$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/1CC4D0E2E2BC8B0060718A857657AA82D20E5974.cer File: 1CC4D0E2E2BC8B0060718A857657AA82D20E5974.cer (raw, json) Hash identifier: ynKVX6GeJYqtg1gqhLJXxKHZPOyBN7P6YsxdKUJyE5g= Subject key identifier: 1C:C4:D0:E2:E2:BC:8B:00:60:71:8A:85:76:57:AA:82:D2:0E:59:74 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 45E0ABCE718005D821FFD23C7AAA94C9F7F62169 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/95df512f-0d1a-4b09-b9a4-a9c525ec2817/0/1CC4D0E2E2BC8B0060718A857657AA82D20E5974.mft caRepository: rsync://repo-rpki.idnic.net/repo/95df512f-0d1a-4b09-b9a4-a9c525ec2817/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 15 Nov 2023 07:48:54 +0000 Certificate not after: Wed 13 Nov 2024 07:53:54 +0000 Subordinate resources: IP: 103.163.13.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 10:29:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:e0:ab:ce:71:80:05:d8:21:ff:d2:3c:7a:aa:94:c9:f7:f6:21:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 15 07:48:54 2023 GMT Not After : Nov 13 07:53:54 2024 GMT Subject: CN=1CC4D0E2E2BC8B0060718A857657AA82D20E5974 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:e1:0f:ef:91:bd:9c:e6:f1:9c:73:5b:54:b0: 2d:af:b5:68:d3:5f:52:4f:4b:c3:25:5c:80:66:1e: 53:ca:81:69:b2:e1:a8:6d:db:55:4f:b2:11:a5:4a: eb:0b:88:41:e0:ad:b5:10:87:f0:d5:01:97:ec:52: 9d:65:e5:55:d1:1b:06:91:59:a1:89:6a:9a:2f:4c: f7:5a:17:84:42:50:3d:1e:6e:46:cd:f3:4d:7e:d9: c2:57:3f:99:12:b0:1d:62:0b:a8:8e:3f:11:e3:8f: 0c:35:9f:f9:26:1f:a0:60:d3:e0:86:32:c3:2b:f2: 89:1e:d3:d8:b1:97:f0:8b:01:1d:f4:ea:4b:12:6e: 8d:2e:4b:e5:64:b8:dd:36:13:3d:64:a7:77:79:86: 09:d1:54:a5:7c:47:9c:e5:97:1d:14:9e:89:f8:cd: 06:77:65:31:d6:f6:e4:85:21:2f:eb:09:55:f3:1b: 02:3f:74:e8:7a:b0:ec:b8:ad:84:db:e4:9a:47:fa: 1d:13:e6:6f:42:65:0d:f4:34:fa:0c:a7:2e:59:d7: 23:5d:01:49:0f:83:ef:9b:13:15:5d:c1:18:59:e7: 45:fa:c5:d2:ea:15:e3:ba:25:c5:3e:e1:8e:8e:4c: b0:cb:9a:d5:a3:18:42:80:5f:6f:6c:3c:bb:1f:62: 17:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 1C:C4:D0:E2:E2:BC:8B:00:60:71:8A:85:76:57:AA:82:D2:0E:59:74 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/95df512f-0d1a-4b09-b9a4-a9c525ec2817/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/95df512f-0d1a-4b09-b9a4-a9c525ec2817/0/1CC4D0E2E2BC8B0060718A857657AA82D20E5974.