$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/166B4918E7A1A1641E7C79C537833379E393522E.cer File: 166B4918E7A1A1641E7C79C537833379E393522E.cer (raw, json) Hash identifier: l+wpGsyHBVXSGIpAXMxqB0mYFbRML+V4rVbSL14tuyg= Subject key identifier: 16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0A125BE505C4B6612BEA535F280DFF5442D2F681 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.mft caRepository: rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 28 Sep 2023 13:07:23 +0000 Certificate not after: Thu 26 Sep 2024 13:12:23 +0000 Subordinate resources: IP: 103.174.180.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:12:5b:e5:05:c4:b6:61:2b:ea:53:5f:28:0d:ff:54:42:d2:f6:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 28 13:07:23 2023 GMT Not After : Sep 26 13:12:23 2024 GMT Subject: CN=166B4918E7A1A1641E7C79C537833379E393522E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:14:31:fe:f1:6f:d5:92:b1:0d:68:9b:fc:2c: 93:b7:89:8e:01:c9:bc:b9:6b:29:18:b6:65:02:a5: 4f:f6:6f:a6:ed:b1:21:f3:52:cd:89:d2:48:5c:9f: 73:df:94:69:f4:ed:a5:ac:4c:bf:26:79:37:b6:18: 68:11:f6:f2:ed:d5:2b:b6:88:01:de:9d:79:08:79: ef:77:5d:7f:7d:11:b6:4b:cc:fa:31:64:0b:9a:06: 33:54:9f:30:9b:2c:24:50:a8:ab:f2:4f:bd:6a:fe: 45:1b:a3:8b:88:47:66:c0:76:0a:74:98:3a:55:65: d8:f8:67:e3:e4:eb:f6:fc:76:25:b6:36:ef:00:1b: 9d:99:ec:be:44:57:96:d7:fc:c6:f0:b2:61:b3:98: 00:de:2b:21:a5:c0:42:25:bb:71:28:ea:65:6c:a4: f6:75:3d:fe:25:26:a7:63:b4:75:6b:96:96:0b:bc: e7:22:16:cf:22:31:9c:33:ac:c4:08:82:a9:56:5a: 5a:48:37:65:da:6c:6a:6d:94:54:3f:0e:9b:f0:9b: 82:59:10:c3:17:9a:31:3e:d9:33:9f:c8:ea:36:09: 15:62:a4:ca:d4:bc:14:66:70:86:72:2f:c0:bc:a5: a1:b3:5a:c3:60:9d:e8:55:88:ec:48:62:35:74:42: f8:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 16:6B:49:18:E7:A1:A1:64:1E:7C:79:C5:37:83:33:79:E3:93:52:2E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5c285291-ce92-4144-9c18-9e8c191ddec6/0/166B4918E7A1A1641E7C79C537833379E393522E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.180.0/23 Signature Algorithm: sha256WithRSAEncryption 49:3f:88:08:cc:a0:bc:ea:25:ba:9a:0b:cb:60:ec:f6:4a:bf: eb:4a:7e:bf:48:31:15:89:0a:89:84:76:e0:48:6b:d3:e4:61: d7:79:7f:f2:1f:48:2b:81:7b:e3:8d:ad:86:d9:06:88:44:fb: f3:98:6e:1f:ab:cf:a6:99:a7:6c:07:de:7d:78:c2:d7:de:c1: a4:7e:81:4c:d9:7f:ff:12:dc:96:85:be:86:dc:80:ef:e8:f7: 08:9d:1b:52:a3:02:72:5a:2f:85:f9:1f:00:fb:6d:79:4c:3f: 70:ef:05:8d:13:86:85:ef:67:be:14:fd:6a:f0:aa:68:ff:d1: 31:e9:fd:fc:b7:ee:d1:31:9f:45:ee:69:4f:b9:ec:04:d5:6f: b1:77:3f:fb:f4:eb:85:3f:46:9c:69:d5:d3:6b:c9:99:f3:c1: b5:d7:fb:98:25:bc:99:8f:4b:dc:b6:f6:29:5a:00:6b:7b:39: 69:f8:85:06:c9:e9:76:cd:96:39:aa:4c:8c:a8:a9:03:6c:a6: b6:ed:eb:0e:e5:3a:8b:9e:4e:87:11:25:60:ad:53:d0:b3:00: ea:ee:a3:6d:2c:6c:2d:22:67:1b:45:64:89:82:e8:56:e0:89: 90:69:4a:b7:db:26:81:51:85:98:81:2c:9b:e3:e1:23:df:68: 53:94:d3:ce -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUChJb5QXEtmEr6lNfKA3/VELS9oEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkyODEzMDcyM1oX DTI0MDkyNjEzMTIyM1owMzExMC8GA1UEAxMoMTY2QjQ5MThFN0ExQTE2NDFFN0M3 OUM1Mzc4MzMzNzlFMzkzNTIyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcUMf7xb9WSsQ1om/wsk7eJjgHJvLlrKRi2ZQKlT/Zvpu2xIfNSzYnSSFyf c9+UafTtpaxMvyZ5N7YYaBH28u3VK7aIAd6deQh573ddf30RtkvM+jFkC5oGM1Sf MJssJFCoq/JPvWr+RRuji4hHZsB2CnSYOlVl2Phn4+Tr9vx2JbY27wAbnZnsvkRX ltf8xvCyYbOYAN4rIaXAQiW7cSjqZWyk9nU9/iUmp2O0dWuWlgu85yIWzyIxnDOs xAiCqVZaWkg3Zdpsam2UVD8Om/CbglkQwxeaMT7ZM5/I6jYJFWKkytS8FGZwhnIv wLylobNaw2Cd6FWI7EhiNXRC+GECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBZrSRjnoaFkHnx5xTeDM3njk1IuMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81YzI4NTI5MS1jZTkyLTQxNDQtOWMxOC05ZThjMTkxZGRlYzYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVjMjg1Mjkx LWNlOTItNDE0NC05YzE4LTllOGMxOTFkZGVjNi8wLzE2NkI0OTE4RTdBMUExNjQx RTdDNzlDNTM3ODMzMzc5RTM5MzUyMkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrrQwDQYJKoZIhvcNAQELBQADggEBAEk/iAjMoLzqJbqaC8tg7PZKv+tKfr9I MRWJComEduBIa9PkYdd5f/IfSCuBe+ONrYbZBohE+/OYbh+rz6aZp2wH3n14wtfe waR+gUzZf/8S3JaFvobcgO/o9widG1KjAnJaL4X5HwD7bXlMP3DvBY0ThoXvZ74U /Wrwqmj/0THp/fy37tExn0XuaU+57ATVb7F3P/v064U/Rpxp1dNryZnzwbXX+5gl vJmPS9y29ilaAGt7OWn4hQbJ6XbNljmqTIyoqQNsprbt6w7lOoueTocRJWCtU9Cz AOruo20sbC0iZxtFZImC6FbgiZBpSrfbJoFRhZiBLJvj4SPfaFOU084= -----END CERTIFICATE-----Generated at Wed May 8 22:46:36 2024 by rpki-client on console-ams.rpki-client.org