$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/DEF44331E724964F28697DEABAF2313CDCEEFACE.cer File: DEF44331E724964F28697DEABAF2313CDCEEFACE.cer (raw, json) Hash identifier: SPHPgMLfFCeaDy+qaz3ebL9JnzRRBGwwMZBX8FIHCrU= Subject key identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 21049745BFDD4B7ED74C81AB5A18FBA502707669 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.mft caRepository: rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 03:22:06 +0000 Certificate not after: Mon 29 Jul 2024 03:27:06 +0000 Subordinate resources: IP: 103.108.191.0/24 IP: 2001:df4:1f00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:04:97:45:bf:dd:4b:7e:d7:4c:81:ab:5a:18:fb:a5:02:70:76:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 03:22:06 2023 GMT Not After : Jul 29 03:27:06 2024 GMT Subject: CN=DEF44331E724964F28697DEABAF2313CDCEEFACE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:61:28:d4:45:50:a1:8e:d4:ef:48:ec:eb:b5: 6f:49:d2:0d:b7:b5:78:5d:0c:25:e4:1f:6f:1d:83: 8c:22:5d:1e:cc:ab:8e:d6:d9:74:2b:21:2d:23:39: ef:f6:2f:7a:14:24:27:6b:a8:5b:84:30:39:13:52: 33:7f:8e:95:1c:b4:36:af:51:4e:5a:bb:b8:2b:cb: 76:b9:17:69:9b:1f:87:e2:68:f1:4f:76:e1:48:9e: 4b:e7:10:02:74:b5:c6:26:fd:ba:19:f6:14:61:31: 21:cb:e6:e7:6c:70:76:9a:ed:0e:9b:d2:7d:b3:17: b9:e1:4d:c2:58:17:2b:64:8b:53:ab:75:87:20:de: 6d:dc:4e:46:52:24:84:03:83:3b:88:2d:18:8f:c8: bf:89:bd:10:c8:66:d3:66:fa:bf:92:01:1f:40:e1: 5e:63:4b:2f:41:69:9f:29:b3:80:e4:02:61:14:7f: 70:9c:99:cb:5c:0a:0b:4b:bb:65:dc:e1:7d:b4:fb: 54:73:2a:f8:7d:ea:f4:83:9e:0d:77:93:6c:28:a8: 23:c1:9c:18:d7:2b:b4:ef:4a:ac:57:06:44:d1:62: b3:aa:94:d3:24:8c:a2:b6:7f:c4:72:7f:57:c0:13: a2:b8:e3:c6:a0:bb:90:45:3c:d2:ab:33:01:84:c0: 0e:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: DE:F4:43:31:E7:24:96:4F:28:69:7D:EA:BA:F2:31:3C:DC:EE:FA:CE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f190c37e-2655-42b1-baf7-42ec1cf192aa/0/DEF44331E724964F28697DEABAF2313CDCEEFACE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.191.0/24 IPv6: 2001:df4:1f00::/48 Signature Algorithm: sha256WithRSAEncryption 66:25:53:40:fe:fc:9d:b0:39:24:c1:50:ee:07:57:4d:3e:49: 7c:07:b5:6d:df:39:da:e1:e7:26:0f:f4:68:66:f2:42:30:df: 21:a4:f4:51:fd:dc:d0:be:2f:c9:93:84:e8:90:56:ea:f3:fb: bf:f9:84:18:a0:f3:23:d4:61:4e:55:0a:78:bd:8f:04:88:e5: a4:d3:72:2c:fa:48:fc:e8:60:53:45:8f:09:ae:c1:a9:df:04: 51:fe:04:0a:13:71:ad:c1:94:61:8c:21:0d:f0:94:85:79:61: 5a:2f:de:3c:28:ed:a0:36:91:85:7e:1e:6c:14:c1:64:20:7c: 57:a6:c4:41:63:e9:59:09:bd:f3:fd:9b:52:6d:62:1f:a3:9e: b2:47:b3:d1:37:57:e9:5d:79:47:38:d0:23:1b:eb:a3:ab:ab: 76:0f:2c:d8:5f:1d:03:d9:51:3f:f0:15:23:68:28:1a:b0:7a: a9:66:82:0d:33:4f:40:c2:40:57:ba:8d:76:60:6a:73:fa:50: db:e5:ee:8c:65:40:c7:26:31:21:81:49:1c:b4:da:1f:de:3a: 3a:64:63:12:b0:b7:a9:64:63:84:9f:0d:22:f1:66:b5:39:01: 97:03:3c:4a:26:87:dc:a4:ec:b8:dd:64:48:7a:df:4f:dd:94: 9f:fb:0f:47 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUIQSXRb/dS37XTIGrWhj7pQJwdmkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTAzMjIwNloX DTI0MDcyOTAzMjcwNlowMzExMC8GA1UEAxMoREVGNDQzMzFFNzI0OTY0RjI4Njk3 REVBQkFGMjMxM0NEQ0VFRkFDRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORhKNRFUKGO1O9I7Ou1b0nSDbe1eF0MJeQfbx2DjCJdHsyrjtbZdCshLSM5 7/YvehQkJ2uoW4QwORNSM3+OlRy0Nq9RTlq7uCvLdrkXaZsfh+Jo8U924UieS+cQ AnS1xib9uhn2FGExIcvm52xwdprtDpvSfbMXueFNwlgXK2SLU6t1hyDebdxORlIk hAODO4gtGI/Iv4m9EMhm02b6v5IBH0DhXmNLL0FpnymzgOQCYRR/cJyZy1wKC0u7 ZdzhfbT7VHMq+H3q9IOeDXeTbCioI8GcGNcrtO9KrFcGRNFis6qU0ySMorZ/xHJ/ V8ATorjjxqC7kEU80qszAYTADpUCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFN70QzHnJJZPKGl96rryMTzc7vrOMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mMTkwYzM3ZS0yNjU1LTQyYjEtYmFmNy00MmVjMWNmMTkyYWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2YxOTBjMzdl LTI2NTUtNDJiMS1iYWY3LTQyZWMxY2YxOTJhYS8wL0RFRjQ0MzMxRTcyNDk2NEYy ODY5N0RFQUJBRjIzMTNDRENFRUZBQ0UubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnbL8wDwQCAAIwCQMHACABDfQfADANBgkqhkiG9w0BAQsFAAOCAQEAZiVTQP78 nbA5JMFQ7gdXTT5JfAe1bd852uHnJg/0aGbyQjDfIaT0Uf3c0L4vyZOE6JBW6vP7 v/mEGKDzI9RhTlUKeL2PBIjlpNNyLPpI/OhgU0WPCa7Bqd8EUf4EChNxrcGUYYwh DfCUhXlhWi/ePCjtoDaRhX4ebBTBZCB8V6bEQWPpWQm98/2bUm1iH6Oeskez0TdX 6V15RzjQIxvro6urdg8s2F8dA9lRP/AVI2goGrB6qWaCDTNPQMJAV7qNdmBqc/pQ 2+XujGVAxyYxIYFJHLTaH946OmRjErC3qWRjhJ8NIvFmtTkBlwM8SiaH3KTsuN1k SHrfT92Un/sPRw== -----END CERTIFICATE-----Generated at Wed May 8 09:50:44 2024 by rpki-client on console-fra.rpki-client.org