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.163.13.0/24 Signature Algorithm: sha256WithRSAEncryption 21:3a:a0:a8:db:34:88:d1:b4:bb:7d:bb:5b:16:07:9d:dd:ed: 00:e1:dc:96:d8:d7:32:a2:14:73:80:e9:ca:e2:93:d4:df:28: 61:eb:29:b4:5d:eb:15:1c:df:b6:37:97:61:d2:76:d8:4f:f1: e8:9a:72:67:3a:17:69:b4:29:85:0b:89:7a:a7:80:4d:fe:65: b9:b3:e4:55:b0:7c:8b:cb:9c:5b:b1:05:17:17:3a:60:0e:3e: 7e:06:ff:01:70:82:d4:ec:7c:d9:05:fa:f3:88:79:4c:81:4d: 27:35:7a:91:87:55:e8:b2:e5:d6:d4:51:37:2e:32:8e:04:e9: fc:99:fa:86:79:fc:6c:32:9c:fd:9d:ff:27:a7:44:44:6b:62: 01:cf:e1:7f:71:5a:54:ef:7d:5f:73:84:e7:83:c4:9b:16:db: c9:9d:3f:23:00:47:3a:2e:c2:ac:95:ce:e5:16:d0:35:cf:39: 89:56:81:5b:1e:0b:9c:fe:ca:63:19:2b:3f:52:dc:23:8a:e3: 67:79:7a:c7:54:98:48:96:49:56:fd:c5:e3:b0:b2:a5:ad:ed: 95:af:5b:c3:4b:f6:92:a7:9e:e5:a5:08:52:38:a8:5f:14:b7: 22:4e:19:58:dc:1d:66:8d:63:0f:80:64:72:9b:f2:a0:4f:89: db:e6:09:6c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUReCrznGABdgh/9I8eqqUyff2IWkwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNTA3NDg1NFoX DTI0MTExMzA3NTM1NFowMzExMC8GA1UEAxMoMUNDNEQwRTJFMkJDOEIwMDYwNzE4 QTg1NzY1N0FBODJEMjBFNTk3NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMPhD++RvZzm8ZxzW1SwLa+1aNNfUk9LwyVcgGYeU8qBabLhqG3bVU+yEaVK 6wuIQeCttRCH8NUBl+xSnWXlVdEbBpFZoYlqmi9M91oXhEJQPR5uRs3zTX7Zwlc/ mRKwHWILqI4/EeOPDDWf+SYfoGDT4IYywyvyiR7T2LGX8IsBHfTqSxJujS5L5WS4 3TYTPWSnd3mGCdFUpXxHnOWXHRSeifjNBndlMdb25IUhL+sJVfMbAj906Hqw7Lit hNvkmkf6HRPmb0JlDfQ0+gynLlnXI10BSQ+D75sTFV3BGFnnRfrF0uoV47olxT7h jo5MsMua1aMYQoBfb2w8ux9iF3UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFBzE0OLivIsAYHGKhXZXqoLSDll0MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by85NWRmNTEyZi0wZDFhLTRiMDktYjlhNC1hOWM1MjVlYzI4MTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzk1ZGY1MTJm LTBkMWEtNGIwOS1iOWE0LWE5YzUyNWVjMjgxNy8wLzFDQzREMEUyRTJCQzhCMDA2 MDcxOEE4NTc2NTdBQTgyRDIwRTU5NzQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnow0wDQYJKoZIhvcNAQELBQADggEBACE6oKjbNIjRtLt9u1sWB53d7QDh3JbY 1zKiFHOA6crik9TfKGHrKbRd6xUc37Y3l2HSdthP8eiacmc6F2m0KYULiXqngE3+ Zbmz5FWwfIvLnFuxBRcXOmAOPn4G/wFwgtTsfNkF+vOIeUyBTSc1epGHVeiy5dbU UTcuMo4E6fyZ+oZ5/GwynP2d/yenRERrYgHP4X9xWlTvfV9zhOeDxJsW28mdPyMA RzouwqyVzuUW0DXPOYlWgVseC5z+ymMZKz9S3COK42d5esdUmEiWSVb9xeOwsqWt 7ZWvW8NL9pKnnuWlCFI4qF8UtyJOGVjcHWaNYw+AZHKb8qBPidvmCWw= -----END CERTIFICATE-----Generated at Wed May 8 04:37:47 2024 by rpki-client on console-fra.rpki-client.org