$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer File: D7286D5F5B9ADD4CC166AD32519692F0C8902B29.cer (raw, json) Hash identifier: GsMRUGbdaGV2EjMp75PjIWQvq3hReK4gvTedZZ82AhY= Subject key identifier: D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 630F6E9B4A3406AA4A5C2B67D893010CF61F03A1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.mft caRepository: rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 01 May 2024 18:33:46 +0000 Certificate not after: Wed 30 Apr 2025 18:38:46 +0000 Subordinate resources: IP: 103.169.198.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:0f:6e:9b:4a:34:06:aa:4a:5c:2b:67:d8:93:01:0c:f6:1f:03:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: May 1 18:33:46 2024 GMT Not After : Apr 30 18:38:46 2025 GMT Subject: CN=D7286D5F5B9ADD4CC166AD32519692F0C8902B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b7:b1:8b:db:35:fb:0e:55:2a:c7:ca:bf:d8: 2d:86:e0:ea:26:aa:93:49:b1:87:a3:c4:a8:04:b7: 1c:b0:80:44:e5:f5:02:36:04:60:e7:c2:22:b0:73: c4:6c:74:b4:ac:1f:ef:0d:cb:31:b0:2f:01:1f:21: c0:c6:08:67:f0:28:76:73:39:0e:12:6f:0b:9a:c5: 17:a2:c6:42:eb:00:00:b7:da:6a:64:b7:65:d5:87: 74:d9:64:82:ad:dc:21:39:82:2f:7f:ff:56:ab:0a: 12:22:66:5b:a7:8b:66:72:7d:2c:5b:d2:fd:db:e8: 91:b7:53:78:fe:8e:6c:11:f5:d3:3c:32:6d:0e:f4: 89:dd:be:9b:0a:4d:b2:06:e2:76:d1:10:64:1b:4c: f9:05:cb:26:8c:49:b7:4c:2e:b8:3e:de:d5:12:23: 4b:a5:70:1f:24:35:b9:5a:8d:f4:47:b7:e5:a0:ba: d0:3c:3c:6a:fb:20:73:9b:4f:51:7e:da:73:6e:c9: 32:2a:15:c4:23:f5:83:0d:ff:48:82:5c:11:ce:4c: 25:17:16:e4:48:78:8e:0a:b4:12:de:35:70:74:e5: a7:f4:07:e4:f1:44:c4:5e:6b:3d:0b:04:19:31:02: 4f:1d:e6:a3:fe:d4:61:49:9a:a4:5a:7d:05:8b:87: a5:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: D7:28:6D:5F:5B:9A:DD:4C:C1:66:AD:32:51:96:92:F0:C8:90:2B:29 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/45260641-bce2-445c-9de5-370a787f9530/0/D7286D5F5B9ADD4CC166AD32519692F0C8902B29.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.198.0/24 Signature Algorithm: sha256WithRSAEncryption 06:71:9d:87:da:e9:b7:f3:27:7f:10:58:9c:8a:92:a9:9c:6d: 74:ba:bc:09:89:20:9f:68:6f:4c:b0:0e:d9:1e:bd:27:23:88: 95:04:8e:0b:9c:7c:e7:4c:9e:b1:3e:a9:03:e7:f3:67:ad:0a: 70:0e:a5:db:c5:00:55:9d:55:49:b1:b7:f5:9b:46:96:ae:d3: 83:5d:81:f2:a3:71:67:87:16:70:8c:99:df:09:34:dc:28:4c: 61:da:ce:8b:a3:e0:4a:ce:ea:37:86:85:46:35:bb:94:38:17: 1a:d4:b3:96:b6:67:0c:46:bf:5c:88:aa:ba:3c:69:e6:ef:a7: b5:94:be:c2:e8:1a:e2:0d:2f:ac:28:8d:c6:de:e6:c0:b4:d6: 38:55:60:50:52:c1:cc:ed:01:50:e7:fe:e9:8c:b4:85:2d:66: d7:87:21:49:f1:a3:b0:aa:18:ba:56:4f:21:b0:fa:50:26:3e: f4:9a:78:16:b8:e9:e9:de:36:b2:46:07:c9:b5:51:2a:86:15: fb:f6:5a:2b:43:84:00:a0:35:7b:8b:ce:72:fe:b9:98:ae:7b: e4:d9:49:f6:62:59:8c:47:22:48:37:99:cc:f3:f5:25:bc:48: 45:fb:25:cd:74:01:55:be:cf:2c:c7:f5:8a:76:de:6b:2c:bf: 5b:d2:75:44 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYw9um0o0BqpKXCtn2JMBDPYfA6EwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDUwMTE4MzM0NloX DTI1MDQzMDE4Mzg0NlowMzExMC8GA1UEAxMoRDcyODZENUY1QjlBREQ0Q0MxNjZB RDMyNTE5NjkyRjBDODkwMkIyOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL23sYvbNfsOVSrHyr/YLYbg6iaqk0mxh6PEqAS3HLCAROX1AjYEYOfCIrBz xGx0tKwf7w3LMbAvAR8hwMYIZ/AodnM5DhJvC5rFF6LGQusAALfaamS3ZdWHdNlk gq3cITmCL3//VqsKEiJmW6eLZnJ9LFvS/dvokbdTeP6ObBH10zwybQ70id2+mwpN sgbidtEQZBtM+QXLJoxJt0wuuD7e1RIjS6VwHyQ1uVqN9Ee35aC60Dw8avsgc5tP UX7ac27JMioVxCP1gw3/SIJcEc5MJRcW5Eh4jgq0Et41cHTlp/QH5PFExF5rPQsE GTECTx3mo/7UYUmapFp9BYuHpdkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFNcobV9bmt1MwWatMlGWkvDIkCspMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80NTI2MDY0MS1iY2UyLTQ0NWMtOWRlNS0zNzBhNzg3Zjk1MzAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQ1MjYwNjQx LWJjZTItNDQ1Yy05ZGU1LTM3MGE3ODdmOTUzMC8wL0Q3Mjg2RDVGNUI5QURENEND MTY2QUQzMjUxOTY5MkYwQzg5MDJCMjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnqcYwDQYJKoZIhvcNAQELBQADggEBAAZxnYfa6bfzJ38QWJyKkqmcbXS6vAmJ IJ9ob0ywDtkevScjiJUEjgucfOdMnrE+qQPn82etCnAOpdvFAFWdVUmxt/WbRpau 04NdgfKjcWeHFnCMmd8JNNwoTGHazouj4ErO6jeGhUY1u5Q4FxrUs5a2ZwxGv1yI qro8aebvp7WUvsLoGuINL6wojcbe5sC01jhVYFBSwcztAVDn/umMtIUtZteHIUnx o7CqGLpWTyGw+lAmPvSaeBa46eneNrJGB8m1USqGFfv2WitDhACgNXuLznL+uZiu e+TZSfZiWYxHIkg3mczz9SW8SEX7Jc10AVW+zyzH9Yp23mssv1vSdUQ= -----END CERTIFICATE-----Generated at Thu May 9 00:37:11 2024 by rpki-client on console-fra.rpki-client.org