$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.cer File: F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.cer (raw, json) Hash identifier: nUclNIwRhQLgi7HQbP52NovCQUXqUSle4whudMd/9cU= Subject key identifier: F7:00:7F:FD:A6:6A:99:D7:58:8D:A9:3F:FA:F2:6B:DE:57:B3:CA:64 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2DBF9FA22D1ABD107AAE3C39E9C96DA77CF28E67 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.mft caRepository: rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 13 Mar 2024 07:13:13 +0000 Certificate not after: Wed 12 Mar 2025 07:18:13 +0000 Subordinate resources: IP: 103.186.208.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:bf:9f:a2:2d:1a:bd:10:7a:ae:3c:39:e9:c9:6d:a7:7c:f2:8e:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 13 07:13:13 2024 GMT Not After : Mar 12 07:18:13 2025 GMT Subject: CN=F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:94:d0:69:d0:5f:7a:37:dc:70:53:9b:b5:0f: f6:5a:54:ba:77:74:bf:b0:0a:5d:6f:b3:a3:08:43: b7:29:5a:b3:d7:64:45:ff:cd:d7:ca:70:53:07:2e: 6e:d5:57:56:60:91:b0:5a:e8:0f:b9:84:bf:a7:d5: b0:f3:32:77:0c:8a:43:f9:85:5a:7e:60:c0:d0:02: 7b:3c:06:12:07:ee:5b:01:ec:eb:78:1a:66:c0:e9: cf:ff:b6:fb:ac:a4:50:42:87:bf:e4:86:c0:8f:72: eb:a9:dc:8d:ff:de:0b:9f:80:2d:aa:cf:6a:3c:bd: 04:d9:12:09:76:73:a1:13:8e:a5:33:1f:3e:09:4b: 96:3e:ac:b8:5a:d9:24:79:f2:c7:c1:86:74:14:be: 89:0d:31:1e:2c:4d:b9:c8:5d:cf:2b:37:bc:ed:73: 15:88:ba:92:7f:9a:63:76:3a:76:0b:24:5e:64:da: 5d:ba:b3:6b:d2:a5:28:c4:c1:e0:f2:55:db:91:6b: 03:d6:a3:08:61:64:d5:01:e8:3b:0c:f8:b0:ec:70: 73:2a:e7:cf:2b:51:e5:fb:bf:64:b2:4b:5a:ac:9b: 74:37:c8:6f:1a:7c:d8:51:81:3f:72:be:b0:13:e1: 24:05:45:6e:57:fd:40:50:2d:9f:5a:ce:97:69:41: 49:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F7:00:7F:FD:A6:6A:99:D7:58:8D:A9:3F:FA:F2:6B:DE:57:B3:CA:64 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/09a9e835-f3a1-4c36-b47d-6f2f71eb8aa4/0/F7007FFDA66A99D7588DA93FFAF26BDE57B3CA64.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.208.0/23 Signature Algorithm: sha256WithRSAEncryption 40:e2:33:0f:5f:4d:c4:0c:83:0f:a3:7a:8f:b5:ac:ac:75:d6: 64:53:38:b4:b9:e0:97:79:2a:c5:c0:6e:30:9a:77:19:00:44: 3c:45:53:35:e3:b0:55:9e:0c:9e:b8:ca:99:89:f0:1e:78:28: 4a:5a:d9:0c:c7:b8:d9:8b:5f:57:32:47:77:f6:48:eb:65:3e: 90:d1:42:90:73:74:a0:33:c4:4e:39:63:b1:12:bf:15:6b:74: e5:5d:7e:26:ca:9a:5d:27:26:ab:85:8a:25:1c:2d:6f:b9:af: 22:d9:e7:60:e1:ce:66:ef:c0:9c:30:73:b4:68:cf:f5:09:7b: a4:08:a5:48:84:e7:e4:ab:b7:28:ec:21:83:32:1e:59:6b:a2: 34:82:aa:2e:ec:db:93:03:36:c9:9e:a6:db:b3:3a:c6:a7:8b: 1f:0b:ef:63:24:9a:1c:cd:51:b3:99:51:ec:f4:c4:a5:28:b3: 08:98:62:a8:7a:e2:04:6b:45:31:68:bf:d0:1f:34:5a:03:3e: 83:09:02:74:03:64:a2:77:0c:14:d4:34:2d:f6:e2:cd:ad:3b: f1:fe:62:ac:9c:f0:f5:17:55:04:47:b7:90:9b:59:2a:0b:15: cf:de:c3:01:24:7a:a4:91:ce:a9:02:09:b6:e3:47:63:bb:46: f4:9b:5b:5c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULb+foi0avRB6rjw56cltp3zyjmcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMxMzA3MTMxM1oX DTI1MDMxMjA3MTgxM1owMzExMC8GA1UEAxMoRjcwMDdGRkRBNjZBOTlENzU4OERB OTNGRkFGMjZCREU1N0IzQ0E2NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKGU0GnQX3o33HBTm7UP9lpUund0v7AKXW+zowhDtylas9dkRf/N18pwUwcu btVXVmCRsFroD7mEv6fVsPMydwyKQ/mFWn5gwNACezwGEgfuWwHs63gaZsDpz/+2 +6ykUEKHv+SGwI9y66ncjf/eC5+ALarPajy9BNkSCXZzoROOpTMfPglLlj6suFrZ JHnyx8GGdBS+iQ0xHixNuchdzys3vO1zFYi6kn+aY3Y6dgskXmTaXbqza9KlKMTB 4PJV25FrA9ajCGFk1QHoOwz4sOxwcyrnzytR5fu/ZLJLWqybdDfIbxp82FGBP3K+ sBPhJAVFblf9QFAtn1rOl2lBSS0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPcAf/2mapnXWI2pP/rya95Xs8pkMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wOWE5ZTgzNS1mM2ExLTRjMzYtYjQ3ZC02ZjJmNzFlYjhhYTQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA5YTllODM1 LWYzYTEtNGMzNi1iNDdkLTZmMmY3MWViOGFhNC8wL0Y3MDA3RkZEQTY2QTk5RDc1 ODhEQTkzRkZBRjI2QkRFNTdCM0NBNjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnutAwDQYJKoZIhvcNAQELBQADggEBAEDiMw9fTcQMgw+jeo+1rKx11mRTOLS5 4Jd5KsXAbjCadxkARDxFUzXjsFWeDJ64ypmJ8B54KEpa2QzHuNmLX1cyR3f2SOtl PpDRQpBzdKAzxE45Y7ESvxVrdOVdfibKml0nJquFiiUcLW+5ryLZ52DhzmbvwJww c7Roz/UJe6QIpUiE5+SrtyjsIYMyHllrojSCqi7s25MDNsmeptuzOsanix8L72Mk mhzNUbOZUez0xKUoswiYYqh64gRrRTFov9AfNFoDPoMJAnQDZKJ3DBTUNC324s2t O/H+Yqyc8PUXVQRHt5CbWSoLFc/ewwEkeqSRzqkCCbbjR2O7RvSbW1w= -----END CERTIFICATE-----Generated at Thu May 9 00:29:19 2024 by rpki-client on console-ams.rpki-client.org