$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1952B074D19D5AB562D7EE537AD3059EA097353B.cer File: 1952B074D19D5AB562D7EE537AD3059EA097353B.cer (raw, json) Hash identifier: vx5lIJapkvXU9Pvbm45hItMCHz+TFyZ/G28dG/NfMlw= Subject key identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2F083F611F7EF1CEBB46BB1F5851342615E5B153 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft caRepository: rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 05 Jul 2023 11:59:24 +0000 Certificate not after: Wed 03 Jul 2024 12:04:24 +0000 Subordinate resources: IP: 103.158.26.0/23 IP: 2406:aec0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:08:3f:61:1f:7e:f1:ce:bb:46:bb:1f:58:51:34:26:15:e5:b1:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 5 11:59:24 2023 GMT Not After : Jul 3 12:04:24 2024 GMT Subject: CN=1952B074D19D5AB562D7EE537AD3059EA097353B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ce:3f:48:be:9c:b5:8e:8f:98:9e:f1:46:7c: 7d:54:ff:a5:0d:62:c1:a9:4d:f8:da:01:11:1d:ce: c6:59:bd:cb:8b:d6:e4:20:ca:f0:a4:73:79:40:22: 0e:a1:82:53:8d:a8:30:5d:a7:31:e5:81:db:f5:7b: e2:55:00:88:84:5e:4c:5d:48:aa:0f:4e:a0:bc:0e: 7b:31:3c:0a:c0:4e:42:d2:cb:90:40:74:74:0a:e1: 55:3e:4b:65:df:31:a3:10:64:a7:1c:20:b1:72:8c: 38:5b:4f:c6:61:fe:a0:29:9d:e0:0c:ea:a8:be:7f: 00:65:6a:fc:46:58:2d:c4:4d:a4:a8:d4:ff:bb:83: 87:c5:33:f9:fa:a7:c2:f5:de:d2:1a:79:80:a1:c3: 95:08:85:77:01:06:8b:44:95:b3:4f:4e:8d:ee:9e: 39:87:41:5b:a7:ff:43:97:0a:b9:60:8f:3e:d2:6a: 73:1b:7c:11:b2:3b:73:7f:ac:5d:b3:f0:60:24:54: 38:c4:2e:b8:c0:ad:11:d5:b6:37:4c:20:95:c5:2a: 0e:bc:a8:29:aa:38:38:f0:ef:9b:da:13:97:52:d4: 2a:11:ce:77:b2:0d:1d:62:28:1b:c4:48:64:6c:65: d4:47:68:2b:e2:63:3b:38:6a:ea:b7:9e:9c:80:da: ff:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 19:52:B0:74:D1:9D:5A:B5:62:D7:EE:53:7A:D3:05:9E:A0:97:35:3B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d4f2c025-1d76-4a36-8160-a9e8afe3579f/0/1952B074D19D5AB562D7EE537AD3059EA097353B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.158.26.0/23 IPv6: 2406:aec0::/32 Signature Algorithm: sha256WithRSAEncryption 4e:b1:2d:b9:72:9b:76:e0:69:da:63:5f:e5:5b:cd:4d:75:93: 0a:b3:93:20:16:c3:ae:4d:1b:b4:25:3f:f2:8f:33:7a:6f:54: 37:e7:a4:1a:d2:1b:0a:70:2a:09:b4:be:2b:86:45:76:0a:93: a9:a1:80:cb:0e:95:63:a4:36:4b:87:ec:3a:de:0d:3b:02:18: 85:1c:e9:a8:ae:7e:4a:ac:0f:ef:1b:9e:25:da:76:3e:83:03: 3a:06:c9:4a:78:d0:25:3e:35:df:8f:40:61:12:24:2f:17:9c: 40:78:a7:af:60:f9:6d:3d:de:7e:41:5d:df:ec:7d:de:5d:f8: ba:ce:bb:fd:69:d5:5e:51:35:e7:2c:26:6e:09:cb:31:c4:57: c5:a1:95:cf:88:42:3e:f5:d1:f8:0a:c7:f8:dc:3a:59:bf:25: 68:9b:f1:0f:3c:a0:3e:12:0b:91:ab:63:21:95:79:16:11:bd: e9:f4:ce:9a:26:4c:78:08:f8:2e:5b:0b:d2:5d:0e:78:e0:33: 6d:d7:2f:a5:88:db:10:4c:8e:0c:99:39:06:16:af:da:46:41: 59:50:c3:ff:8a:ff:4a:63:df:5b:87:ff:48:ec:4b:a7:ff:17: c1:86:ea:8c:3f:fa:df:50:65:46:ff:18:42:ab:28:8d:1b:b1: 6d:60:14:6e -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIULwg/YR9+8c67RrsfWFE0JhXlsVMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcwNTExNTkyNFoX DTI0MDcwMzEyMDQyNFowMzExMC8GA1UEAxMoMTk1MkIwNzREMTlENUFCNTYyRDdF RTUzN0FEMzA1OUVBMDk3MzUzQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOXOP0i+nLWOj5ie8UZ8fVT/pQ1iwalN+NoBER3Oxlm9y4vW5CDK8KRzeUAi DqGCU42oMF2nMeWB2/V74lUAiIReTF1Iqg9OoLwOezE8CsBOQtLLkEB0dArhVT5L Zd8xoxBkpxwgsXKMOFtPxmH+oCmd4AzqqL5/AGVq/EZYLcRNpKjU/7uDh8Uz+fqn wvXe0hp5gKHDlQiFdwEGi0SVs09Oje6eOYdBW6f/Q5cKuWCPPtJqcxt8EbI7c3+s XbPwYCRUOMQuuMCtEdW2N0wglcUqDryoKao4OPDvm9oTl1LUKhHOd7INHWIoG8RI ZGxl1EdoK+JjOzhq6reenIDa/xcCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBlSsHTRnVq1YtfuU3rTBZ6glzU7MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kNGYyYzAyNS0xZDc2LTRhMzYtODE2MC1hOWU4YWZlMzU3OWYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q0ZjJjMDI1 LTFkNzYtNGEzNi04MTYwLWE5ZThhZmUzNTc5Zi8wLzE5NTJCMDc0RDE5RDVBQjU2 MkQ3RUU1MzdBRDMwNTlFQTA5NzM1M0IubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnhowDQQCAAIwBwMFACQGrsAwDQYJKoZIhvcNAQELBQADggEBAE6xLblym3bg adpjX+VbzU11kwqzkyAWw65NG7QlP/KPM3pvVDfnpBrSGwpwKgm0viuGRXYKk6mh gMsOlWOkNkuH7DreDTsCGIUc6aiufkqsD+8bniXadj6DAzoGyUp40CU+Nd+PQGES JC8XnEB4p69g+W093n5BXd/sfd5d+LrOu/1p1V5RNecsJm4JyzHEV8Whlc+IQj71 0fgKx/jcOlm/JWib8Q88oD4SC5GrYyGVeRYRven0zpomTHgI+C5bC9JdDnjgM23X L6WI2xBMjgyZOQYWr9pGQVlQw/+K/0pj31uH/0jsS6f/F8GG6ow/+t9QZUb/GEKr KI0bsW1gFG4= -----END CERTIFICATE-----Generated at Thu May 9 00:36:57 2024 by rpki-client on console-fra.rpki-client.org