$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer File: E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.cer (raw, json) Hash identifier: +/GhrO7MnWoe2acN5GJ+B72ESExNa8+vMPbpoz8VB1A= Subject key identifier: E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1B16C7856E3E041EA919D572C9B661A20638BD2B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.mft caRepository: rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 08:23:09 +0000 Certificate not after: Mon 29 Jul 2024 08:28:09 +0000 Subordinate resources: IP: 103.108.156.0/22 IP: 2402:6ac0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:16:c7:85:6e:3e:04:1e:a9:19:d5:72:c9:b6:61:a2:06:38:bd:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 08:23:09 2023 GMT Not After : Jul 29 08:28:09 2024 GMT Subject: CN=E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:db:b1:71:38:aa:e3:e7:aa:f8:05:dc:49:63: b9:b3:16:f3:d4:5e:2e:4c:50:d4:31:62:fe:ea:a8: 47:3b:35:b4:02:c0:1e:d5:ca:1a:db:d5:61:b5:9c: 2c:1c:4e:34:08:0d:ff:6f:52:09:b6:47:49:12:b5: 8f:7a:28:f5:86:a3:c6:63:13:a5:72:a3:ca:60:3b: 7f:ae:8e:26:38:32:46:e3:54:9b:52:92:30:fc:83: e8:11:47:0f:aa:1e:20:f3:9e:a7:34:96:cb:f1:02: 6b:10:48:1b:cd:36:f6:4d:86:24:80:5a:97:75:52: c3:65:6e:2a:b4:7a:58:8a:14:8d:61:7b:b4:bd:3a: e4:a1:3f:f7:9b:ac:bb:26:21:bd:67:86:2f:4c:0d: 8c:22:74:8f:29:95:15:d6:cf:a1:5e:f3:e8:fe:8f: 98:e0:80:99:1d:fb:48:b3:37:64:2c:37:d0:ba:b3: 31:7e:30:0b:ec:91:a7:b1:c1:ca:d2:38:40:a1:9c: 5b:b9:f8:eb:0d:a8:52:40:22:2b:cf:a8:f7:ba:0f: 6a:11:f7:c1:97:c9:07:61:00:ca:f3:e9:31:d1:3f: 12:91:d2:e0:13:42:10:35:0a:f4:bd:0a:aa:53:ac: aa:4f:70:04:6c:35:b3:ff:a2:c0:30:05:1c:14:21: e1:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E7:26:22:AE:0F:69:B4:CD:AB:C9:CD:22:3B:3E:06:C7:DC:5E:10:14 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bd35bf79-e84a-40e0-8fd4-f169c186be8f/0/E72622AE0F69B4CDABC9CD223B3E06C7DC5E1014.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.108.156.0/22 IPv6: 2402:6ac0::/32 Signature Algorithm: sha256WithRSAEncryption 0f:c0:0c:da:f7:59:87:8c:fa:8e:64:a4:00:d7:73:f9:fe:f3: 5e:ec:a6:4c:91:ea:20:b2:24:4f:ff:72:d7:2c:20:2d:b0:6a: 6e:70:a3:f9:4b:d7:9d:9a:f1:d2:28:06:28:53:a4:a7:0f:83: fc:8d:70:95:fb:c5:0b:a2:2e:3c:d8:27:3b:75:db:38:c1:88: b5:23:4b:d4:bc:d7:26:65:f2:58:80:a1:24:bc:0f:f4:7f:d7: 92:07:fc:ed:0c:52:a8:0e:9f:b3:a7:d7:2e:a8:f1:2f:c2:62: 41:4c:3b:55:5f:d7:bd:1a:3c:a0:eb:c4:dc:a7:b6:6b:cb:c0: d4:33:a0:f8:14:0d:d8:fd:73:88:9c:9d:1d:61:b8:a1:1e:ab: 4d:ea:f1:89:53:ed:6c:8f:d2:a2:73:c8:56:ac:01:f0:0b:c9: 8f:89:9a:7c:19:d7:9a:59:50:17:9e:25:f1:31:b9:d6:d3:9b: 95:83:73:30:f8:9d:65:cd:d1:99:ea:c0:26:e5:22:6a:18:a9: 2e:4d:8b:89:e2:30:ef:c1:ff:cc:96:f4:e6:5c:0f:ba:16:50: d3:fd:a6:a3:c0:30:6d:e0:27:1c:d0:fa:7d:84:fc:b3:bf:29: a7:a5:5d:6f:23:ce:8b:08:c0:d9:9a:1b:32:b2:d3:25:96:39: 25:61:3e:ec -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUGxbHhW4+BB6pGdVyybZhogY4vSswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA4MjMwOVoX DTI0MDcyOTA4MjgwOVowMzExMC8GA1UEAxMoRTcyNjIyQUUwRjY5QjRDREFCQzlD RDIyM0IzRTA2QzdEQzVFMTAxNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALPbsXE4quPnqvgF3EljubMW89ReLkxQ1DFi/uqoRzs1tALAHtXKGtvVYbWc LBxONAgN/29SCbZHSRK1j3oo9YajxmMTpXKjymA7f66OJjgyRuNUm1KSMPyD6BFH D6oeIPOepzSWy/ECaxBIG8029k2GJIBal3VSw2VuKrR6WIoUjWF7tL065KE/95us uyYhvWeGL0wNjCJ0jymVFdbPoV7z6P6PmOCAmR37SLM3ZCw30LqzMX4wC+yRp7HB ytI4QKGcW7n46w2oUkAiK8+o97oPahH3wZfJB2EAyvPpMdE/EpHS4BNCEDUK9L0K qlOsqk9wBGw1s/+iwDAFHBQh4Q8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOcmIq4PabTNq8nNIjs+BsfcXhAUMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZDM1YmY3OS1lODRhLTQwZTAtOGZkNC1mMTY5YzE4NmJlOGYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMzViZjc5 LWU4NGEtNDBlMC04ZmQ0LWYxNjljMTg2YmU4Zi8wL0U3MjYyMkFFMEY2OUI0Q0RB QkM5Q0QyMjNCM0UwNkM3REM1RTEwMTQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnbJwwDQQCAAIwBwMFACQCasAwDQYJKoZIhvcNAQELBQADggEBAA/ADNr3WYeM +o5kpADXc/n+817spkyR6iCyJE//ctcsIC2wam5wo/lL152a8dIoBihTpKcPg/yN cJX7xQuiLjzYJzt12zjBiLUjS9S81yZl8liAoSS8D/R/15IH/O0MUqgOn7On1y6o 8S/CYkFMO1Vf170aPKDrxNyntmvLwNQzoPgUDdj9c4icnR1huKEeq03q8YlT7WyP 0qJzyFasAfALyY+JmnwZ15pZUBeeJfExudbTm5WDczD4nWXN0ZnqwCblImoYqS5N i4niMO/B/8yW9OZcD7oWUNP9pqPAMG3gJxzQ+n2E/LO/KaelXW8jzosIwNmaGzKy 0yWWOSVhPuw= -----END CERTIFICATE-----Generated at Wed May 8 09:50:45 2024 by rpki-client on console-fra.rpki-client.org