$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/024ABFF2959A6144CC4889C70F77F968FA410EF1.cer File: 024ABFF2959A6144CC4889C70F77F968FA410EF1.cer (raw, json) Hash identifier: Lfxuunyu1uV12AU7f8f8LR6dTqNYNtE6ZChE6WXUr2g= Subject key identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1D021522D3A6CAE006B3D3ACB863469D0D3E7F50 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft caRepository: rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 07 Oct 2023 23:41:02 +0000 Certificate not after: Sat 05 Oct 2024 23:46:02 +0000 Subordinate resources: IP: 103.176.44.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:02:15:22:d3:a6:ca:e0:06:b3:d3:ac:b8:63:46:9d:0d:3e:7f:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 7 23:41:02 2023 GMT Not After : Oct 5 23:46:02 2024 GMT Subject: CN=024ABFF2959A6144CC4889C70F77F968FA410EF1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:06:4a:c0:93:a6:40:ca:7b:9d:39:2f:4e:27: 11:88:95:a0:0a:d0:a4:78:25:2e:01:d7:fb:e4:0d: 05:1e:97:bf:bd:51:82:a2:5c:65:0c:b8:00:9f:2c: aa:38:c6:08:cf:32:cf:ad:d8:ef:cb:02:62:35:09: 57:09:51:04:f1:a7:3e:27:20:f8:cd:78:c7:5f:ad: 15:16:b9:d9:6e:f3:81:ad:61:33:2d:b8:ad:db:43: 3a:c2:d7:a1:94:9c:51:8e:70:bb:f7:04:6c:fa:61: ae:2c:3a:7a:91:32:a9:b3:25:63:54:54:59:cf:48: d1:d2:a4:7e:44:bf:11:d6:a0:42:3a:e5:74:d7:b0: 94:f3:7f:b6:48:97:8f:2f:2c:f1:9e:d4:12:a1:f8: 08:91:0c:54:fb:06:91:25:d2:3c:49:4d:8c:9a:e9: 46:29:de:5c:33:b0:b5:92:ce:79:bb:c3:ee:41:f3: 36:0b:49:d1:e2:0b:3b:e1:f2:b4:c6:b6:ed:30:91: 1e:2b:3f:17:c4:ef:9b:a5:26:46:99:ec:08:04:b4: 9e:e8:e8:7f:17:85:dd:0a:fd:75:68:51:a9:36:7c: 83:31:57:a8:2a:e6:43:48:e9:83:91:47:2b:63:6e: b6:e1:d6:83:fc:d9:c0:00:a2:b6:28:30:fe:3d:05: 47:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 02:4A:BF:F2:95:9A:61:44:CC:48:89:C7:0F:77:F9:68:FA:41:0E:F1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/431a9426-3c35-470e-bf34-30e7e41602cb/0/024ABFF2959A6144CC4889C70F77F968FA410EF1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.44.0/23 Signature Algorithm: sha256WithRSAEncryption 44:0f:27:77:17:a5:31:f9:b0:7d:89:0a:bc:fb:f0:d3:f5:3b: 7b:a3:0f:0e:21:56:30:5e:92:74:30:89:7e:14:bf:6c:62:6a: 33:b8:07:58:13:2c:fd:10:21:46:87:44:6b:6e:cc:a9:20:8a: a7:44:4d:90:5c:e9:a1:52:6e:20:df:9b:4c:57:d6:9b:e2:0a: 79:21:ae:f5:f0:db:d8:64:3e:e0:7b:ae:85:69:0b:91:bb:3f: de:94:c3:7f:ce:40:ba:02:78:62:6a:19:1d:ee:87:de:5a:37: 46:08:d0:11:60:cc:ff:32:d2:0d:e9:2e:23:79:fb:f8:c0:e2: 1b:d1:f9:2a:bd:79:8c:03:3e:c7:cb:57:98:e7:3a:28:e9:9f: e0:0b:e1:12:13:9e:c9:47:26:f5:fd:c7:69:cb:8f:d4:69:b3: 87:66:58:e3:13:27:0d:58:1b:b8:de:41:2d:66:d7:d9:bf:b8: 30:52:b6:9a:28:82:40:be:fa:92:e7:b8:26:fb:73:38:a3:f3: 6f:1f:8b:88:51:f9:56:aa:fb:9f:fd:24:20:83:ee:46:c2:c3: ec:46:f8:dc:26:f3:d1:17:a4:85:8a:bb:a7:f4:b0:89:d5:08: 84:51:85:84:df:c4:f6:c2:bb:a5:18:c8:dd:59:70:d9:6a:17: 9b:39:41:db -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHQIVItOmyuAGs9OsuGNGnQ0+f1AwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAwNzIzNDEwMloX DTI0MTAwNTIzNDYwMlowMzExMC8GA1UEAxMoMDI0QUJGRjI5NTlBNjE0NENDNDg4 OUM3MEY3N0Y5NjhGQTQxMEVGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALoGSsCTpkDKe505L04nEYiVoArQpHglLgHX++QNBR6Xv71RgqJcZQy4AJ8s qjjGCM8yz63Y78sCYjUJVwlRBPGnPicg+M14x1+tFRa52W7zga1hMy24rdtDOsLX oZScUY5wu/cEbPphriw6epEyqbMlY1RUWc9I0dKkfkS/EdagQjrldNewlPN/tkiX jy8s8Z7UEqH4CJEMVPsGkSXSPElNjJrpRineXDOwtZLOebvD7kHzNgtJ0eILO+Hy tMa27TCRHis/F8Tvm6UmRpnsCAS0nujofxeF3Qr9dWhRqTZ8gzFXqCrmQ0jpg5FH K2NutuHWg/zZwACitigw/j0FR0UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFAJKv/KVmmFEzEiJxw93+Wj6QQ7xMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80MzFhOTQyNi0zYzM1LTQ3MGUtYmYzNC0zMGU3ZTQxNjAyY2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQzMWE5NDI2 LTNjMzUtNDcwZS1iZjM0LTMwZTdlNDE2MDJjYi8wLzAyNEFCRkYyOTU5QTYxNDRD QzQ4ODlDNzBGNzdGOTY4RkE0MTBFRjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsCwwDQYJKoZIhvcNAQELBQADggEBAEQPJ3cXpTH5sH2JCrz78NP1O3ujDw4h VjBeknQwiX4Uv2xiajO4B1gTLP0QIUaHRGtuzKkgiqdETZBc6aFSbiDfm0xX1pvi CnkhrvXw29hkPuB7roVpC5G7P96Uw3/OQLoCeGJqGR3uh95aN0YI0BFgzP8y0g3p LiN5+/jA4hvR+Sq9eYwDPsfLV5jnOijpn+AL4RITnslHJvX9x2nLj9Rps4dmWOMT Jw1YG7jeQS1m19m/uDBStpoogkC++pLnuCb7czij828fi4hR+Vaq+5/9JCCD7kbC w+xG+Nwm89EXpIWKu6f0sInVCIRRhYTfxPbCu6UYyN1ZcNlqF5s5Qds= -----END CERTIFICATE-----Generated at Wed May 8 14:59:48 2024 by rpki-client on console-ams.rpki-client.org