$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer File: 25F464020D9CBB8D18BC7C47169F978D24F4F1BE.cer (raw, json) Hash identifier: DLgI6YMNjrLSLwaq6dnvsSeg7e/S0Vk3covBmRFLZJ8= Subject key identifier: 25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0FEFBC08087580CEE1A5511C68F97BA104E67F8A Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.mft caRepository: rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 28 Sep 2023 10:28:18 +0000 Certificate not after: Thu 26 Sep 2024 10:33:18 +0000 Subordinate resources: IP: 103.176.180.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ef:bc:08:08:75:80:ce:e1:a5:51:1c:68:f9:7b:a1:04:e6:7f:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 28 10:28:18 2023 GMT Not After : Sep 26 10:33:18 2024 GMT Subject: CN=25F464020D9CBB8D18BC7C47169F978D24F4F1BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0d:01:f2:5f:e2:93:72:fc:c5:1c:e4:9a:22: 68:b7:61:89:01:82:df:a8:1b:f2:74:37:d8:c8:b5: e3:d8:76:f1:02:a6:70:e3:05:e5:03:74:97:96:0a: 5f:99:42:26:99:9c:9f:23:03:d6:c8:d4:72:5a:a2: 8d:23:41:3d:5f:9a:7e:54:e3:73:cc:a1:4d:c6:96: 62:f1:e7:3a:3e:5a:bf:a4:20:07:be:d3:36:69:d5: 49:4a:f5:9e:6f:fc:89:a7:c0:2c:a4:43:be:25:7a: c5:e4:03:b5:5b:9f:86:12:e7:a4:c0:8d:95:d9:a1: 02:f5:36:c0:63:34:5e:e6:cc:f4:b4:93:23:bb:97: c8:4c:5d:2f:0a:d0:72:a8:21:48:b7:c4:41:c7:65: b8:38:d6:a9:ce:78:48:4c:48:8a:96:ef:58:17:da: 25:a3:82:92:ac:71:8e:10:f7:fc:ab:d5:c3:1c:58: 86:20:19:28:4e:9e:65:4e:d0:11:b1:d5:fc:28:29: e0:12:58:5a:ea:e8:0f:60:08:7e:d2:db:41:d3:40: 04:f0:c4:dc:22:51:d5:f3:26:16:a2:11:cb:5d:a2: c2:08:ea:bf:18:78:6a:21:49:39:91:18:4b:d7:02: 8b:26:75:1c:c5:0d:15:1e:49:51:02:11:ff:99:5a: e6:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 25:F4:64:02:0D:9C:BB:8D:18:BC:7C:47:16:9F:97:8D:24:F4:F1:BE X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/628de86b-a26e-4b0f-a83c-05fab4a30c77/0/25F464020D9CBB8D18BC7C47169F978D24F4F1BE.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.176.180.0/23 Signature Algorithm: sha256WithRSAEncryption 76:5e:57:28:82:e5:7e:03:af:77:cc:8c:de:67:4f:75:2d:79: 71:8f:7e:57:58:25:56:6f:77:9c:9b:0e:84:95:71:4a:a4:92: 43:99:83:3b:a9:25:1e:14:58:e7:f5:fe:6f:4f:98:6c:e2:95: ca:71:2d:61:83:81:b7:a9:e0:48:c0:30:cc:63:e9:a7:c8:5c: 22:f5:b4:ce:0a:23:37:34:a8:14:de:89:ff:e1:68:08:4f:45: 95:ef:5a:e7:2a:65:78:8e:83:a6:46:7c:6d:8e:24:44:46:f5: 74:9a:d1:1a:0c:77:1b:0e:a3:aa:ed:b1:79:b5:6f:20:f7:ad: 62:ad:3a:f5:7e:49:00:63:3f:fe:43:bb:dd:ff:8f:3d:c4:f8: d7:8f:6c:e8:92:dd:ba:71:0b:39:a9:db:11:c1:b6:f8:ac:02: 0a:39:e0:5b:31:0d:29:32:18:b8:be:d6:4b:0e:e7:de:f1:a8: ca:0f:4b:23:e5:df:75:3f:37:ce:f7:f3:8e:4c:9a:01:23:e3: f8:24:4b:59:3b:0f:cb:22:cd:48:df:2b:34:b1:f1:8d:03:2d: de:e8:54:0c:09:5a:a1:4e:af:28:f5:43:c6:bf:4b:39:cb:5c: 99:d3:ec:07:9d:ae:bc:ea:ab:af:5d:59:ad:26:ab:c1:e6:f0: ca:1f:5e:e8 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUD++8CAh1gM7hpVEcaPl7oQTmf4owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkyODEwMjgxOFoX DTI0MDkyNjEwMzMxOFowMzExMC8GA1UEAxMoMjVGNDY0MDIwRDlDQkI4RDE4QkM3 QzQ3MTY5Rjk3OEQyNEY0RjFCRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL0NAfJf4pNy/MUc5JoiaLdhiQGC36gb8nQ32Mi149h28QKmcOMF5QN0l5YK X5lCJpmcnyMD1sjUclqijSNBPV+aflTjc8yhTcaWYvHnOj5av6QgB77TNmnVSUr1 nm/8iafALKRDviV6xeQDtVufhhLnpMCNldmhAvU2wGM0XubM9LSTI7uXyExdLwrQ cqghSLfEQcdluDjWqc54SExIipbvWBfaJaOCkqxxjhD3/KvVwxxYhiAZKE6eZU7Q EbHV/Cgp4BJYWuroD2AIftLbQdNABPDE3CJR1fMmFqIRy12iwgjqvxh4aiFJOZEY S9cCiyZ1HMUNFR5JUQIR/5la5lUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFCX0ZAINnLuNGLx8Rxafl40k9PG+MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82MjhkZTg2Yi1hMjZlLTRiMGYtYTgzYy0wNWZhYjRhMzBjNzcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzYyOGRlODZi LWEyNmUtNGIwZi1hODNjLTA1ZmFiNGEzMGM3Ny8wLzI1RjQ2NDAyMEQ5Q0JCOEQx OEJDN0M0NzE2OUY5NzhEMjRGNEYxQkUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnsLQwDQYJKoZIhvcNAQELBQADggEBAHZeVyiC5X4Dr3fMjN5nT3UteXGPfldY JVZvd5ybDoSVcUqkkkOZgzupJR4UWOf1/m9PmGzilcpxLWGDgbep4EjAMMxj6afI XCL1tM4KIzc0qBTeif/haAhPRZXvWucqZXiOg6ZGfG2OJERG9XSa0RoMdxsOo6rt sXm1byD3rWKtOvV+SQBjP/5Du93/jz3E+NePbOiS3bpxCzmp2xHBtvisAgo54Fsx DSkyGLi+1ksO597xqMoPSyPl33U/N873845MmgEj4/gkS1k7D8sizUjfKzSx8Y0D Ld7oVAwJWqFOryj1Q8a/SznLXJnT7Aedrrzqq69dWa0mq8Hm8MofXug= -----END CERTIFICATE-----Generated at Wed May 8 17:45:16 2024 by rpki-client on console-ams.rpki-client.org