$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/FC646066A689B77054AF95653FA324395357E6A3.cer File: FC646066A689B77054AF95653FA324395357E6A3.cer (raw, json) Hash identifier: jVByEVT925q8Va1be4kWqN4ZyTV9Y5QKcBWT/C1R2sI= Subject key identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 690F5651367F719127504F81A0C0B1B655E9026B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft caRepository: rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 24 Aug 2023 08:31:04 +0000 Certificate not after: Thu 22 Aug 2024 08:36:04 +0000 Subordinate resources: IP: 14.102.152.0/22 IP: 43.249.140.0/22 IP: 103.11.96.0/22 IP: 103.254.126.0/23 IP: 202.10.63.0/24 IP: 202.52.12.0/22 IP: 2402:c300::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:0f:56:51:36:7f:71:91:27:50:4f:81:a0:c0:b1:b6:55:e9:02:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 24 08:31:04 2023 GMT Not After : Aug 22 08:36:04 2024 GMT Subject: CN=FC646066A689B77054AF95653FA324395357E6A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ef:82:bb:84:c8:86:ad:36:84:b1:1e:22:01: a1:ff:7e:3a:9e:c6:d8:ab:36:8e:c0:3b:48:1d:9f: b9:3f:87:f6:55:65:b7:6e:a5:f5:8d:03:6d:0b:fc: f7:40:8a:73:05:0f:00:f7:ad:84:f9:5d:49:08:da: fd:52:1b:98:94:3a:a2:dd:07:cd:07:a5:6c:6b:07: d0:88:0e:05:54:27:ee:66:aa:57:e2:1b:a5:46:c7: 25:fc:b0:dd:3d:2c:9c:0e:a8:5f:36:da:d1:3d:8b: 24:34:c0:e6:c1:7a:84:95:52:e1:38:10:a8:83:e1: f5:8b:58:13:f1:fb:65:3c:5d:fa:d3:40:78:a9:b6: 4d:cc:2b:08:2d:ee:45:39:86:cd:6e:f4:48:8d:99: e4:df:7a:6c:65:3c:5a:90:1e:ab:db:90:d7:a9:91: 09:f4:7b:a6:b7:c4:e2:54:ab:65:a7:86:27:19:95: fb:f8:7d:bd:25:32:41:b2:a8:38:9a:9d:e7:28:80: c1:11:5b:bd:41:b0:c2:14:ed:01:48:bb:ab:46:fb: 28:0d:07:98:56:fa:ca:51:b2:09:7c:99:31:1b:7b: 54:9c:ed:46:63:e2:47:9a:aa:35:d3:6a:02:bb:90: 68:83:33:e4:7c:33:b9:36:4e:cd:af:d8:d2:3c:cf: 00:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FC:64:60:66:A6:89:B7:70:54:AF:95:65:3F:A3:24:39:53:57:E6:A3 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c97465e3-78a0-4965-ae14-e4cb4d0fc185/0/FC646066A689B77054AF95653FA324395357E6A3.