$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/FFCC3C879250F6351654AFE2ED137EED71DCACA1.cer File: FFCC3C879250F6351654AFE2ED137EED71DCACA1.cer (raw, json) Hash identifier: eT2/5XXUuHZs4C0x4a5mjUv/57szETv9Sw/9I22k4sI= Subject key identifier: FF:CC:3C:87:92:50:F6:35:16:54:AF:E2:ED:13:7E:ED:71:DC:AC:A1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4380D57345FBD2404C782CC7E0F820DF5ACC530A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/FFCC3C879250F6351654AFE2ED137EED71DCACA1.mft caRepository: rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 23 Jan 2024 14:40:21 +0000 Certificate not after: Tue 21 Jan 2025 14:45:21 +0000 Subordinate resources: IP: 103.84.206.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:80:d5:73:45:fb:d2:40:4c:78:2c:c7:e0:f8:20:df:5a:cc:53:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 23 14:40:21 2024 GMT Not After : Jan 21 14:45:21 2025 GMT Subject: CN=FFCC3C879250F6351654AFE2ED137EED71DCACA1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ce:ba:fc:cc:6c:57:32:9b:32:90:91:ad:51: 5d:9c:d8:e1:cc:45:ba:3a:57:22:de:a3:c8:5a:34: 0a:be:30:64:60:9f:1a:a4:9a:10:e5:80:4f:bc:58: 53:35:1b:2e:a9:09:69:09:4b:83:21:fe:d3:28:d2: e6:f9:5a:8f:a5:dd:9c:d5:b9:55:92:eb:40:b0:7a: 52:74:7f:e6:6f:cf:9b:66:8b:3e:6a:3f:01:a0:c3: d9:d0:89:e7:35:a9:0d:8b:e6:48:63:3e:ba:68:6a: 0f:dd:44:11:a0:1e:3c:a0:6c:48:48:92:ee:97:d3: b9:7f:82:81:17:31:3b:8c:79:62:a1:c4:d2:b6:2a: 67:fd:55:7b:38:eb:97:89:04:bb:d8:4c:4a:1b:88: a2:74:1e:70:ef:6f:0a:82:ae:54:8f:0e:b3:6d:73: ef:4b:c1:1e:07:77:bb:bc:19:b4:7c:22:a6:b4:e1: 34:83:17:4f:20:19:e3:ea:09:1e:06:be:b9:81:34: d7:8e:33:d5:42:1f:8c:36:13:a0:51:f4:fb:1c:13: 40:41:3e:61:3c:40:9c:e4:f5:4c:2c:36:02:11:3b: 12:a9:fe:98:f2:51:4a:bf:40:85:53:d4:66:ab:7b: 6f:dc:ce:cc:a3:f1:64:76:e8:13:99:6e:54:ea:f2: 51:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: FF:CC:3C:87:92:50:F6:35:16:54:AF:E2:ED:13:7E:ED:71:DC:AC:A1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/60eea08c-3fd2-488e-a574-9f9bb631a62b/0/FFCC3C879250F6351654AFE2ED137EED71DCACA1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.84.206.0/23 Signature Algorithm: sha256WithRSAEncryption 66:d4:99:ea:82:b1:29:1b:3d:d0:23:4d:0b:b0:c4:e9:f5:92: 19:9a:f6:70:55:d4:6f:14:f5:89:f9:2e:e8:fc:fe:d5:4f:45: 72:41:fe:c6:52:69:a0:a4:24:3b:7a:34:eb:c2:dd:ba:e6:16: a1:89:4a:5d:0d:81:f7:da:c4:2d:8b:2e:18:f8:86:5f:8c:fb: 45:73:4e:26:70:78:2e:21:c7:12:cc:f2:3b:ab:2a:80:5c:b8: d3:f4:da:9e:80:f3:30:a0:a2:51:04:1d:4d:0d:70:17:d7:71: 09:ed:18:95:0f:06:5e:0b:3b:33:9e:76:fa:95:3e:44:67:2a: 73:d2:b1:1e:a2:12:a1:56:49:d4:d1:f6:bb:81:e0:b3:8d:87: df:a4:89:e0:d5:02:e7:48:b8:45:a2:29:9c:6e:72:3a:d0:4f: 3b:a3:5f:4b:72:98:03:6d:c5:e6:f0:c8:9c:07:3d:e6:90:ae: 2d:0e:6d:84:27:5f:c7:8e:d2:de:05:ee:96:35:3d:0a:67:69: ec:7d:b2:73:a0:5e:bc:4c:35:af:94:78:29:34:b1:11:62:cf: 4c:cd:c5:ae:ca:f9:23:c6:94:f2:06:51:ec:4c:e7:66:df:2d: 2b:96:52:6e:df:7e:2b:14:0f:41:e9:03:7b:df:d4:28:c6:c2: 2e:a5:c1:81 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQ4DVc0X70kBMeCzH4Pgg31rMUwowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEyMzE0NDAyMVoX DTI1MDEyMTE0NDUyMVowMzExMC8GA1UEAxMoRkZDQzNDODc5MjUwRjYzNTE2NTRB RkUyRUQxMzdFRUQ3MURDQUNBMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKnOuvzMbFcymzKQka1RXZzY4cxFujpXIt6jyFo0Cr4wZGCfGqSaEOWAT7xY UzUbLqkJaQlLgyH+0yjS5vlaj6XdnNW5VZLrQLB6UnR/5m/Pm2aLPmo/AaDD2dCJ 5zWpDYvmSGM+umhqD91EEaAePKBsSEiS7pfTuX+CgRcxO4x5YqHE0rYqZ/1Vezjr l4kEu9hMShuIonQecO9vCoKuVI8Os21z70vBHgd3u7wZtHwiprThNIMXTyAZ4+oJ Hga+uYE0144z1UIfjDYToFH0+xwTQEE+YTxAnOT1TCw2AhE7Eqn+mPJRSr9AhVPU Zqt7b9zOzKPxZHboE5luVOryUXUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFP/MPIeSUPY1FlSv4u0Tfu1x3KyhMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82MGVlYTA4Yy0zZmQyLTQ4OGUtYTU3NC05ZjliYjYzMWE2MmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYwZWVhMDhj LTNmZDItNDg4ZS1hNTc0LTlmOWJiNjMxYTYyYi8wL0ZGQ0MzQzg3OTI1MEY2MzUx NjU0QUZFMkVEMTM3RUVENzFEQ0FDQTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnVM4wDQYJKoZIhvcNAQELBQADggEBAGbUmeqCsSkbPdAjTQuwxOn1khma9nBV 1G8U9Yn5Luj8/tVPRXJB/sZSaaCkJDt6NOvC3brmFqGJSl0NgffaxC2LLhj4hl+M +0VzTiZweC4hxxLM8jurKoBcuNP02p6A8zCgolEEHU0NcBfXcQntGJUPBl4LOzOe dvqVPkRnKnPSsR6iEqFWSdTR9ruB4LONh9+kieDVAudIuEWiKZxucjrQTzujX0ty mANtxebwyJwHPeaQri0ObYQnX8eO0t4F7pY1PQpnaex9snOgXrxMNa+UeCk0sRFi z0zNxa7K+SPGlPIGUexM52bfLSuWUm7ffisUD0HpA3vf1CjGwi6lwYE= -----END CERTIFICATE-----Generated at Wed May 8 09:50:46 2024 by rpki-client on console-fra.rpki-client.org