$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.cer File: D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.cer (raw, json) Hash identifier: QkngohYeufXSIpj6EvPOSfSbKFxADAjFAI+bYJ40nkc= Subject key identifier: D6:C1:F1:3C:67:CD:02:54:5D:EB:AA:84:6E:B2:8F:6E:A3:FC:EB:66 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 40EFE3C88C96D921EA1BAB0079C33627C710D0A2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.mft caRepository: rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 30 Sep 2023 11:19:57 +0000 Certificate not after: Sat 28 Sep 2024 11:24:57 +0000 Subordinate resources: IP: 103.176.200.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ef:e3:c8:8c:96:d9:21:ea:1b:ab:00:79:c3:36:27:c7:10:d0:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 30 11:19:57 2023 GMT Not After : Sep 28 11:24:57 2024 GMT Subject: CN=D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:65:5f:8d:2d:33:af:7c:87:ba:4e:74:9f:3a: 72:21:61:7d:f2:67:f9:21:70:d1:b0:e0:e9:99:cb: 01:d7:c3:06:97:75:95:ef:03:fc:51:58:b0:29:64: 99:e5:3f:40:f2:85:95:57:50:0c:7a:80:2d:3c:1b: 1f:6c:1b:96:a0:13:eb:b4:54:96:4c:cb:5b:22:99: 8c:7c:68:23:d1:2e:34:cc:49:c6:56:79:17:4c:99: a4:1a:ea:11:a9:c1:52:a8:c9:6c:71:7e:d5:bb:5b: 7a:ed:e2:90:ca:c2:98:2a:9c:e2:49:73:5d:c3:27: 34:e5:21:b8:59:75:41:dc:56:74:e3:e8:8b:0b:73: c7:0f:13:51:1b:cb:83:c9:7f:92:96:80:be:f2:91: 2d:5d:ad:f6:bd:cb:6b:58:d0:ac:00:25:7f:f1:a8: 62:94:de:da:21:c1:06:31:18:43:75:ab:16:78:9b: 24:ab:67:08:d3:6b:0c:1d:e7:56:57:82:18:6f:21: c1:17:db:b0:18:e6:1d:be:d5:e1:01:84:19:8c:e7: f5:5e:bd:a0:2f:05:fe:7f:f4:7d:4f:ac:35:91:e2: 90:26:33:f9:2e:f4:3b:21:24:ea:4b:10:49:73:50: d7:2f:eb:9c:68:fe:35:55:da:49:a0:f7:74:cd:92: 21:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D6:C1:F1:3C:67:CD:02:54:5D:EB:AA:84:6E:B2:8F:6E:A3:FC:EB:66 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/cca2e0db-e293-41c5-8583-38015758421c/0/D6C1F13C67CD02545DEBAA846EB28F6EA3FCEB66.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.200.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:41:4c:cc:22:6a:8e:a5:d2:64:29:aa:65:e0:6a:48:fa:af: d2:e6:e9:89:dd:79:c7:ec:1e:7a:62:31:5a:20:6e:32:9c:1d: 05:ec:49:3a:a3:49:fc:79:87:be:2d:aa:56:e8:f0:8e:6f:49: 4a:d1:42:39:26:62:cc:6e:a3:fe:75:28:d6:fa:07:08:a9:25: a2:4c:0a:22:e8:4b:c5:68:af:0b:22:a4:72:94:3e:fd:ce:d6: ba:92:09:0d:5a:35:41:99:d0:be:69:c7:76:37:72:e3:15:85: 56:1c:07:c7:a2:d0:fe:d3:a5:cb:10:18:35:20:3a:0b:6c:9a: f0:6c:1b:31:c3:c9:b1:0a:74:7c:7c:a2:95:20:ef:e2:eb:a0: 47:18:9a:21:6a:e4:94:a3:43:96:43:d3:5b:76:6f:60:96:38: 77:67:40:a3:8a:97:92:25:4b:ec:e0:2b:1c:ee:f2:37:8a:96: 75:4a:38:f8:17:f1:0e:f1:b7:35:f2:36:4d:81:bc:39:e2:0c: d4:5e:8f:40:9f:a6:6b:4e:1c:b0:ea:eb:0f:7f:e4:e1:f2:e6: 50:41:4a:4f:25:d5:d0:01:34:27:54:43:b9:c4:18:9e:05:ad: 5f:c2:43:dc:be:6e:92:a9:2c:49:36:96:39:93:36:74:ec:bf: 68:37:58:8a -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQO/jyIyW2SHqG6sAecM2J8cQ0KIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkzMDExMTk1N1oX DTI0MDkyODExMjQ1N1owMzExMC8GA1UEAxMoRDZDMUYxM0M2N0NEMDI1NDVERUJB QTg0NkVCMjhGNkVBM0ZDRUI2NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMVlX40tM698h7pOdJ86ciFhffJn+SFw0bDg6ZnLAdfDBpd1le8D/FFYsClk meU/QPKFlVdQDHqALTwbH2wblqAT67RUlkzLWyKZjHxoI9EuNMxJxlZ5F0yZpBrq EanBUqjJbHF+1btbeu3ikMrCmCqc4klzXcMnNOUhuFl1QdxWdOPoiwtzxw8TURvL g8l/kpaAvvKRLV2t9r3La1jQrAAlf/GoYpTe2iHBBjEYQ3WrFnibJKtnCNNrDB3n VleCGG8hwRfbsBjmHb7V4QGEGYzn9V69oC8F/n/0fU+sNZHikCYz+S70OyEk6ksQ SXNQ1y/rnGj+NVXaSaD3dM2SIScCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNbB8TxnzQJUXeuqhG6yj26j/OtmMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jY2EyZTBkYi1lMjkzLTQxYzUtODU4My0zODAxNTc1ODQyMWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2NjYTJlMGRi LWUyOTMtNDFjNS04NTgzLTM4MDE1NzU4NDIxYy8wL0Q2QzFGMTNDNjdDRDAyNTQ1 REVCQUE4NDZFQjI4RjZFQTNGQ0VCNjYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsMgwDQYJKoZIhvcNAQELBQADggEBAH5BTMwiao6l0mQpqmXgakj6r9Lm6Ynd ecfsHnpiMVogbjKcHQXsSTqjSfx5h74tqlbo8I5vSUrRQjkmYsxuo/51KNb6Bwip JaJMCiLoS8VorwsipHKUPv3O1rqSCQ1aNUGZ0L5px3Y3cuMVhVYcB8ei0P7TpcsQ GDUgOgtsmvBsGzHDybEKdHx8opUg7+LroEcYmiFq5JSjQ5ZD01t2b2CWOHdnQKOK l5IlS+zgKxzu8jeKlnVKOPgX8Q7xtzXyNk2BvDniDNRej0CfpmtOHLDq6w9/5OHy 5lBBSk8l1dABNCdUQ7nEGJ4FrV/CQ9y+bpKpLEk2ljmTNnTsv2g3WIo= -----END CERTIFICATE-----Generated at Wed May 8 17:45:25 2024 by rpki-client on console-ams.rpki-client.org