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 14.102.152.0/22 43.249.140.0/22 103.11.96.0/22 103.254.126.0/23 202.10.63.0/24 202.52.12.0/22 IPv6: 2402:c300::/32 Signature Algorithm: sha256WithRSAEncryption 5f:6b:9e:dc:d9:9a:63:d5:e3:42:fc:25:37:17:4a:75:80:49: 4c:f3:95:93:a7:e5:4a:41:88:14:e4:f1:fe:22:bd:62:b9:bd: 2d:91:e9:de:c1:2f:0f:2b:4a:be:b1:8e:43:bb:d3:9c:f2:0e: 61:6e:f1:62:b4:f4:47:ee:59:44:b9:42:60:43:51:56:f9:78: 30:99:1d:b1:58:d5:a2:f5:63:f4:77:f7:1e:92:8f:70:c4:78: 42:67:b9:cf:4e:28:02:1f:ca:d6:b5:b9:b3:f1:bf:6b:be:07: d3:1a:af:aa:66:6c:e5:fe:d9:6c:51:d4:fc:2d:2e:bd:f1:22: 66:b2:77:63:84:dd:6b:3f:66:3a:c2:82:23:37:d2:af:24:3f: 3e:7f:e9:9a:0c:99:b6:00:81:db:41:a7:57:7c:63:b1:7e:c6: 49:22:a9:5a:52:1e:b3:5f:d0:bc:54:82:fc:36:f1:12:7c:9f: 6e:3c:d0:de:60:d9:7c:80:ae:03:db:f3:1d:92:18:35:3f:31: 8f:a8:49:0b:cb:27:15:a6:a2:5a:05:8d:8e:e8:a1:56:15:7f: fb:06:7b:67:5b:f2:f0:2d:9e:1b:d9:a5:cc:b5:ad:2f:46:44: c4:d4:5e:64:27:54:24:8a:f0:38:79:26:4f:56:07:fa:39:3a: 82:41:b2:ee -----BEGIN CERTIFICATE----- MIIF8jCCBNqgAwIBAgIUaQ9WUTZ/cZEnUE+BoMCxtlXpAmswDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyNDA4MzEwNFoX DTI0MDgyMjA4MzYwNFowMzExMC8GA1UEAxMoRkM2NDYwNjZBNjg5Qjc3MDU0QUY5 NTY1M0ZBMzI0Mzk1MzU3RTZBMzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMvvgruEyIatNoSxHiIBof9+Op7G2Ks2jsA7SB2fuT+H9lVlt26l9Y0DbQv8 90CKcwUPAPethPldSQja/VIbmJQ6ot0HzQelbGsH0IgOBVQn7maqV+IbpUbHJfyw 3T0snA6oXzba0T2LJDTA5sF6hJVS4TgQqIPh9YtYE/H7ZTxd+tNAeKm2TcwrCC3u RTmGzW70SI2Z5N96bGU8WpAeq9uQ16mRCfR7prfE4lSrZaeGJxmV+/h9vSUyQbKo OJqd5yiAwRFbvUGwwhTtAUi7q0b7KA0HmFb6ylGyCXyZMRt7VJztRmPiR5qqNdNq AruQaIMz5HwzuTZOza/Y0jzPAMECAwEAAaOCAuUwggLhMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFPxkYGamibdwVK+VZT+jJDlTV+ajMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jOTc0NjVlMy03OGEwLTQ5NjUtYWUxNC1lNGNiNGQwZmMxODUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5NzQ2NWUz LTc4YTAtNDk2NS1hZTE0LWU0Y2I0ZDBmYzE4NS8wL0ZDNjQ2MDY2QTY4OUI3NzA1 NEFGOTU2NTNGQTMyNDM5NTM1N0U2QTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwTAYIKwYBBQUHAQcBAf8EPTA7MCoEAgABMCQD BAIOZpgDBAIr+YwDBAJnC2ADBAFn/n4DBADKCj8DBALKNAwwDQQCAAIwBwMFACQC wwAwDQYJKoZIhvcNAQELBQADggEBAF9rntzZmmPV40L8JTcXSnWASUzzlZOn5UpB iBTk8f4ivWK5vS2R6d7BLw8rSr6xjkO705zyDmFu8WK09EfuWUS5QmBDUVb5eDCZ HbFY1aL1Y/R39x6Sj3DEeEJnuc9OKAIfyta1ubPxv2u+B9Mar6pmbOX+2WxR1Pwt Lr3xImayd2OE3Ws/ZjrCgiM30q8kPz5/6ZoMmbYAgdtBp1d8Y7F+xkkiqVpSHrNf 0LxUgvw28RJ8n2480N5g2XyArgPb8x2SGDU/MY+oSQvLJxWmoloFjY7ooVYVf/sG e2db8vAtnhvZpcy1rS9GRMTUXmQnVCSK8Dh5Jk9WB/o5OoJBsu4= -----END CERTIFICATE-----Generated at Tue May 7 16:42:46 2024 by rpki-client on console-ams.rpki-client.org