$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51.cer File: 1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51.cer (raw, json) Hash identifier: TgjbjxisO9dFhg0z8tLAJLaR125cvh5ICTWaNkYjnGU= Subject key identifier: 1A:7E:52:5B:56:9E:9C:AE:03:35:BF:F6:6C:FA:1B:D4:A5:C1:2C:51 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0345AC8698F8BE2B62133C5CDA6FBB693E58AD14 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/dd6cacd4-4e08-4dd8-a5ae-9a5a63a8d2fa/0/1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51.mft caRepository: rsync://repo-rpki.idnic.net/repo/dd6cacd4-4e08-4dd8-a5ae-9a5a63a8d2fa/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 22 Mar 2024 10:11:48 +0000 Certificate not after: Fri 21 Mar 2025 10:16:48 +0000 Subordinate resources: IP: 103.185.27.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:45:ac:86:98:f8:be:2b:62:13:3c:5c:da:6f:bb:69:3e:58:ad:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 22 10:11:48 2024 GMT Not After : Mar 21 10:16:48 2025 GMT Subject: CN=1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:02:32:17:7c:f8:01:a5:3c:e9:ec:f6:25:8d: e6:b7:9d:25:ca:91:a9:a4:17:10:52:2c:1e:70:cf: 08:6d:fe:31:5e:23:fc:1a:cb:a6:01:b4:7e:75:56: 84:e2:f5:b6:57:1a:cb:15:16:86:16:28:75:30:8f: 06:54:21:bf:ce:4a:33:89:51:9e:86:ec:b3:48:83: 91:cd:a0:2e:12:90:b7:62:9a:04:f4:11:bb:60:59: 38:d5:64:15:51:a9:97:07:0f:54:8b:e9:e5:6f:94: 36:ff:21:79:2a:23:6c:85:70:7f:3e:0e:ac:eb:38: 1b:a6:db:4e:53:4a:9f:b0:9d:61:9b:af:37:5d:59: 29:1a:3f:84:0a:1d:3b:f6:5e:11:9a:8f:2f:61:df: 91:ab:65:70:5f:96:65:72:82:4b:3e:f1:b2:59:2e: f3:c6:e6:31:ca:81:49:4a:cb:58:e8:89:58:fe:c7: 28:14:f3:98:10:2b:16:59:52:0f:30:bc:03:62:cf: 31:a0:b0:4a:68:bf:20:16:dc:b8:9b:76:6e:33:91: 50:74:13:64:dd:87:11:12:a3:13:7f:d7:ef:80:72: 82:6c:ed:c1:23:d0:d3:f3:9e:96:29:cc:ec:a1:3c: 89:a0:3b:7d:78:f7:14:c0:72:17:ef:28:c2:4d:a0: e4:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1A:7E:52:5B:56:9E:9C:AE:03:35:BF:F6:6C:FA:1B:D4:A5:C1:2C:51 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/dd6cacd4-4e08-4dd8-a5ae-9a5a63a8d2fa/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/dd6cacd4-4e08-4dd8-a5ae-9a5a63a8d2fa/0/1A7E525B569E9CAE0335BFF66CFA1BD4A5C12C51.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.185.27.0/24 Signature Algorithm: sha256WithRSAEncryption 55:32:09:64:f3:33:bc:63:26:6c:5d:ae:c6:48:dd:8e:ae:ff: 87:a1:1b:05:d1:04:8a:b5:4a:47:a6:13:f4:75:c0:e0:eb:55: 82:50:50:71:64:7d:b3:46:33:62:e2:1e:b3:62:f3:5a:b0:12: 60:0f:73:b9:c4:00:4d:e8:f8:85:8c:48:da:ea:13:63:ef:ca: 6e:a2:56:80:da:25:3b:72:91:9c:bf:70:6f:bd:36:78:c4:ce: b5:d9:88:70:6b:69:3f:1d:60:da:06:25:81:6e:83:20:13:89: 16:ce:9b:9a:47:8b:c0:a9:1e:fc:7f:0a:af:70:72:7f:65:0a: 9e:0c:f5:65:8c:f7:1c:c9:bd:7b:07:0b:25:17:cc:c7:17:a2: cf:90:e8:5f:e0:c0:6e:e8:12:fa:4a:94:4c:35:c8:3e:59:4e: 5a:7d:b6:ab:cd:0a:f6:1f:ec:40:d6:8b:ab:e1:7d:99:45:16: fa:fe:8a:84:6c:85:0d:73:1b:26:35:b3:84:54:ee:98:88:57: ed:bc:f4:f9:20:8f:f1:d7:fa:42:22:97:b2:80:e5:3f:64:b5: 47:5d:ff:91:39:e9:8e:bc:09:ab:a7:97:0e:e9:f0:22:01:e0: 4a:04:f6:ea:3e:3d:87:a2:39:4f:05:39:19:1d:e5:1e:da:69: 36:3f:3b:91 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUA0Wshpj4vitiEzxc2m+7aT5YrRQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMyMjEwMTE0OFoX DTI1MDMyMTEwMTY0OFowMzExMC8GA1UEAxMoMUE3RTUyNUI1NjlFOUNBRTAzMzVC RkY2NkNGQTFCRDRBNUMxMkM1MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANcCMhd8+AGlPOns9iWN5redJcqRqaQXEFIsHnDPCG3+MV4j/BrLpgG0fnVW hOL1tlcayxUWhhYodTCPBlQhv85KM4lRnobss0iDkc2gLhKQt2KaBPQRu2BZONVk FVGplwcPVIvp5W+UNv8heSojbIVwfz4OrOs4G6bbTlNKn7CdYZuvN11ZKRo/hAod O/ZeEZqPL2HfkatlcF+WZXKCSz7xslku88bmMcqBSUrLWOiJWP7HKBTzmBArFllS DzC8A2LPMaCwSmi/IBbcuJt2bjORUHQTZN2HERKjE3/X74BygmztwSPQ0/OelinM 7KE8iaA7fXj3FMByF+8owk2g5CUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBp+UltWnpyuAzW/9mz6G9SlwSxRMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kZDZjYWNkNC00ZTA4LTRkZDgtYTVhZS05YTVhNjNhOGQyZmEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2RkNmNhY2Q0 LTRlMDgtNGRkOC1hNWFlLTlhNWE2M2E4ZDJmYS8wLzFBN0U1MjVCNTY5RTlDQUUw MzM1QkZGNjZDRkExQkQ0QTVDMTJDNTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnuRswDQYJKoZIhvcNAQELBQADggEBAFUyCWTzM7xjJmxdrsZI3Y6u/4ehGwXR BIq1SkemE/R1wODrVYJQUHFkfbNGM2LiHrNi81qwEmAPc7nEAE3o+IWMSNrqE2Pv ym6iVoDaJTtykZy/cG+9NnjEzrXZiHBraT8dYNoGJYFugyATiRbOm5pHi8CpHvx/ Cq9wcn9lCp4M9WWM9xzJvXsHCyUXzMcXos+Q6F/gwG7oEvpKlEw1yD5ZTlp9tqvN CvYf7EDWi6vhfZlFFvr+ioRshQ1zGyY1s4RU7piIV+289Pkgj/HX+kIil7KA5T9k tUdd/5E56Y68Caunlw7p8CIB4EoE9uo+PYeiOU8FORkd5R7aaTY/O5E= -----END CERTIFICATE-----Generated at Tue May 7 18:07:05 2024 by rpki-client on console-fra.rpki-client.org