$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E.cer File: 1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E.cer (raw, json) Hash identifier: 2iGoDSNIi0Ldu8LUAo0awrvkXuTsH1x0qhUHqAajgdA= Subject key identifier: 19:54:C3:3C:FB:AF:8A:07:2B:A3:B9:0B:3E:83:8D:63:D1:2B:FD:2E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 24F3316FC242B2D1E80FCD8CA4E1809CF0369185 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/bd196d65-21a8-4b04-a9de-7283fbe3c1cb/0/1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E.mft caRepository: rsync://repo-rpki.idnic.net/repo/bd196d65-21a8-4b04-a9de-7283fbe3c1cb/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 01 Mar 2024 17:44:35 +0000 Certificate not after: Fri 28 Feb 2025 17:49:35 +0000 Subordinate resources: IP: 103.177.10.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:f3:31:6f:c2:42:b2:d1:e8:0f:cd:8c:a4:e1:80:9c:f0:36:91:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 1 17:44:35 2024 GMT Not After : Feb 28 17:49:35 2025 GMT Subject: CN=1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:90:23:f0:ac:d9:c0:9f:e9:aa:33:fd:2d:ce: 3f:08:85:88:f1:6f:4c:44:21:94:a0:33:03:c5:bb: af:d5:cb:c3:60:46:bd:5f:c0:04:09:cf:16:6c:8c: 44:fd:4b:1e:84:0c:cf:7a:20:21:1d:d3:e4:a0:01: 29:49:ae:1e:88:48:c5:6f:14:55:00:60:c0:bb:83: 2b:ab:30:ea:93:dc:16:99:25:2e:a4:fc:d1:bb:c1: 7f:bb:62:90:d5:d4:21:40:6a:4e:d0:ee:05:97:2f: 06:36:58:03:c2:91:09:62:5b:65:83:55:57:03:4a: a1:2d:15:8b:9d:64:b2:e2:63:fb:c0:3e:05:21:3f: be:b0:f4:35:e5:d3:65:3e:29:43:c9:e5:22:e2:23: e8:f0:37:4d:90:76:46:44:8c:17:2a:e6:1b:3f:65: 29:f3:ad:82:9d:2d:d9:d3:db:9c:9c:00:db:d8:5d: f5:c3:de:8f:f8:df:ff:64:11:3c:0e:a1:79:e5:1a: 91:ca:2e:89:d8:ef:6c:ac:23:3c:5c:72:3a:d5:ce: 1f:9b:ce:2f:ab:3b:bf:ff:13:5d:7c:4e:cf:4b:e4: 3c:ed:73:c1:58:a8:2f:70:59:a2:8c:14:54:6a:e6: 23:ba:e0:2d:94:cd:94:a4:06:37:65:f5:8c:0b:e8: 34:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 19:54:C3:3C:FB:AF:8A:07:2B:A3:B9:0B:3E:83:8D:63:D1:2B:FD:2E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/bd196d65-21a8-4b04-a9de-7283fbe3c1cb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/bd196d65-21a8-4b04-a9de-7283fbe3c1cb/0/1954C33CFBAF8A072BA3B90B3E838D63D12BFD2E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.10.0/23 Signature Algorithm: sha256WithRSAEncryption 2d:05:75:8d:57:b8:0b:a8:15:e9:62:ad:54:0f:b9:1f:6f:6f: a5:19:21:b6:63:27:3e:89:e7:f3:6b:36:d9:27:77:f1:33:d2: f3:55:3b:85:c6:c6:f9:c5:54:23:fe:ee:df:a7:7c:96:68:e7: ad:1e:1f:5e:6c:da:d3:ed:49:0b:e9:80:84:3d:7a:18:51:d3: d2:56:bf:45:9f:94:ba:54:f5:3a:bd:10:2b:ed:6f:74:ef:9f: b5:59:c7:41:33:7c:7b:a7:20:45:42:e0:ee:44:b3:d5:d9:6a: fa:66:35:94:5d:a7:d5:1f:91:71:29:ef:ec:26:1d:91:fb:b3: 64:b0:0e:ef:d5:74:bb:de:e6:b9:a8:92:54:68:59:cb:48:1b: c3:f4:43:11:6c:45:87:7e:31:13:f8:2d:76:0d:a7:b7:29:f4: 84:a0:e7:57:2e:6b:3f:6b:3a:74:2a:25:a9:48:67:35:e6:14: d1:4c:0a:1f:54:06:0b:71:5b:df:c2:20:2f:11:9f:c8:47:0e: cc:7d:90:be:22:f6:4e:29:e5:6f:cb:df:9d:18:36:17:99:5b: 1b:7d:aa:07:f6:a7:fe:7a:24:bd:e6:c0:9a:f7:74:ef:ca:77: 83:b6:a1:c0:81:d3:f5:0d:bb:ea:ad:f8:06:fa:85:4d:df:64: bd:7e:3e:87 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJPMxb8JCstHoD82MpOGAnPA2kYUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMwMTE3NDQzNVoX DTI1MDIyODE3NDkzNVowMzExMC8GA1UEAxMoMTk1NEMzM0NGQkFGOEEwNzJCQTNC OTBCM0U4MzhENjNEMTJCRkQyRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANeQI/Cs2cCf6aoz/S3OPwiFiPFvTEQhlKAzA8W7r9XLw2BGvV/ABAnPFmyM RP1LHoQMz3ogIR3T5KABKUmuHohIxW8UVQBgwLuDK6sw6pPcFpklLqT80bvBf7ti kNXUIUBqTtDuBZcvBjZYA8KRCWJbZYNVVwNKoS0Vi51ksuJj+8A+BSE/vrD0NeXT ZT4pQ8nlIuIj6PA3TZB2RkSMFyrmGz9lKfOtgp0t2dPbnJwA29hd9cPej/jf/2QR PA6heeUakcouidjvbKwjPFxyOtXOH5vOL6s7v/8TXXxOz0vkPO1zwVioL3BZoowU VGrmI7rgLZTNlKQGN2X1jAvoNI0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBlUwzz7r4oHK6O5Cz6DjWPRK/0uMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iZDE5NmQ2NS0yMWE4LTRiMDQtYTlkZS03MjgzZmJlM2MxY2IvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2JkMTk2ZDY1 LTIxYTgtNGIwNC1hOWRlLTcyODNmYmUzYzFjYi8wLzE5NTRDMzNDRkJBRjhBMDcy QkEzQjkwQjNFODM4RDYzRDEyQkZEMkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsQowDQYJKoZIhvcNAQELBQADggEBAC0FdY1XuAuoFelirVQPuR9vb6UZIbZj Jz6J5/NrNtknd/Ez0vNVO4XGxvnFVCP+7t+nfJZo560eH15s2tPtSQvpgIQ9ehhR 09JWv0WflLpU9Tq9ECvtb3Tvn7VZx0EzfHunIEVC4O5Es9XZavpmNZRdp9UfkXEp 7+wmHZH7s2SwDu/VdLve5rmoklRoWctIG8P0QxFsRYd+MRP4LXYNp7cp9ISg51cu az9rOnQqJalIZzXmFNFMCh9UBgtxW9/CIC8Rn8hHDsx9kL4i9k4p5W/L350YNheZ Wxt9qgf2p/56JL3mwJr3dO/Kd4O2ocCB0/UNu+qt+Ab6hU3fZL1+Poc= -----END CERTIFICATE-----Generated at Tue May 7 18:07:05 2024 by rpki-client on console-fra.rpki-client.org