$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F490341241E1B1C7D170AB872CA39A68309B3F3B.cer File: F490341241E1B1C7D170AB872CA39A68309B3F3B.cer (raw, json) Hash identifier: UyifLiyO6QktufyK1vsw5HNYfNmGV9rZ3d2LSalStQw= Subject key identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A951AE2D19D724DCC3678DE7B176BBEFA5C9B76 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.mft caRepository: rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 10:10:29 +0000 Certificate not after: Mon 29 Jul 2024 10:15:29 +0000 Subordinate resources: IP: 182.255.0.0/21 IP: 2001:df0:b5::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:95:1a:e2:d1:9d:72:4d:cc:36:78:de:7b:17:6b:be:fa:5c:9b:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 10:10:29 2023 GMT Not After : Jul 29 10:15:29 2024 GMT Subject: CN=F490341241E1B1C7D170AB872CA39A68309B3F3B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:67:11:a1:fa:80:54:51:a5:06:ef:89:22:c4: 8d:2a:7e:62:7b:62:28:36:63:2e:a2:2d:d3:6f:b9: 91:f2:ec:1d:48:b1:33:c2:e0:33:88:44:ba:49:de: e8:2f:6b:61:0c:d8:d6:0a:50:9c:81:80:2c:59:4f: 3f:d6:cb:38:29:e7:a2:0e:ea:74:60:84:d7:0b:41: bd:23:73:f6:cb:83:a9:df:0a:9b:8c:b7:37:2f:d9: 06:76:e9:09:3e:19:82:06:7d:2b:b7:bb:65:59:54: f2:9b:a5:16:a7:a7:9d:39:dd:ec:4d:b4:25:74:89: fd:52:e4:35:0e:d3:ee:97:9f:29:10:8f:71:07:8a: 7d:b4:20:85:f6:2d:a8:5a:fb:38:ad:5f:e1:45:80: ba:b7:56:1d:52:30:01:48:42:e1:a7:f2:42:6d:7e: 16:34:e0:76:ea:cb:90:85:67:8e:fa:c2:65:cb:8a: ee:86:b5:35:66:95:27:47:63:99:e4:45:78:41:52: 71:6c:a0:61:88:6f:b0:0b:ba:ad:ea:d2:bb:64:76: 2b:62:bf:6f:49:6d:08:d0:5c:0a:52:c5:69:7a:c9: 49:71:e1:3a:3f:b1:69:45:33:61:9c:3f:fb:bf:2d: f6:0a:4d:78:8d:db:ab:b0:a4:49:6d:c8:ec:af:75: 82:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F4:90:34:12:41:E1:B1:C7:D1:70:AB:87:2C:A3:9A:68:30:9B:3F:3B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ae86b092-527d-488f-a9f7-24797d9774cb/0/F490341241E1B1C7D170AB872CA39A68309B3F3B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 182.255.0.0/21 IPv6: 2001:df0:b5::/48 Signature Algorithm: sha256WithRSAEncryption 71:8f:67:95:4b:16:02:cc:5a:8b:b0:42:4a:24:f5:8b:dd:f5: 46:dc:35:c1:cb:a3:52:0d:b4:0c:9c:64:eb:0f:a8:d3:45:03: 7a:bf:6b:8e:30:f8:b3:83:0e:36:1a:1d:09:16:ef:d7:6c:f3: 30:70:83:b2:43:4f:e3:21:58:82:63:4d:ab:2f:b1:4b:59:52: 31:cc:4c:90:70:44:9e:07:a6:f5:6a:f8:43:83:30:df:75:42: b2:9c:f4:c7:15:63:cd:1e:f8:87:8c:7c:72:bd:95:a8:d4:bb: ef:96:49:83:57:d0:0a:1b:7b:29:f3:69:93:28:a2:f2:62:ef: b2:f1:1b:61:ba:c9:4f:36:d2:ff:7f:55:cf:40:b5:39:90:2d: 90:4b:72:9e:c3:cb:4a:28:1b:60:f1:c2:8d:70:e5:14:37:0c: c6:a2:59:4e:b0:b5:ef:07:ba:ab:7a:84:ea:e6:1d:ac:a2:f1: 20:15:90:a6:d4:14:f2:23:44:5b:b1:2c:fc:1b:b2:2e:43:77: 52:a4:70:f6:f2:0e:cb:cc:68:ae:41:ea:76:9b:68:f9:99:51: 6f:9e:ae:79:1b:83:34:03:9f:36:44:42:ba:a5:be:95:0f:48: a1:83:9a:0c:47:cb:8f:36:b4:15:ec:38:20:6a:5d:b1:1b:00: 78:e0:c3:12 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUGpUa4tGdck3MNnjeexdrvvpcm3YwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTEwMTAyOVoX DTI0MDcyOTEwMTUyOVowMzExMC8GA1UEAxMoRjQ5MDM0MTI0MUUxQjFDN0QxNzBB Qjg3MkNBMzlBNjgzMDlCM0YzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJtnEaH6gFRRpQbviSLEjSp+YntiKDZjLqIt02+5kfLsHUixM8LgM4hEukne 6C9rYQzY1gpQnIGALFlPP9bLOCnnog7qdGCE1wtBvSNz9suDqd8Km4y3Ny/ZBnbp CT4ZggZ9K7e7ZVlU8pulFqennTnd7E20JXSJ/VLkNQ7T7pefKRCPcQeKfbQghfYt qFr7OK1f4UWAurdWHVIwAUhC4afyQm1+FjTgdurLkIVnjvrCZcuK7oa1NWaVJ0dj meRFeEFScWygYYhvsAu6rerSu2R2K2K/b0ltCNBcClLFaXrJSXHhOj+xaUUzYZw/ +78t9gpNeI3bq7CkSW3I7K91gqcCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPSQNBJB4bHH0XCrhyyjmmgwmz87MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hZTg2YjA5Mi01MjdkLTQ4OGYtYTlmNy0yNDc5N2Q5Nzc0Y2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FlODZiMDky LTUyN2QtNDg4Zi1hOWY3LTI0Nzk3ZDk3NzRjYi8wL0Y0OTAzNDEyNDFFMUIxQzdE MTcwQUI4NzJDQTM5QTY4MzA5QjNGM0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAO2/wAwDwQCAAIwCQMHACABDfAAtTANBgkqhkiG9w0BAQsFAAOCAQEAcY9nlUsW Asxai7BCSiT1i931Rtw1wcujUg20DJxk6w+o00UDer9rjjD4s4MONhodCRbv12zz MHCDskNP4yFYgmNNqy+xS1lSMcxMkHBEngem9Wr4Q4Mw33VCspz0xxVjzR74h4x8 cr2VqNS775ZJg1fQCht7KfNpkyii8mLvsvEbYbrJTzbS/39Vz0C1OZAtkEtynsPL SigbYPHCjXDlFDcMxqJZTrC17we6q3qE6uYdrKLxIBWQptQU8iNEW7Es/BuyLkN3 UqRw9vIOy8xorkHqdpto+ZlRb56ueRuDNAOfNkRCuqW+lQ9IoYOaDEfLjza0Few4 IGpdsRsAeODDEg== -----END CERTIFICATE-----Generated at Wed May 8 09:50:45 2024 by rpki-client on console-fra.rpki-client.org