$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D4D0F3E6E684847D602FC73758893CE2BB05D399.cer File: D4D0F3E6E684847D602FC73758893CE2BB05D399.cer (raw, json) Hash identifier: nQh7ryQMdXuMau0IVhNeeSWWgJlw6/+O1+cH3sVzvN8= Subject key identifier: D4:D0:F3:E6:E6:84:84:7D:60:2F:C7:37:58:89:3C:E2:BB:05:D3:99 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5CE3E9DDBA71B46176A7D715064FE09AAF98BE73 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft caRepository: rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 29 Dec 2023 08:40:48 +0000 Certificate not after: Fri 27 Dec 2024 08:45:48 +0000 Subordinate resources: IP: 103.29.187.0/24 IP: 103.123.14.0/23 IP: 103.234.195.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:e3:e9:dd:ba:71:b4:61:76:a7:d7:15:06:4f:e0:9a:af:98:be:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 29 08:40:48 2023 GMT Not After : Dec 27 08:45:48 2024 GMT Subject: CN=D4D0F3E6E684847D602FC73758893CE2BB05D399 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b3:d1:d7:fb:9b:ed:70:e9:76:8a:8b:e1:97: 7b:c7:cf:0a:96:24:0d:0d:c2:73:99:cc:b0:e1:c7: dd:58:c9:46:27:80:4a:62:e0:13:8c:df:90:a6:ef: 83:62:72:fd:71:ac:43:99:f3:29:11:c6:e5:6c:a5: 0f:da:f6:35:d9:3c:bb:2c:86:25:bb:f1:33:94:66: be:82:4d:d2:1c:1b:b3:b6:f9:28:f9:11:90:41:58: d6:84:86:b7:30:1c:e4:b5:e7:7f:02:7f:75:da:0b: d5:15:f0:71:c1:1b:73:d9:5f:d1:a3:39:23:23:52: da:ba:96:04:50:65:a9:2f:9b:fe:ba:96:83:07:0d: c7:83:82:5d:37:c1:fb:be:ac:9d:53:17:92:12:c6: 97:e9:f1:80:3f:e9:d1:ac:30:a3:a6:fa:8f:30:26: 24:69:33:5b:bf:11:c5:28:a7:11:7a:60:57:b2:e8: aa:03:dc:47:53:21:d6:17:b3:80:7c:11:2d:9b:f1: 10:da:ce:e8:87:3a:08:68:2f:5a:8f:af:96:f6:c5: 19:25:6f:1f:96:ca:45:62:31:da:e0:73:0d:60:7a: 22:6d:3c:db:01:50:63:28:7d:46:4f:b2:55:07:2c: f8:8a:4b:96:26:b0:f8:7b:21:4f:92:42:ce:c6:15: 4e:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D4:D0:F3:E6:E6:84:84:7D:60:2F:C7:37:58:89:3C:E2:BB:05:D3:99 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/823530ec-990e-41d7-9d78-b77e20d76bcd/0/D4D0F3E6E684847D602FC73758893CE2BB05D399.