$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer File: 18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.cer (raw, json) Hash identifier: 11UjTp18rytSX6ypWztA9v1VnKuyHqRtN1cZUX6XA3Y= Subject key identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F6A717EE47937F0B84740E702F1D3A0D07B6F0A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft caRepository: rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 02:50:03 +0000 Certificate not after: Mon 29 Jul 2024 02:55:03 +0000 Subordinate resources: IP: 103.102.148.0/22 IP: 2001:df2:dd00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:6a:71:7e:e4:79:37:f0:b8:47:40:e7:02:f1:d3:a0:d0:7b:6f:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 02:50:03 2023 GMT Not After : Jul 29 02:55:03 2024 GMT Subject: CN=18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:48:36:c8:ba:cc:be:11:e7:df:3d:6b:39:f2: 0d:dc:7e:8e:f1:62:1d:97:7a:7b:8a:fc:43:57:2b: b7:8c:06:bb:07:55:6f:22:51:dd:1c:e6:8e:dc:3a: 97:af:5c:f2:14:ea:22:4b:95:20:42:d8:7c:ed:3d: 02:fb:fc:2e:b7:b2:5f:2a:52:d9:cb:bd:7f:4d:bd: 8b:78:03:f4:2d:09:e9:bc:a4:a6:d9:ee:03:c8:5d: 8a:f8:20:4b:3f:df:d7:4e:f7:68:8b:55:ab:2d:ae: df:80:92:27:27:5a:c2:3a:05:6b:40:f9:e7:d5:4a: 50:1c:46:6e:73:1e:26:19:b4:fc:32:f3:92:ba:3c: 63:94:17:03:6a:7f:75:4b:c3:63:6d:c0:f4:e2:d7: e3:67:bf:fe:51:4e:1a:57:a6:e9:49:b8:7f:78:f8: 54:a8:1a:07:13:f1:e4:d1:12:1d:f1:4a:73:9b:c2: 51:ee:40:17:93:df:48:22:f9:ea:c0:fb:17:a4:36: 97:03:58:f5:95:11:6b:b2:f6:07:36:53:17:aa:29: 9f:6b:8d:d6:ce:a9:be:2c:11:92:b4:bd:26:ac:7f: 2d:94:2c:5d:f1:08:17:11:a2:b4:f6:65:73:05:f6: aa:ef:b7:e1:cf:26:d7:ee:b4:5b:7d:11:dd:93:7b: 59:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 18:E9:DC:5B:AC:AA:E6:8D:1C:9F:50:69:82:56:E0:ED:EF:9A:51:69 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/ba9f81cb-5a59-40f3-86a0-cde5b94cef86/0/18E9DC5BACAAE68D1C9F50698256E0EDEF9A5169.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.148.0/22 IPv6: 2001:df2:dd00::/48 Signature Algorithm: sha256WithRSAEncryption 97:24:85:57:ef:3d:a0:e6:57:7e:15:e1:a7:94:d1:95:25:3e: a6:58:c1:a9:5f:96:c2:3b:3e:c9:e7:ec:48:4a:4d:95:e3:c3: 84:75:e1:6d:2a:4e:bb:b5:de:e3:33:be:4c:1c:40:0b:05:ba: 5c:1b:2b:12:6b:72:56:01:88:62:3b:22:c8:4a:ae:b3:c8:31: 67:80:61:89:73:76:97:70:c6:af:86:03:bf:c5:43:41:e9:ea: 3c:bc:e9:f4:b3:ad:c7:9e:5e:e4:45:38:fa:5b:0d:78:e1:f2: 54:e7:77:4c:84:aa:56:2d:16:ab:b7:15:f1:3f:21:30:e7:df: 2a:82:09:70:3c:f8:6f:06:96:48:ad:4d:ec:37:be:4b:77:2b: a3:27:da:ac:29:f6:b2:26:7b:91:3b:77:04:78:4f:54:99:6e: 81:d5:d2:2e:94:56:af:71:64:7d:98:1c:c3:32:5a:92:49:54: b2:2c:39:17:7c:62:c8:c4:67:7e:bd:f3:ed:4f:72:20:60:cc: 1c:73:e8:65:a2:c6:f4:a6:02:e5:6d:87:81:31:0a:23:18:65: 9a:4d:bf:fe:5f:d5:43:e5:5c:36:57:cd:d7:ac:3e:fe:84:a8: 83:e2:8e:b2:da:bf:e1:98:52:f4:9d:b6:28:20:8a:b0:c3:2b: 14:a6:af:6e -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUL2pxfuR5N/C4R0DnAvHToNB7bwowDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTAyNTAwM1oX DTI0MDcyOTAyNTUwM1owMzExMC8GA1UEAxMoMThFOURDNUJBQ0FBRTY4RDFDOUY1 MDY5ODI1NkUwRURFRjlBNTE2OTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALZINsi6zL4R5989aznyDdx+jvFiHZd6e4r8Q1crt4wGuwdVbyJR3Rzmjtw6 l69c8hTqIkuVIELYfO09Avv8LreyXypS2cu9f029i3gD9C0J6bykptnuA8hdivgg Sz/f1073aItVqy2u34CSJydawjoFa0D559VKUBxGbnMeJhm0/DLzkro8Y5QXA2p/ dUvDY23A9OLX42e//lFOGlem6Um4f3j4VKgaBxPx5NESHfFKc5vCUe5AF5PfSCL5 6sD7F6Q2lwNY9ZURa7L2BzZTF6opn2uN1s6pviwRkrS9Jqx/LZQsXfEIFxGitPZl cwX2qu+34c8m1+60W30R3ZN7WbECAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBjp3FusquaNHJ9QaYJW4O3vmlFpMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iYTlmODFjYi01YTU5LTQwZjMtODZhMC1jZGU1Yjk0Y2VmODYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JhOWY4MWNi LTVhNTktNDBmMy04NmEwLWNkZTViOTRjZWY4Ni8wLzE4RTlEQzVCQUNBQUU2OEQx QzlGNTA2OTgyNTZFMEVERUY5QTUxNjkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAJnZpQwDwQCAAIwCQMHACABDfLdADANBgkqhkiG9w0BAQsFAAOCAQEAlySFV+89 oOZXfhXhp5TRlSU+pljBqV+Wwjs+yefsSEpNlePDhHXhbSpOu7Xe4zO+TBxACwW6 XBsrEmtyVgGIYjsiyEqus8gxZ4BhiXN2l3DGr4YDv8VDQenqPLzp9LOtx55e5EU4 +lsNeOHyVOd3TISqVi0Wq7cV8T8hMOffKoIJcDz4bwaWSK1N7De+S3croyfarCn2 siZ7kTt3BHhPVJlugdXSLpRWr3FkfZgcwzJakklUsiw5F3xiyMRnfr3z7U9yIGDM HHPoZaLG9KYC5W2HgTEKIxhlmk2//l/VQ+VcNlfN16w+/oSog+KOstq/4ZhS9J22 KCCKsMMrFKavbg== -----END CERTIFICATE-----Generated at Wed May 8 17:45:15 2024 by rpki-client on console-ams.rpki-client.org