$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280.cer File: E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280.cer (raw, json) Hash identifier: gBkVW2c9gBI3N5RfiI7IVVyR6+Ys9OlvAUFxbcjs284= Subject key identifier: E8:4D:B4:4F:00:08:62:4F:8E:76:93:BC:3B:E1:F9:BF:CD:DF:A2:80 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2AE7F14E031DADF258FAC3FA643915513957B484 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0eb96005-83a9-41e4-af5b-f3eaa8f23651/0/E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280.mft caRepository: rsync://repo-rpki.idnic.net/repo/0eb96005-83a9-41e4-af5b-f3eaa8f23651/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sun 03 Sep 2023 11:22:41 +0000 Certificate not after: Sun 01 Sep 2024 11:27:41 +0000 Subordinate resources: IP: 103.120.138.0/24 IP: 2001:df6:1d00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:e7:f1:4e:03:1d:ad:f2:58:fa:c3:fa:64:39:15:51:39:57:b4:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 3 11:22:41 2023 GMT Not After : Sep 1 11:27:41 2024 GMT Subject: CN=E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:38:a1:86:3f:3e:b1:eb:7c:1e:cb:09:fb:d1: 02:fa:70:51:8e:14:75:3e:97:39:79:c2:0a:12:76: d3:8a:54:14:c9:97:2a:12:8e:33:8b:35:4f:68:3a: 8a:a0:73:32:1d:fa:c2:e3:65:bc:1f:89:3f:38:21: a1:c0:8b:af:32:99:b6:01:c8:3b:84:51:e3:02:ea: c4:cb:70:2e:a0:1b:b9:89:26:dc:a0:aa:ad:7e:af: 16:59:13:47:7c:e4:71:ad:39:2d:88:27:85:47:51: f1:a9:d4:45:ea:44:a8:98:33:05:12:9d:31:b4:6d: ba:8e:19:3b:07:16:19:7c:f6:b6:7d:c5:01:1b:13: ad:7e:af:fa:8d:d5:72:44:30:15:57:90:18:68:d5: 88:ae:c2:a0:0d:da:72:bc:92:09:e7:c8:da:c8:aa: ff:5e:33:b6:4b:0e:43:ef:86:0f:1d:4a:fb:20:c2: 41:cb:db:34:16:b5:c6:69:44:35:eb:aa:0c:28:cd: 60:7f:4d:93:1c:46:b3:44:5e:c1:7a:e1:c7:d8:c2: 7d:7d:74:41:67:e4:a0:35:83:4e:76:0d:cb:e0:c3: 11:a7:73:c5:0d:3f:6d:5b:82:6a:b7:a9:5c:55:95: d5:d0:fa:2a:78:26:16:61:cb:8a:67:7f:c3:99:73: ab:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: E8:4D:B4:4F:00:08:62:4F:8E:76:93:BC:3B:E1:F9:BF:CD:DF:A2:80 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0eb96005-83a9-41e4-af5b-f3eaa8f23651/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0eb96005-83a9-41e4-af5b-f3eaa8f23651/0/E84DB44F0008624F8E7693BC3BE1F9BFCDDFA280.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.120.138.0/24 IPv6: 2001:df6:1d00::/48 Signature Algorithm: sha256WithRSAEncryption 16:6f:e0:af:7e:96:55:b2:a9:e7:d9:01:2e:a8:95:e8:59:cc: cc:65:4c:23:42:92:f5:ba:68:13:c4:a3:8b:07:da:3f:00:30: e7:88:d2:4f:bf:7c:75:64:de:61:1f:2c:93:59:11:6b:19:ee: d2:4e:18:dc:7f:a2:37:05:c3:47:da:94:da:cb:5a:f9:e7:e2: b4:ce:0d:0f:2f:a9:d0:29:e0:79:34:3e:14:84:ae:f2:7a:15: a5:a9:0d:da:47:8e:72:b9:57:07:86:0e:d0:b6:80:ce:25:8d: ee:46:d7:01:29:32:b7:8a:a1:cb:7e:09:01:9c:80:ef:65:e3: 43:1b:1f:2d:03:ba:70:58:96:95:bd:26:17:8f:08:ad:1c:9c: 6c:b4:d2:20:6d:a5:5c:6f:e6:45:6c:f1:a0:9d:75:f5:73:55: 47:84:e8:b6:8f:3a:65:aa:8a:a1:37:e4:8c:64:7f:0c:9c:5b: 43:9a:42:7b:69:c5:26:fb:49:c2:56:23:60:b7:9d:38:f7:9b: 06:d7:fa:1c:3e:b3:6a:0b:3d:0d:f6:71:29:bb:c3:93:ff:c3: 42:f6:b8:25:98:d9:5c:31:9e:bd:8a:f2:ef:4a:9a:45:ea:18: 8d:6b:79:a3:e1:40:57:63:93:9d:e9:c1:9e:e2:6c:bb:36:8b: f0:10:2e:f7 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUKufxTgMdrfJY+sP6ZDkVUTlXtIQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkwMzExMjI0MVoX DTI0MDkwMTExMjc0MVowMzExMC8GA1UEAxMoRTg0REI0NEYwMDA4NjI0RjhFNzY5 M0JDM0JFMUY5QkZDRERGQTI4MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKY4oYY/PrHrfB7LCfvRAvpwUY4UdT6XOXnCChJ204pUFMmXKhKOM4s1T2g6 iqBzMh36wuNlvB+JPzghocCLrzKZtgHIO4RR4wLqxMtwLqAbuYkm3KCqrX6vFlkT R3zkca05LYgnhUdR8anURepEqJgzBRKdMbRtuo4ZOwcWGXz2tn3FARsTrX6v+o3V ckQwFVeQGGjViK7CoA3acrySCefI2siq/14ztksOQ++GDx1K+yDCQcvbNBa1xmlE NeuqDCjNYH9NkxxGs0RewXrhx9jCfX10QWfkoDWDTnYNy+DDEadzxQ0/bVuCarep XFWV1dD6KngmFmHLimd/w5lzqwUCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFOhNtE8ACGJPjnaTvDvh+b/N36KAMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZWI5NjAwNS04M2E5LTQxZTQtYWY1Yi1mM2VhYThmMjM2NTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBlYjk2MDA1 LTgzYTktNDFlNC1hZjViLWYzZWFhOGYyMzY1MS8wL0U4NERCNDRGMDAwODYyNEY4 RTc2OTNCQzNCRTFGOUJGQ0RERkEyODAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABneIowDwQCAAIwCQMHACABDfYdADANBgkqhkiG9w0BAQsFAAOCAQEAFm/gr36W VbKp59kBLqiV6FnMzGVMI0KS9bpoE8SjiwfaPwAw54jST798dWTeYR8sk1kRaxnu 0k4Y3H+iNwXDR9qU2sta+efitM4NDy+p0CngeTQ+FISu8noVpakN2keOcrlXB4YO 0LaAziWN7kbXASkyt4qhy34JAZyA72XjQxsfLQO6cFiWlb0mF48IrRycbLTSIG2l XG/mRWzxoJ119XNVR4Toto86ZaqKoTfkjGR/DJxbQ5pCe2nFJvtJwlYjYLedOPeb Btf6HD6zags9DfZxKbvDk//DQva4JZjZXDGevYry70qaReoYjWt5o+FAV2OTnenB nuJsuzaL8BAu9w== -----END CERTIFICATE-----Generated at Wed May 8 17:45:31 2024 by rpki-client on console-ams.rpki-client.org