$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer File: D469937BD030575A6389B1FF4CDB185EFBC4B1FA.cer (raw, json) Hash identifier: 7X3glkl2jvZl721edfZ7ZisiilI0BPbJvV5k07PfqJM= Subject key identifier: D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2EE24BDE5E27EF1971F251BC9D66F15701163B4F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.mft caRepository: rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 22 Nov 2023 05:21:35 +0000 Certificate not after: Wed 20 Nov 2024 05:26:35 +0000 Subordinate resources: IP: 103.41.248.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:e2:4b:de:5e:27:ef:19:71:f2:51:bc:9d:66:f1:57:01:16:3b:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 22 05:21:35 2023 GMT Not After : Nov 20 05:26:35 2024 GMT Subject: CN=D469937BD030575A6389B1FF4CDB185EFBC4B1FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:12:4e:38:c4:a9:fb:85:ad:42:9c:ea:4e:26: 2f:a7:36:5e:b6:45:6c:df:b0:f1:f7:79:26:af:4c: 7d:0c:3a:23:ca:91:39:9f:c8:bd:35:30:38:fa:f0: 7f:0f:3f:47:2d:f6:e2:1b:03:2a:b2:9e:81:26:1d: 1d:9d:bc:4b:f2:87:46:ae:81:a7:c8:b3:d2:b6:fc: 91:88:8c:6c:e0:f0:16:c0:d6:c9:ef:ee:14:73:ce: 80:11:48:35:1a:f8:02:90:ee:bd:f3:6b:5b:74:9f: 83:9b:39:44:38:7b:46:28:79:bc:76:7a:ed:e6:25: 37:60:67:98:1a:62:88:c7:41:a5:e2:00:11:df:3a: 74:2d:95:45:ec:40:b6:db:cf:e1:f9:20:0b:00:d8: a5:9f:86:d6:da:bb:82:c6:2a:02:51:1d:6f:fe:58: f6:bc:4e:a4:92:fd:f3:ca:c9:20:6e:10:77:b1:fb: 45:6b:86:05:97:84:87:5c:6b:44:d2:54:bc:d5:3e: ca:cf:52:f2:ff:90:05:ea:19:a8:10:c3:9a:07:67: 69:7a:8c:93:89:31:06:94:16:28:9b:23:e8:1b:ac: 5c:ba:22:81:5b:c2:be:c6:07:32:62:41:67:ae:35: 56:b1:e0:4b:e4:33:32:df:00:72:08:26:14:95:1b: 21:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D4:69:93:7B:D0:30:57:5A:63:89:B1:FF:4C:DB:18:5E:FB:C4:B1:FA X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/775277e8-7d0f-4184-9c28-a6635efef29c/0/D469937BD030575A6389B1FF4CDB185EFBC4B1FA.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.248.0/23 Signature Algorithm: sha256WithRSAEncryption 80:82:c2:0e:e9:92:fa:b3:c6:ab:e6:8d:38:03:e1:94:d9:c2: f9:48:7c:00:4c:0d:bd:b4:a3:18:c2:24:8e:34:3e:d2:88:dd: c3:64:ab:09:e2:f1:9d:7c:6b:30:7f:a5:67:3b:8a:5f:d5:4a: 73:97:13:4e:a0:a6:e2:3c:b1:73:78:11:c4:d6:ba:0f:d8:f4: 43:cd:09:1f:58:c3:d0:b0:ac:0b:4e:1e:20:8e:45:5b:b1:27: 3a:f1:91:89:5f:d3:70:82:67:9d:00:ba:f2:be:65:98:bc:a2: 6c:2b:b0:1a:c4:49:c5:9a:b6:fd:47:19:34:01:35:63:78:8b: 37:6e:b2:2f:ee:ad:ca:21:ef:9e:8d:8c:a8:e5:ff:43:a7:66: 43:80:6f:e8:8f:03:46:99:c2:99:47:7c:d8:e6:3b:f6:a4:53: c8:83:17:a9:75:47:2e:d5:cf:3d:77:49:c0:ce:3f:f4:cb:ff: d1:b3:b0:9e:c9:5b:21:35:b8:de:6c:5f:41:61:76:cd:fe:db: 5f:3c:78:25:06:f8:5c:fc:ab:1d:af:dc:cd:0e:5a:ec:a8:69: dd:04:bf:a6:86:86:ea:eb:0f:3e:46:6f:15:79:0e:47:6b:64: 34:33:7c:0f:1d:ef:18:cf:f4:b9:bf:c5:b6:52:01:05:4d:99: c1:db:9d:67 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULuJL3l4n7xlx8lG8nWbxVwEWO08wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyMjA1MjEzNVoX DTI0MTEyMDA1MjYzNVowMzExMC8GA1UEAxMoRDQ2OTkzN0JEMDMwNTc1QTYzODlC MUZGNENEQjE4NUVGQkM0QjFGQTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAK0STjjEqfuFrUKc6k4mL6c2XrZFbN+w8fd5Jq9MfQw6I8qROZ/IvTUwOPrw fw8/Ry324hsDKrKegSYdHZ28S/KHRq6Bp8iz0rb8kYiMbODwFsDWye/uFHPOgBFI NRr4ApDuvfNrW3Sfg5s5RDh7Rih5vHZ67eYlN2BnmBpiiMdBpeIAEd86dC2VRexA ttvP4fkgCwDYpZ+G1tq7gsYqAlEdb/5Y9rxOpJL988rJIG4Qd7H7RWuGBZeEh1xr RNJUvNU+ys9S8v+QBeoZqBDDmgdnaXqMk4kxBpQWKJsj6BusXLoigVvCvsYHMmJB Z641VrHgS+QzMt8AcggmFJUbIcECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNRpk3vQMFdaY4mx/0zbGF77xLH6MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83NzUyNzdlOC03ZDBmLTQxODQtOWMyOC1hNjYzNWVmZWYyOWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzc3NTI3N2U4 LTdkMGYtNDE4NC05YzI4LWE2NjM1ZWZlZjI5Yy8wL0Q0Njk5MzdCRDAzMDU3NUE2 Mzg5QjFGRjRDREIxODVFRkJDNEIxRkEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnKfgwDQYJKoZIhvcNAQELBQADggEBAICCwg7pkvqzxqvmjTgD4ZTZwvlIfABM Db20oxjCJI40PtKI3cNkqwni8Z18azB/pWc7il/VSnOXE06gpuI8sXN4EcTWug/Y 9EPNCR9Yw9CwrAtOHiCORVuxJzrxkYlf03CCZ50AuvK+ZZi8omwrsBrEScWatv1H GTQBNWN4izdusi/urcoh756NjKjl/0OnZkOAb+iPA0aZwplHfNjmO/akU8iDF6l1 Ry7Vzz13ScDOP/TL/9GzsJ7JWyE1uN5sX0Fhds3+2188eCUG+Fz8qx2v3M0OWuyo ad0Ev6aGhurrDz5GbxV5DkdrZDQzfA8d7xjP9Lm/xbZSAQVNmcHbnWc= -----END CERTIFICATE-----Generated at Wed May 8 15:17:48 2024 by rpki-client on console-fra.rpki-client.org