLFC/wRZaiC7+p9i2FiMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82Y2RmZDhlYi04YTQwLTRlOGItYTllMC05Mjc4Y2QwNGZhNDMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZjZGZkOGVi LThhNDAtNGU4Yi1hOWUwLTkyNzhjZDA0ZmE0My8wL0QzOTE3RDE1Rjg3MzMyQzUw QkZDMTE2NUE4ODJFRkVBN0Q4QjYxNjIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnD/swDwQCAAIwCQMHACABDfAERjANBgkqhkiG9w0BAQsFAAOCAQEAgnJp4r9I bo1rFgnC7UkOn855WoWgnBIzjkS7QZEyvTMjwj+uJ5+LZG11bdReEyQav7D0H1tp Y1iHhJAhjotDaAaKL79TRuSYM7qYRhUlKeTZWSJ1WP4NC6t3E3hZJFF+q+ThcHEq 1RM69jHplk8eogESs5IfPHGV/H6GhfFEb9VCnj8jHVGGcDwBIm+VPMI8snP4TNBO eTY7NxJE0ZbS0Wb6Sm2mUeXYKrFarbv68plCiRm/wmsTjO5PYdd+DLzgBW24ZfE4 JMfD8xPHPJMFoUaU0h/z/TOsSu5xJWOWPd8vYXTQEK7DsuSBj/3FGwCueftm1CnY cIty9SpytIZl7w== -----END CERTIFICATE-----Generated at Thu May 9 00:29:18 2024 by rpki-client on console-ams.rpki-client.org