$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/25F283F3EEC39D541DF359689045D2073EBB3FE0.cer File: 25F283F3EEC39D541DF359689045D2073EBB3FE0.cer (raw, json) Hash identifier: XCXZxgLHABJ9T8brfP2qPgPksdu/v59Z1vlJEEfuCpI= Subject key identifier: 25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 74F1E99BE1F1EE198B0AD1D66B9AB77E46B5D7CE Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.mft caRepository: rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 25 Aug 2023 12:50:33 +0000 Certificate not after: Fri 23 Aug 2024 12:55:33 +0000 Subordinate resources: IP: 103.174.122.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:f1:e9:9b:e1:f1:ee:19:8b:0a:d1:d6:6b:9a:b7:7e:46:b5:d7:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 25 12:50:33 2023 GMT Not After : Aug 23 12:55:33 2024 GMT Subject: CN=25F283F3EEC39D541DF359689045D2073EBB3FE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:aa:36:c2:9d:72:5a:2c:73:a9:28:9d:da:90: b5:36:59:59:f0:1f:ce:a0:57:23:92:0e:07:17:fe: 43:63:51:7f:7e:92:93:f2:2a:e7:54:fa:fb:95:61: c5:e9:39:6f:0f:98:fc:a9:45:be:86:70:3d:b2:f5: d6:2a:d7:5f:52:70:09:a5:50:0a:49:8d:b8:1e:8d: 30:cf:1b:5d:54:7a:1d:4f:62:7b:aa:c9:63:41:fe: 4e:9c:60:b6:e6:24:f5:c6:20:f6:99:f4:ca:6f:2d: d9:eb:28:9d:3f:69:c2:ae:d8:b3:33:29:dd:47:ff: 9e:8d:66:37:7f:51:82:eb:8e:35:c6:d1:7f:5f:e9: 14:2e:38:4a:ad:a1:90:36:1a:9a:8a:22:32:30:90: c0:1a:d7:71:21:3c:1e:63:71:b2:c9:a8:66:02:08: 88:31:bf:5c:c5:c8:20:76:0b:46:b3:d0:67:f7:27: 50:af:dd:51:9b:3b:4c:ac:9e:ea:52:d1:4c:1a:2d: 8a:b5:4d:df:ec:4d:de:54:75:b1:b9:ab:c8:a9:7f: b1:a8:18:7c:46:e2:7f:a4:a7:c4:1d:52:7f:ca:50: e8:1e:1c:ea:0f:1d:12:d6:35:39:ed:b8:69:e6:ba: 73:46:57:d2:d1:31:20:d1:3f:1d:38:6e:bd:a2:36: 7c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:F2:83:F3:EE:C3:9D:54:1D:F3:59:68:90:45:D2:07:3E:BB:3F:E0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/2273027a-096b-4e95-a656-dabe98ac6f6d/0/25F283F3EEC39D541DF359689045D2073EBB3FE0.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.174.122.0/23 Signature Algorithm: sha256WithRSAEncryption 0c:7b:aa:57:1a:b9:da:24:a9:42:93:7c:57:7e:34:eb:da:bd: 1e:fc:87:27:be:0b:47:12:67:d7:e0:b8:25:e4:68:8e:34:d4: e3:e6:18:03:8f:6a:4d:73:d0:f0:20:45:4e:1f:50:9c:58:9b: 27:92:87:1e:14:b1:7d:04:50:c6:08:d2:cb:01:5d:ec:67:84: fd:d6:7c:76:fb:d5:38:2b:fe:92:7e:1b:1c:0e:3d:7e:0b:61: 26:97:42:c8:15:21:d8:e6:a5:71:4f:b1:2d:ec:5a:ae:c4:ae: 27:0e:fe:65:59:f1:78:af:9f:bf:1b:da:45:03:ad:a2:84:69: 64:58:e0:8e:02:26:0c:af:15:88:93:37:28:b5:aa:68:27:04: f3:0f:47:06:a7:e7:ba:c7:4d:30:c0:55:5c:16:59:54:e1:ed: 3a:ef:c9:76:f8:86:68:f0:1d:29:ae:0a:f4:60:51:61:b1:da: 32:7b:84:d1:e1:99:6b:35:b7:31:7e:4a:1d:68:68:dc:0d:b6: c7:a7:f1:41:55:b5:69:3b:25:96:52:c0:24:df:cd:fb:b6:3c: 70:aa:81:f0:ca:29:7e:8b:59:8b:58:ba:a6:ac:28:05:31:e3: 1b:2f:79:86:16:bc:d8:84:84:fa:33:8e:92:6f:d0:0b:6d:ef: b2:7b:f1:ef -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdPHpm+Hx7hmLCtHWa5q3fka1184wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyNTEyNTAzM1oX DTI0MDgyMzEyNTUzM1owMzExMC8GA1UEAxMoMjVGMjgzRjNFRUMzOUQ1NDFERjM1 OTY4OTA0NUQyMDczRUJCM0ZFMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAM6qNsKdclosc6kondqQtTZZWfAfzqBXI5IOBxf+Q2NRf36Sk/Iq51T6+5Vh xek5bw+Y/KlFvoZwPbL11irXX1JwCaVQCkmNuB6NMM8bXVR6HU9ie6rJY0H+Tpxg tuYk9cYg9pn0ym8t2esonT9pwq7YszMp3Uf/no1mN39RguuONcbRf1/pFC44Sq2h kDYamooiMjCQwBrXcSE8HmNxssmoZgIIiDG/XMXIIHYLRrPQZ/cnUK/dUZs7TKye 6lLRTBotirVN3+xN3lR1sbmryKl/sagYfEbif6SnxB1Sf8pQ6B4c6g8dEtY1Oe24 aea6c0ZX0tExINE/HThuvaI2fAkCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCXyg/Puw51UHfNZaJBF0gc+uz/gMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8yMjczMDI3YS0wOTZiLTRlOTUtYTY1Ni1kYWJlOThhYzZmNmQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzIyNzMwMjdh LTA5NmItNGU5NS1hNjU2LWRhYmU5OGFjNmY2ZC8wLzI1RjI4M0YzRUVDMzlENTQx REYzNTk2ODkwNDVEMjA3M0VCQjNGRTAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnrnowDQYJKoZIhvcNAQELBQADggEBAAx7qlcaudokqUKTfFd+NOvavR78hye+ C0cSZ9fguCXkaI401OPmGAOPak1z0PAgRU4fUJxYmyeShx4UsX0EUMYI0ssBXexn hP3WfHb71Tgr/pJ+GxwOPX4LYSaXQsgVIdjmpXFPsS3sWq7EricO/mVZ8Xivn78b 2kUDraKEaWRY4I4CJgyvFYiTNyi1qmgnBPMPRwan57rHTTDAVVwWWVTh7TrvyXb4 hmjwHSmuCvRgUWGx2jJ7hNHhmWs1tzF+Sh1oaNwNtsen8UFVtWk7JZZSwCTfzfu2 PHCqgfDKKX6LWYtYuqasKAUx4xsveYYWvNiEhPozjpJv0Att77J78e8= -----END CERTIFICATE-----Generated at Thu May 9 00:36:57 2024 by rpki-client on console-fra.rpki-client.org