$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer File: FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.cer (raw, json) Hash identifier: iHrhAf6i2hcL8jStEJTFgPRqxFYibuPruxBXVFgjxYY= Subject key identifier: FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 58F90BBFB7F74400173993683A7519272FF17526 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.mft caRepository: rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 16 Jun 2023 04:47:18 +0000 Certificate not after: Fri 14 Jun 2024 04:52:18 +0000 Subordinate resources: IP: 103.177.14.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:f9:0b:bf:b7:f7:44:00:17:39:93:68:3a:75:19:27:2f:f1:75:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 16 04:47:18 2023 GMT Not After : Jun 14 04:52:18 2024 GMT Subject: CN=FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:be:74:c0:5e:fb:e7:66:4a:a1:09:31:c0:96: 29:4d:3e:d2:6e:74:73:89:2b:8e:8f:79:a8:ec:0c: 2f:8f:a5:e7:ef:c9:25:2c:27:75:75:9a:bd:cf:1e: 53:ef:9a:ca:d5:a3:ae:84:6b:82:f3:1d:64:fb:a4: b0:01:12:2d:60:6c:21:13:e5:e3:a5:a6:6d:57:45: 7f:75:80:fe:97:45:61:d3:22:db:b6:c4:3e:e8:56: b9:a6:15:1c:69:58:03:3f:49:ce:77:29:e1:1d:e9: 80:a2:c6:34:4b:67:9e:49:1a:2f:4a:ea:8e:80:8f: 53:30:a6:ce:06:41:df:69:52:b4:b4:a0:46:6f:c4: 62:cb:83:44:c8:70:f0:0f:9b:a1:fe:3a:d2:89:35: cd:b2:46:09:3b:84:4b:47:d7:f4:bd:55:fc:d8:6e: 40:e6:9e:ab:fb:42:3c:cf:69:49:b1:3d:71:4e:30: dd:e0:81:69:f9:ba:83:49:cc:52:43:e1:2b:33:1c: 73:69:2e:03:56:2c:32:2f:7f:9b:99:c2:d8:25:c9: fc:e0:8a:5e:49:90:4e:21:d6:b9:8f:ea:23:f3:9e: 2f:0f:d5:c3:75:71:53:16:83:42:a0:11:79:e3:9d: 42:94:30:5c:a9:d9:35:c2:46:f3:f0:a6:13:a1:f3: 0b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FF:77:50:7E:6D:1F:0E:0B:6E:B0:11:2E:9C:FB:D1:AF:1C:1F:6D:D4 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fbe04038-a1b6-432c-854b-cc6e8cf32e06/0/FF77507E6D1F0E0B6EB0112E9CFBD1AF1C1F6DD4.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.14.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:9a:2a:01:2c:ec:89:79:07:d7:28:0d:12:28:3e:ad:bf:8a: 6f:7c:b1:9b:e0:4d:39:d8:98:c8:da:1a:48:59:03:31:78:6d: dd:5a:5d:2c:c4:a6:2f:eb:35:14:8d:14:1e:18:61:81:8f:46: 2f:79:d4:ef:1c:65:25:8b:69:19:c6:21:d1:b0:d2:ef:c1:48: b4:a7:26:a2:d5:56:43:95:6b:59:06:6c:3b:3f:8e:ab:9e:df: 8e:5a:c3:b1:18:65:a7:7b:92:07:ec:ec:b2:b7:75:7d:49:5a: 1d:27:02:59:cd:5e:a5:6f:4b:5d:80:36:e2:4a:bc:6e:b7:00: 64:fc:7e:06:aa:58:69:ab:50:ea:a3:a0:3b:fe:21:79:3f:60: 9b:51:9c:f6:7f:63:60:b5:d6:2f:f7:85:e0:21:26:97:1c:0f: 7f:c7:ed:10:53:25:2f:45:81:a1:7a:4b:5a:66:a3:82:63:e1: e4:83:ed:d2:a8:60:55:79:37:f2:a7:74:c7:30:b6:e8:ec:5a: 69:1b:4d:0e:69:f5:d4:bb:ee:02:10:01:c1:53:cb:77:1a:fa: 92:6b:d8:1d:72:f2:d0:c5:30:be:0f:14:ba:c4:8d:16:cf:27: 8c:60:f9:02:16:26:d3:aa:53:83:fc:b2:08:88:d0:6f:75:e5: 65:82:45:ff -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUWPkLv7f3RAAXOZNoOnUZJy/xdSYwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYxNjA0NDcxOFoX DTI0MDYxNDA0NTIxOFowMzExMC8GA1UEAxMoRkY3NzUwN0U2RDFGMEUwQjZFQjAx MTJFOUNGQkQxQUYxQzFGNkRENDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMu+dMBe++dmSqEJMcCWKU0+0m50c4krjo95qOwML4+l5+/JJSwndXWavc8e U++aytWjroRrgvMdZPuksAESLWBsIRPl46WmbVdFf3WA/pdFYdMi27bEPuhWuaYV HGlYAz9Jzncp4R3pgKLGNEtnnkkaL0rqjoCPUzCmzgZB32lStLSgRm/EYsuDRMhw 8A+bof460ok1zbJGCTuES0fX9L1V/NhuQOaeq/tCPM9pSbE9cU4w3eCBafm6g0nM UkPhKzMcc2kuA1YsMi9/m5nC2CXJ/OCKXkmQTiHWuY/qI/OeLw/Vw3VxUxaDQqAR eeOdQpQwXKnZNcJG8/CmE6HzC0UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFP93UH5tHw4LbrARLpz70a8cH23UMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mYmUwNDAzOC1hMWI2LTQzMmMtODU0Yi1jYzZlOGNmMzJlMDYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZiZTA0MDM4 LWExYjYtNDMyYy04NTRiLWNjNmU4Y2YzMmUwNi8wL0ZGNzc1MDdFNkQxRjBFMEI2 RUIwMTEyRTlDRkJEMUFGMUMxRjZERDQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsQ4wDQYJKoZIhvcNAQELBQADggEBACqaKgEs7Il5B9coDRIoPq2/im98sZvg TTnYmMjaGkhZAzF4bd1aXSzEpi/rNRSNFB4YYYGPRi951O8cZSWLaRnGIdGw0u/B SLSnJqLVVkOVa1kGbDs/jque345aw7EYZad7kgfs7LK3dX1JWh0nAlnNXqVvS12A NuJKvG63AGT8fgaqWGmrUOqjoDv+IXk/YJtRnPZ/Y2C11i/3heAhJpccD3/H7RBT JS9FgaF6S1pmo4Jj4eSD7dKoYFV5N/KndMcwtujsWmkbTQ5p9dS77gIQAcFTy3ca +pJr2B1y8tDFML4PFLrEjRbPJ4xg+QIWJtOqU4P8sgiI0G915WWCRf8= -----END CERTIFICATE-----Generated at Wed May 8 05:33:25 2024 by rpki-client on console-ams.rpki-client.org