$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/F71A5EA4A463A015DB17D32923D3F431A6F20F62.cer File: F71A5EA4A463A015DB17D32923D3F431A6F20F62.cer (raw, json) Hash identifier: F8farIUbPhGxMk+Z32xQGn1rrBYhOruhTY5M8kTRxZ4= Subject key identifier: F7:1A:5E:A4:A4:63:A0:15:DB:17:D3:29:23:D3:F4:31:A6:F2:0F:62 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5E38F07E342F444EE9BA125AA8D74BE4EB265413 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0/F71A5EA4A463A015DB17D32923D3F431A6F20F62.mft caRepository: rsync://repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 04 Jan 2024 12:52:40 +0000 Certificate not after: Thu 02 Jan 2025 12:57:40 +0000 Subordinate resources: IP: 103.75.66.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:38:f0:7e:34:2f:44:4e:e9:ba:12:5a:a8:d7:4b:e4:eb:26:54:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 4 12:52:40 2024 GMT Not After : Jan 2 12:57:40 2025 GMT Subject: CN=F71A5EA4A463A015DB17D32923D3F431A6F20F62 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:6b:e5:9b:bd:dd:40:b9:c9:05:b4:f1:d3:de: c0:80:00:ac:c2:17:cb:bb:c9:b4:cc:e6:c7:a1:bc: b4:4b:d2:e1:a2:9e:b6:dd:53:de:8a:37:a3:c0:47: 56:b0:05:e7:23:e5:98:d4:e6:e0:aa:c2:57:88:ae: 89:6d:4d:b9:2d:db:15:39:34:9c:c6:d7:0a:bb:e6: e7:3d:4e:bd:f4:40:b8:e8:d4:1e:1d:df:f3:6d:e8: 10:2f:21:a0:eb:37:c3:6b:c5:79:0a:1a:8d:29:f8: e1:57:ef:f2:3e:d5:fb:e2:37:b5:62:11:05:7f:d9: 10:18:f5:17:31:4e:ba:63:e0:01:9c:81:3c:2e:f9: 48:3a:47:40:dc:73:43:78:be:a4:ce:da:69:5a:3c: a5:2b:9c:24:bf:ae:a4:41:48:b2:d7:9e:77:94:26: 7e:f9:1e:19:5b:d6:60:23:55:1a:69:cc:21:3e:93: 83:3c:da:92:36:57:cf:36:e5:21:2b:de:ad:15:2a: 57:8f:9c:43:d8:f6:f6:53:62:f6:b3:c2:ea:91:91: 6b:a7:58:9d:94:7d:6a:20:12:e9:d4:57:8f:f3:cf: 70:05:f3:36:5a:54:06:5f:18:2c:e9:b1:1f:b7:27: b4:a9:f4:a8:cf:c9:7c:f4:5f:24:97:08:14:da:6c: 23:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: F7:1A:5E:A4:A4:63:A0:15:DB:17:D3:29:23:D3:F4:31:A6:F2:0F:62 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c3f76c6d-f850-4c49-854c-55f382844c97/0/F71A5EA4A463A015DB17D32923D3F431A6F20F62.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.75.66.0/23 Signature Algorithm: sha256WithRSAEncryption 17:21:8e:92:4c:a2:30:8b:c2:2a:d1:8f:60:16:27:9c:00:c0: 09:f1:d1:0d:2e:94:88:f5:b7:39:b1:22:4c:b9:23:2d:3b:b2: 35:a7:ce:46:7f:67:4e:87:5d:5b:1c:72:27:c5:bb:2a:dc:02: 09:fc:d0:aa:ca:ed:b8:de:1f:89:0b:c3:b7:fe:5f:42:d9:c3: 0b:f7:c2:04:92:e7:ac:a4:b0:92:66:c4:7d:ef:5e:6d:d6:85: d5:32:d6:d9:45:38:b7:72:ed:84:f8:43:e9:83:85:85:14:33: cb:41:8c:58:ae:ae:33:7d:6e:3a:4c:07:eb:4e:b6:96:0f:30: c3:16:b3:cf:9a:3f:d4:31:e0:45:7f:74:d3:2c:63:a8:52:7f: c4:22:5e:7f:a2:2e:8b:aa:71:15:f2:a7:52:03:ac:75:f3:94: 0a:ef:64:e1:aa:6f:f3:69:50:6f:3b:a8:9c:bc:c9:60:0a:f8: e0:20:8c:c6:4e:bb:c1:f1:10:d0:43:83:41:3e:d1:44:1a:b6: f8:f1:a8:89:a8:5a:74:40:62:b1:0f:e9:0d:89:8d:f8:45:28: 62:8b:95:b8:ac:c1:d9:42:ed:ff:87:14:ba:ab:3e:03:9a:b4: 8c:7c:f9:0e:19:be:9c:92:10:e9:a0:59:12:f4:ee:92:dd:07: 8e:6d:c4:cc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUXjjwfjQvRE7puhJaqNdL5OsmVBMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwNDEyNTI0MFoX DTI1MDEwMjEyNTc0MFowMzExMC8GA1UEAxMoRjcxQTVFQTRBNDYzQTAxNURCMTdE MzI5MjNEM0Y0MzFBNkYyMEY2MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpr5Zu93UC5yQW08dPewIAArMIXy7vJtMzmx6G8tEvS4aKett1T3oo3o8BH VrAF5yPlmNTm4KrCV4iuiW1NuS3bFTk0nMbXCrvm5z1OvfRAuOjUHh3f823oEC8h oOs3w2vFeQoajSn44Vfv8j7V++I3tWIRBX/ZEBj1FzFOumPgAZyBPC75SDpHQNxz Q3i+pM7aaVo8pSucJL+upEFIsteed5QmfvkeGVvWYCNVGmnMIT6TgzzakjZXzzbl ISverRUqV4+cQ9j29lNi9rPC6pGRa6dYnZR9aiAS6dRXj/PPcAXzNlpUBl8YLOmx H7cntKn0qM/JfPRfJJcIFNpsI90CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPcaXqSkY6AV2xfTKSPT9DGm8g9iMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jM2Y3NmM2ZC1mODUwLTRjNDktODU0Yy01NWYzODI4NDRjOTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2MzZjc2YzZk LWY4NTAtNGM0OS04NTRjLTU1ZjM4Mjg0NGM5Ny8wL0Y3MUE1RUE0QTQ2M0EwMTVE QjE3RDMyOTIzRDNGNDMxQTZGMjBGNjIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnS0IwDQYJKoZIhvcNAQELBQADggEBABchjpJMojCLwirRj2AWJ5wAwAnx0Q0u lIj1tzmxIky5Iy07sjWnzkZ/Z06HXVsccifFuyrcAgn80KrK7bjeH4kLw7f+X0LZ wwv3wgSS56yksJJmxH3vXm3WhdUy1tlFOLdy7YT4Q+mDhYUUM8tBjFiurjN9bjpM B+tOtpYPMMMWs8+aP9Qx4EV/dNMsY6hSf8QiXn+iLouqcRXyp1IDrHXzlArvZOGq b/NpUG87qJy8yWAK+OAgjMZOu8HxENBDg0E+0UQatvjxqImoWnRAYrEP6Q2JjfhF KGKLlbiswdlC7f+HFLqrPgOatIx8+Q4ZvpySEOmgWRL07pLdB45txMw= -----END CERTIFICATE-----Generated at Wed May 8 17:45:31 2024 by rpki-client on console-ams.rpki-client.org