$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1A88815F25C9ADC8E68E2145CC20A00096657347.cer File: 1A88815F25C9ADC8E68E2145CC20A00096657347.cer (raw, json) Hash identifier: usJjD7dThQEi8e1Ony6tnPFLN/9jgIZLgTEK9N1oQnk= Subject key identifier: 1A:88:81:5F:25:C9:AD:C8:E6:8E:21:45:CC:20:A0:00:96:65:73:47 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0872F9A64F7D3BF33B90C9E16E1EEF0FD37DC9D0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.mft caRepository: rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 08 Dec 2023 12:36:10 +0000 Certificate not after: Fri 06 Dec 2024 12:41:10 +0000 Subordinate resources: IP: 103.175.84.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:72:f9:a6:4f:7d:3b:f3:3b:90:c9:e1:6e:1e:ef:0f:d3:7d:c9:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 8 12:36:10 2023 GMT Not After : Dec 6 12:41:10 2024 GMT Subject: CN=1A88815F25C9ADC8E68E2145CC20A00096657347 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:b5:6e:03:f0:cd:1e:81:f3:39:74:15:8b:a8: 90:92:99:02:6c:39:ae:90:ae:da:d4:fd:9b:6a:49: b0:5a:a6:ba:5d:5d:e1:20:d0:61:63:70:4c:36:b5: f5:bc:0c:2f:ef:1d:2d:2d:19:71:2a:76:68:74:ac: 7e:39:fe:6c:fa:42:ec:24:4d:33:f6:c2:ce:96:e9: 4e:4d:71:cb:28:05:76:f2:36:dc:6a:cf:6f:aa:09: 1a:56:6e:a9:bb:77:6d:8d:b9:0f:4f:78:45:c6:67: 77:06:29:6a:62:db:e8:31:18:19:fe:15:88:80:54: 46:67:b0:36:58:b6:16:f3:48:60:75:2f:7b:7d:47: 22:7f:c2:78:2d:5a:3c:92:02:bf:b7:52:79:2c:e3: b7:c0:25:03:04:25:e4:21:5c:19:b8:25:d4:aa:d5: 10:6e:ac:49:b9:db:39:e8:75:81:c0:d4:09:76:b5: 30:26:12:3f:cc:44:6b:8b:27:35:f4:62:ea:ed:c2: 27:1c:e7:92:d7:ab:1c:6c:d1:16:c6:a7:76:82:5c: 21:c8:04:ad:4b:f2:a5:97:44:b0:4a:77:0d:83:71: 78:e8:99:ea:5a:eb:80:46:ba:ec:2a:13:a0:3b:66: e8:fd:c8:ee:5b:ed:a0:dd:fd:77:ec:79:4a:91:bc: e1:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1A:88:81:5F:25:C9:AD:C8:E6:8E:21:45:CC:20:A0:00:96:65:73:47 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/54c77666-4c74-440d-9167-af63faa6eb9e/0/1A88815F25C9ADC8E68E2145CC20A00096657347.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.84.0/23 Signature Algorithm: sha256WithRSAEncryption 98:19:b3:1a:69:24:7b:b1:f9:34:17:79:82:33:32:e8:f8:22: 61:77:5b:ac:6c:59:ac:65:0f:58:db:2b:80:8f:42:4c:cc:4d: 52:6c:ad:1c:5e:ca:1e:ca:f8:ab:72:cb:77:7c:fb:29:0e:36: 52:25:2c:89:fb:ad:f9:f1:17:7e:88:c8:44:58:02:8b:51:1c: 97:c0:dd:3b:d7:d5:61:24:fe:4d:22:48:1e:18:11:16:af:07: 0d:45:e1:2a:8a:de:4c:2c:67:0a:4a:7b:55:28:dd:be:d8:8d: 86:de:ea:f3:8d:ea:d7:56:7e:d6:7a:67:ce:26:50:3a:a2:63: bb:74:46:bb:a9:7e:c5:74:f7:36:b0:4a:dd:06:ac:04:23:c9: 30:99:24:e9:d6:f8:96:e6:19:d2:59:35:c5:4e:4f:d6:23:0b: b1:b0:05:0b:d2:27:ed:10:c3:74:5b:60:f5:f6:55:36:d8:cd: fd:10:f4:4b:c9:9a:28:d9:67:60:4f:55:15:b7:e6:5b:f9:1d: 4c:b0:8b:87:57:25:51:21:5a:af:72:d1:46:0f:99:a4:a7:38: 54:69:92:ca:84:ec:2b:50:bf:c3:3d:9a:0c:0a:36:08:40:9d: ad:e9:27:b1:4b:63:f5:d3:35:3a:02:70:2f:5f:1d:54:ee:72: 63:75:2a:f9 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCHL5pk99O/M7kMnhbh7vD9N9ydAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwODEyMzYxMFoX DTI0MTIwNjEyNDExMFowMzExMC8GA1UEAxMoMUE4ODgxNUYyNUM5QURDOEU2OEUy MTQ1Q0MyMEEwMDA5NjY1NzM0NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKu1bgPwzR6B8zl0FYuokJKZAmw5rpCu2tT9m2pJsFqmul1d4SDQYWNwTDa1 9bwML+8dLS0ZcSp2aHSsfjn+bPpC7CRNM/bCzpbpTk1xyygFdvI23GrPb6oJGlZu qbt3bY25D094RcZndwYpamLb6DEYGf4ViIBURmewNli2FvNIYHUve31HIn/CeC1a PJICv7dSeSzjt8AlAwQl5CFcGbgl1KrVEG6sSbnbOeh1gcDUCXa1MCYSP8xEa4sn NfRi6u3CJxznkterHGzRFsandoJcIcgErUvypZdEsEp3DYNxeOiZ6lrrgEa67CoT oDtm6P3I7lvtoN39d+x5SpG84d8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBqIgV8lya3I5o4hRcwgoACWZXNHMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81NGM3NzY2Ni00Yzc0LTQ0MGQtOTE2Ny1hZjYzZmFhNmViOWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzU0Yzc3NjY2 LTRjNzQtNDQwZC05MTY3LWFmNjNmYWE2ZWI5ZS8wLzFBODg4MTVGMjVDOUFEQzhF NjhFMjE0NUNDMjBBMDAwOTY2NTczNDcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnr1QwDQYJKoZIhvcNAQELBQADggEBAJgZsxppJHux+TQXeYIzMuj4ImF3W6xs WaxlD1jbK4CPQkzMTVJsrRxeyh7K+Ktyy3d8+ykONlIlLIn7rfnxF36IyERYAotR HJfA3TvX1WEk/k0iSB4YERavBw1F4SqK3kwsZwpKe1Uo3b7YjYbe6vON6tdWftZ6 Z84mUDqiY7t0RrupfsV09zawSt0GrAQjyTCZJOnW+JbmGdJZNcVOT9YjC7GwBQvS J+0Qw3RbYPX2VTbYzf0Q9EvJmijZZ2BPVRW35lv5HUywi4dXJVEhWq9y0UYPmaSn OFRpksqE7CtQv8M9mgwKNghAna3pJ7FLY/XTNToCcC9fHVTucmN1Kvk= -----END CERTIFICATE-----Generated at Wed May 8 09:50:25 2024 by rpki-client on console-fra.rpki-client.org