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.29.187.0/24 103.123.14.0/23 103.234.195.0/24 Signature Algorithm: sha256WithRSAEncryption 50:33:44:43:89:3b:7c:0f:77:6e:55:fb:50:88:9d:10:3d:00: fd:c4:fc:08:f6:c8:cb:75:d4:7a:39:89:15:bf:7e:24:f5:dc: 39:08:db:d0:21:11:14:0e:bb:01:9f:62:d7:b9:ce:ca:bc:2c: 3e:18:dd:dd:b4:de:cc:0c:07:21:67:01:88:97:9a:4a:a3:66: da:e4:08:37:3e:10:81:f7:6c:78:a2:f6:6d:1a:0f:67:c5:da: 1f:7c:00:b2:fd:86:ab:e6:5d:f4:03:85:93:48:e8:1c:99:df: ff:9e:3d:7f:c9:97:20:05:d9:93:f2:50:51:5c:1e:ec:c9:e9: 25:1a:5f:c6:b8:42:95:91:a8:cd:66:e7:45:9a:6c:ef:4c:27: 8b:54:1c:4d:ee:09:31:50:a7:6a:e9:2a:f3:8c:24:6d:87:f2: e1:bc:ef:01:b5:f6:4e:9f:58:22:cd:96:8c:03:9d:41:ee:31: 0e:c8:47:53:fe:73:b1:10:26:84:0f:3d:97:20:f1:84:31:5b: d6:24:49:b8:df:c1:0c:ec:3a:a4:c2:03:1a:56:64:4b:9a:c8: e6:e1:e7:96:6a:02:6a:9d:19:11:46:01:cf:4b:8f:12:50:44: c6:b8:19:ad:44:7e:74:da:2a:61:05:17:33:d9:6b:ec:5c:bf: 2a:ee:bc:12 -----BEGIN CERTIFICATE----- MIIF0TCCBLmgAwIBAgIUXOPp3bpxtGF2p9cVBk/gmq+YvnMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyOTA4NDA0OFoX DTI0MTIyNzA4NDU0OFowMzExMC8GA1UEAxMoRDREMEYzRTZFNjg0ODQ3RDYwMkZD NzM3NTg4OTNDRTJCQjA1RDM5OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMOz0df7m+1w6XaKi+GXe8fPCpYkDQ3Cc5nMsOHH3VjJRieASmLgE4zfkKbv g2Jy/XGsQ5nzKRHG5WylD9r2Ndk8uyyGJbvxM5RmvoJN0hwbs7b5KPkRkEFY1oSG tzAc5LXnfwJ/ddoL1RXwccEbc9lf0aM5IyNS2rqWBFBlqS+b/rqWgwcNx4OCXTfB +76snVMXkhLGl+nxgD/p0awwo6b6jzAmJGkzW78RxSinEXpgV7LoqgPcR1Mh1hez gHwRLZvxENrO6Ic6CGgvWo+vlvbFGSVvH5bKRWIx2uBzDWB6Im082wFQYyh9Rk+y VQcs+IpLliaw+HshT5JCzsYVTkECAwEAAaOCAsQwggLAMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNTQ8+bmhIR9YC/HN1iJPOK7BdOZMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84MjM1MzBlYy05OTBlLTQxZDctOWQ3OC1iNzdlMjBkNzZiY2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgyMzUzMGVj LTk5MGUtNDFkNy05ZDc4LWI3N2UyMGQ3NmJjZC8wL0Q0RDBGM0U2RTY4NDg0N0Q2 MDJGQzczNzU4ODkzQ0UyQkIwNUQzOTkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwKwYIKwYBBQUHAQcBAf8EHDAaMBgEAgABMBID BABnHbsDBAFnew4DBABn6sMwDQYJKoZIhvcNAQELBQADggEBAFAzREOJO3wPd25V +1CInRA9AP3E/Aj2yMt11Ho5iRW/fiT13DkI29AhERQOuwGfYte5zsq8LD4Y3d20 3swMByFnAYiXmkqjZtrkCDc+EIH3bHii9m0aD2fF2h98ALL9hqvmXfQDhZNI6ByZ 3/+ePX/JlyAF2ZPyUFFcHuzJ6SUaX8a4QpWRqM1m50WabO9MJ4tUHE3uCTFQp2rp KvOMJG2H8uG87wG19k6fWCLNlowDnUHuMQ7IR1P+c7EQJoQPPZcg8YQxW9YkSbjf wQzsOqTCAxpWZEuayObh55ZqAmqdGRFGAc9LjxJQRMa4Ga1EfnTaKmEFFzPZa+xc vyruvBI= -----END CERTIFICATE-----Generated at Wed May 8 04:38:01 2024 by rpki-client on console-fra.rpki-client.org