$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B.cer File: 2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B.cer (raw, json) Hash identifier: gY/vZjZoGYcX9hYT3YM94lsLmObPDj2mxugy5DctnjY= Subject key identifier: 25:66:F4:DF:5C:09:FF:A8:E4:F4:D6:99:99:41:B9:AB:A2:B7:22:8B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 10C513E544F29E9632638369F02C32215725DAE0 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d916411f-78ca-4916-8919-37c1d99efbd8/0/2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B.mft caRepository: rsync://repo-rpki.idnic.net/repo/d916411f-78ca-4916-8919-37c1d99efbd8/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 19 Jan 2024 07:10:41 +0000 Certificate not after: Fri 17 Jan 2025 07:15:41 +0000 Subordinate resources: IP: 103.172.20.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:c5:13:e5:44:f2:9e:96:32:63:83:69:f0:2c:32:21:57:25:da:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 19 07:10:41 2024 GMT Not After : Jan 17 07:15:41 2025 GMT Subject: CN=2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:07:8b:fc:83:91:5f:80:c1:f3:d6:3e:98:4a: cc:41:89:08:23:bc:bd:3f:94:cc:93:12:00:14:ad: ec:d7:7b:35:f0:d3:7b:7e:2e:2e:09:32:ec:6e:f9: 9b:83:e5:47:e1:80:73:ac:6f:f5:a2:38:ac:8b:5a: c7:cf:a1:0d:60:7d:84:45:2b:82:9b:d4:48:73:f3: cd:26:2b:7a:7b:b9:eb:db:52:6e:0e:83:c9:4b:8a: 61:7a:7a:aa:85:40:48:2c:09:fb:82:6e:78:47:9b: 40:d0:11:46:cf:52:8b:18:4f:1c:7b:0c:8f:08:0e: c9:20:49:1d:02:e4:4b:ab:fa:cb:f0:38:f2:89:a3: 63:42:bf:c4:8b:a0:bd:b4:af:fc:1d:37:4b:1e:2f: cb:7b:86:0a:07:91:85:dc:29:ad:d2:5e:64:94:25: 34:44:e1:19:e3:d4:e1:ba:84:95:20:91:94:5e:0b: 8e:6d:a7:ee:38:15:8b:ff:10:f8:57:d6:75:ef:1e: dc:32:f9:23:7b:9d:53:40:49:aa:13:d9:ab:06:03: 92:15:3f:79:e1:9c:b6:05:68:9f:ec:be:e9:6f:f9: 5e:d4:91:bf:70:ad:93:94:0f:95:87:8d:1b:e3:98: 08:5b:5e:66:d4:85:59:08:7c:9b:94:c1:1d:d4:2b: 8d:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:66:F4:DF:5C:09:FF:A8:E4:F4:D6:99:99:41:B9:AB:A2:B7:22:8B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d916411f-78ca-4916-8919-37c1d99efbd8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d916411f-78ca-4916-8919-37c1d99efbd8/0/2566F4DF5C09FFA8E4F4D6999941B9ABA2B7228B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.172.20.0/23 Signature Algorithm: sha256WithRSAEncryption 2a:3e:94:05:f9:f1:03:36:cf:dd:bd:94:a7:5e:c0:32:25:fe: 26:2f:2c:1f:3a:d9:b0:e6:c9:07:c8:ff:56:8b:3a:b6:66:b2: ca:4d:dd:ca:a2:24:fb:0d:bf:e4:d3:ed:59:14:9a:ea:09:e8: 21:9f:f4:e7:35:37:77:da:d8:20:38:87:ac:b1:61:e0:e4:43: 01:5c:c0:a0:6f:8e:59:88:11:7d:7a:de:06:6a:ca:c0:8b:db: cc:23:d2:e3:93:fa:9e:61:3c:82:4f:f0:f1:42:7f:2b:ea:35: 5e:f9:2c:df:7d:fb:b2:c2:11:c5:b3:0a:1e:a4:b9:4e:18:f6: 6d:81:90:6f:fb:a9:91:f7:33:76:13:54:5e:8b:77:b3:99:fb: 5f:98:42:95:3a:08:1d:2f:bc:c2:09:05:f8:ae:8b:8c:54:fa: bb:91:0f:81:20:74:6b:89:10:39:6b:dd:3f:f7:a5:88:15:8b: 8a:e6:3f:65:82:80:b2:4b:e3:5b:ae:88:71:f0:95:7f:4a:33: f8:2f:29:c9:b8:a8:69:27:03:63:49:f1:9b:dc:fc:ff:22:98: a0:78:e0:09:12:ba:f9:2b:2f:6a:8f:e0:87:d2:be:97:6c:ac: 2b:b3:63:c0:32:16:2d:d4:d9:e0:91:17:4a:c9:07:c9:39:d1: 55:48:58:96 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEMUT5UTynpYyY4Np8CwyIVcl2uAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExOTA3MTA0MVoX DTI1MDExNzA3MTU0MVowMzExMC8GA1UEAxMoMjU2NkY0REY1QzA5RkZBOEU0RjRE Njk5OTk0MUI5QUJBMkI3MjI4QjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0Hi/yDkV+AwfPWPphKzEGJCCO8vT+UzJMSABSt7Nd7NfDTe34uLgky7G75 m4PlR+GAc6xv9aI4rItax8+hDWB9hEUrgpvUSHPzzSYrenu569tSbg6DyUuKYXp6 qoVASCwJ+4JueEebQNARRs9SixhPHHsMjwgOySBJHQLkS6v6y/A48omjY0K/xIug vbSv/B03Sx4vy3uGCgeRhdwprdJeZJQlNEThGePU4bqElSCRlF4Ljm2n7jgVi/8Q +FfWde8e3DL5I3udU0BJqhPZqwYDkhU/eeGctgVon+y+6W/5XtSRv3Ctk5QPlYeN G+OYCFteZtSFWQh8m5TBHdQrjYECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCVm9N9cCf+o5PTWmZlBuauityKLMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kOTE2NDExZi03OGNhLTQ5MTYtODkxOS0zN2MxZDk5ZWZiZDgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q5MTY0MTFm LTc4Y2EtNDkxNi04OTE5LTM3YzFkOTllZmJkOC8wLzI1NjZGNERGNUMwOUZGQThF NEY0RDY5OTk5NDFCOUFCQTJCNzIyOEIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrBQwDQYJKoZIhvcNAQELBQADggEBACo+lAX58QM2z929lKdewDIl/iYvLB86 2bDmyQfI/1aLOrZmsspN3cqiJPsNv+TT7VkUmuoJ6CGf9Oc1N3fa2CA4h6yxYeDk QwFcwKBvjlmIEX163gZqysCL28wj0uOT+p5hPIJP8PFCfyvqNV75LN99+7LCEcWz Ch6kuU4Y9m2BkG/7qZH3M3YTVF6Ld7OZ+1+YQpU6CB0vvMIJBfiui4xU+ruRD4Eg dGuJEDlr3T/3pYgVi4rmP2WCgLJL41uuiHHwlX9KM/gvKcm4qGknA2NJ8Zvc/P8i mKB44AkSuvkrL2qP4IfSvpdsrCuzY8AyFi3U2eCRF0rJB8k50VVIWJY= -----END CERTIFICATE-----Generated at Wed May 8 17:45:16 2024 by rpki-client on console-ams.rpki-client.org