$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/245A17CADB2BB2FDC5786C27E5BE959636E7F409.cer File: 245A17CADB2BB2FDC5786C27E5BE959636E7F409.cer (raw, json) Hash identifier: x3E9yFQspU3JDg+343h9H95IjdAkBzX2ni5Rrr5Acdo= Subject key identifier: 24:5A:17:CA:DB:2B:B2:FD:C5:78:6C:27:E5:BE:95:96:36:E7:F4:09 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7AEF6CAB3782FA02C7420C895BA08DD0E427DDE4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0/245A17CADB2BB2FDC5786C27E5BE959636E7F409.mft caRepository: rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 05 Jan 2024 07:19:02 +0000 Certificate not after: Fri 03 Jan 2025 07:24:02 +0000 Subordinate resources: IP: 103.51.98.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ef:6c:ab:37:82:fa:02:c7:42:0c:89:5b:a0:8d:d0:e4:27:dd:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 5 07:19:02 2024 GMT Not After : Jan 3 07:24:02 2025 GMT Subject: CN=245A17CADB2BB2FDC5786C27E5BE959636E7F409 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:20:42:7f:3d:30:f0:11:af:ca:2c:01:28:46: 57:d0:e4:95:0a:a1:ae:6a:37:b5:61:14:7b:d1:6a: d6:3c:55:b4:7d:83:1d:57:2a:d3:0b:c7:1e:10:b3: 83:61:11:85:9b:eb:91:1f:1e:c7:ab:84:05:b0:f1: ce:d4:94:20:b1:62:72:21:52:7f:96:c6:81:b8:52: 33:4e:fd:59:ea:9d:c8:68:e9:b1:d4:7f:a6:c1:1c: f0:02:fd:fc:1f:10:97:bd:61:5e:1f:16:e7:e6:b8: 1b:42:74:12:15:d2:70:b1:b5:31:ca:00:9b:ac:67: 51:ed:f9:e6:f6:05:29:88:18:18:22:53:42:78:2a: 0d:9b:ec:48:5e:e2:b4:cd:8d:07:3a:bf:f8:3a:28: a1:64:5d:6a:42:61:3c:e1:bc:5e:f1:3d:06:24:e5: 51:0f:61:59:40:40:10:5a:c7:39:a1:18:6a:39:bc: 64:6a:b8:96:92:16:f3:89:c5:ee:d0:c6:a5:c8:0a: c6:3e:57:43:c1:94:c4:ff:20:c4:e1:eb:c6:e9:3a: 0e:65:63:83:1b:cd:4f:b5:d1:73:83:30:ec:42:2e: 80:80:21:97:0f:e0:22:0d:9f:04:56:dc:1d:e1:8d: 8a:4b:0f:3e:78:88:6d:3d:3e:3a:0e:26:87:18:b5: 30:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 24:5A:17:CA:DB:2B:B2:FD:C5:78:6C:27:E5:BE:95:96:36:E7:F4:09 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2f13a6ef-3434-4401-b3e1-65153066fb3e/0/245A17CADB2BB2FDC5786C27E5BE959636E7F409.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.51.98.0/23 Signature Algorithm: sha256WithRSAEncryption 98:2e:f3:b9:8f:00:87:a8:1e:1f:e6:3b:e0:13:1a:b6:24:83: 31:9b:c7:d5:a0:fc:9a:7e:02:8b:be:81:22:6b:ca:6d:29:d5: 7b:39:34:a3:27:c3:e7:97:ca:69:25:0a:0a:f2:92:fb:f7:2d: 9c:d8:81:b5:60:9a:41:ab:03:19:b6:db:29:45:29:c5:e7:2f: 2b:92:06:27:5b:49:d4:90:a3:4b:e8:21:ea:f1:dc:b4:76:91: 75:65:ad:98:88:6c:63:e8:e2:ef:d1:37:e2:62:7f:88:1e:92: c6:50:01:79:36:3e:ad:46:ec:cb:07:12:79:47:92:ad:b5:ef: b8:8f:c3:f8:5b:67:78:0e:c1:cb:be:7b:73:cd:6e:81:6f:cd: 80:d9:2b:54:4c:1b:11:df:7b:44:78:f5:69:6b:96:50:94:e8: a1:2e:2e:f4:fc:04:50:2e:cc:2f:c6:08:ff:e8:e1:08:07:12: 7f:6a:19:d7:3b:c0:a6:20:42:44:1d:c0:1a:5d:81:5e:ea:b3: 12:1c:8c:ad:4f:da:e0:cd:62:db:8f:1f:d1:e7:bb:2a:08:d4: db:ce:3b:85:0d:45:18:9d:b6:53:99:75:93:31:a6:d2:68:96: 90:64:35:86:5e:56:73:8a:47:b0:62:21:dc:55:f6:0f:8f:e8: 81:0d:f9:4c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUeu9sqzeC+gLHQgyJW6CN0OQn3eQwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwNTA3MTkwMloX DTI1MDEwMzA3MjQwMlowMzExMC8GA1UEAxMoMjQ1QTE3Q0FEQjJCQjJGREM1Nzg2 QzI3RTVCRTk1OTYzNkU3RjQwOTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALYgQn89MPARr8osAShGV9DklQqhrmo3tWEUe9Fq1jxVtH2DHVcq0wvHHhCz g2ERhZvrkR8ex6uEBbDxztSUILFiciFSf5bGgbhSM079WeqdyGjpsdR/psEc8AL9 /B8Ql71hXh8W5+a4G0J0EhXScLG1McoAm6xnUe355vYFKYgYGCJTQngqDZvsSF7i tM2NBzq/+DoooWRdakJhPOG8XvE9BiTlUQ9hWUBAEFrHOaEYajm8ZGq4lpIW84nF 7tDGpcgKxj5XQ8GUxP8gxOHrxuk6DmVjgxvNT7XRc4Mw7EIugIAhlw/gIg2fBFbc HeGNiksPPniIbT0+Og4mhxi1MI8CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCRaF8rbK7L9xXhsJ+W+lZY25/QJMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yZjEzYTZlZi0zNDM0LTQ0MDEtYjNlMS02NTE1MzA2NmZiM2UvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzJmMTNhNmVm LTM0MzQtNDQwMS1iM2UxLTY1MTUzMDY2ZmIzZS8wLzI0NUExN0NBREIyQkIyRkRD NTc4NkMyN0U1QkU5NTk2MzZFN0Y0MDkubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnM2IwDQYJKoZIhvcNAQELBQADggEBAJgu87mPAIeoHh/mO+ATGrYkgzGbx9Wg /Jp+Aou+gSJrym0p1Xs5NKMnw+eXymklCgrykvv3LZzYgbVgmkGrAxm22ylFKcXn LyuSBidbSdSQo0voIerx3LR2kXVlrZiIbGPo4u/RN+Jif4geksZQAXk2Pq1G7MsH EnlHkq2177iPw/hbZ3gOwcu+e3PNboFvzYDZK1RMGxHfe0R49WlrllCU6KEuLvT8 BFAuzC/GCP/o4QgHEn9qGdc7wKYgQkQdwBpdgV7qsxIcjK1P2uDNYtuPH9HnuyoI 1NvOO4UNRRidtlOZdZMxptJolpBkNYZeVnOKR7BiIdxV9g+P6IEN+Uw= -----END CERTIFICATE-----Generated at Thu May 9 00:36:57 2024 by rpki-client on console-fra.rpki-client.org