$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer File: 357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.cer (raw, json) Hash identifier: NUvVCcuKr9+ZxWfeIQ7nIl2KY6xw9VuPQK/3JrDQ1RA= Subject key identifier: 35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 437664371CEF668755AD8521FF0569DCC8960648 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.mft caRepository: rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 16 Sep 2023 21:17:25 +0000 Certificate not after: Sat 14 Sep 2024 21:22:25 +0000 Subordinate resources: IP: 103.167.168.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:76:64:37:1c:ef:66:87:55:ad:85:21:ff:05:69:dc:c8:96:06:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 16 21:17:25 2023 GMT Not After : Sep 14 21:22:25 2024 GMT Subject: CN=357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:83:88:bd:a7:b6:a7:1c:47:a4:a6:99:75:e2: 3e:54:6d:3a:e8:12:95:b2:d3:03:a7:b4:67:44:ba: 06:68:88:9a:59:88:0b:f1:01:29:4c:2f:1a:a0:2d: 3e:cb:09:fc:bc:fd:f4:f8:12:b8:2a:c0:7b:8c:a2: bc:d1:d5:92:4a:03:ce:ea:42:49:c7:51:48:d1:3a: 33:05:e8:c9:e3:1b:3c:b3:73:c5:bb:e1:49:05:b5: 0b:65:dc:8a:7e:2c:66:02:f0:de:26:95:00:e8:31: ad:e0:aa:3f:4a:de:61:05:e4:15:a0:bc:03:4b:3b: 0b:e0:bf:f2:99:45:9e:8b:46:03:6c:81:5e:cd:9c: b5:83:80:0b:1e:84:7a:df:65:ae:8a:53:73:fc:f7: 9b:cd:28:1e:ca:15:0f:d6:c0:8d:ca:a9:bf:2f:08: 78:21:ab:3f:53:b3:9d:ec:92:2e:91:e0:3e:d2:5b: 2e:0e:73:a4:a0:9e:df:65:8d:2a:5e:96:25:32:a5: 15:c0:90:5a:33:b3:4a:33:98:a1:60:83:4a:18:fa: 13:8a:e0:d6:6c:10:4b:e4:e1:d3:c3:d3:af:db:88: 6d:27:c3:b6:80:8d:7d:81:c7:2a:13:d5:a7:c3:74: 06:b4:12:7d:22:53:3a:ac:35:6f:c4:78:67:9a:7a: be:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:7D:EA:C5:E6:C1:1B:3C:3E:15:2D:5A:24:F8:D8:31:5E:A4:3E:2B X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7d4b612f-f924-4ec2-b1f1-a1305d23d53a/0/357DEAC5E6C11B3C3E152D5A24F8D8315EA43E2B.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.168.0/23 Signature Algorithm: sha256WithRSAEncryption 7f:68:64:6a:f1:a3:5a:6b:3b:17:77:39:b4:e7:08:90:d0:68: 1f:f7:01:cd:ec:c3:02:e9:b2:94:f2:33:10:f6:bb:87:af:55: 89:34:a0:7d:42:68:7e:bd:e6:1a:ce:62:df:02:b5:29:8e:2f: e1:ce:1d:9a:37:94:69:20:83:ec:35:53:e4:e1:ba:cc:4c:15: 80:f8:ba:72:83:00:e1:b5:60:d5:6c:23:7a:47:95:ef:42:64: 09:5b:2b:ba:4f:8e:ca:43:a0:a4:2d:0e:16:bd:e3:52:20:de: ff:a8:bb:f6:18:13:66:b6:40:c0:6a:3c:fe:d9:a0:89:4c:38: 5d:79:1d:98:3b:1f:de:96:7d:e8:52:04:3e:fa:12:ab:24:a6: 49:05:38:47:70:aa:43:20:b3:d7:96:18:44:aa:a0:22:a3:91: 9d:3b:fd:3b:cd:2e:fa:5e:5f:f0:af:da:72:54:ea:20:58:04: 00:6c:8e:39:65:1e:12:76:a1:b5:95:e8:f5:df:c9:75:e6:2f: 5a:37:68:8f:b2:02:1d:c0:6c:64:85:df:ef:d7:9e:22:6b:68: c3:1b:03:bd:53:8a:9a:b6:df:cd:a0:f8:bd:38:84:2b:64:b2: bd:34:9b:fd:d8:b9:58:60:2e:17:05:58:2e:b8:62:fe:c7:cf: f4:f9:ab:3b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUQ3ZkNxzvZodVrYUh/wVp3MiWBkgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxNjIxMTcyNVoX DTI0MDkxNDIxMjIyNVowMzExMC8GA1UEAxMoMzU3REVBQzVFNkMxMUIzQzNFMTUy RDVBMjRGOEQ4MzE1RUE0M0UyQjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL2DiL2ntqccR6SmmXXiPlRtOugSlbLTA6e0Z0S6BmiImlmIC/EBKUwvGqAt PssJ/Lz99PgSuCrAe4yivNHVkkoDzupCScdRSNE6MwXoyeMbPLNzxbvhSQW1C2Xc in4sZgLw3iaVAOgxreCqP0reYQXkFaC8A0s7C+C/8plFnotGA2yBXs2ctYOACx6E et9lropTc/z3m80oHsoVD9bAjcqpvy8IeCGrP1OzneySLpHgPtJbLg5zpKCe32WN Kl6WJTKlFcCQWjOzSjOYoWCDShj6E4rg1mwQS+Th08PTr9uIbSfDtoCNfYHHKhPV p8N0BrQSfSJTOqw1b8R4Z5p6vm0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDV96sXmwRs8PhUtWiT42DFepD4rMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZDRiNjEyZi1mOTI0LTRlYzItYjFmMS1hMTMwNWQyM2Q1M2EvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdkNGI2MTJm LWY5MjQtNGVjMi1iMWYxLWExMzA1ZDIzZDUzYS8wLzM1N0RFQUM1RTZDMTFCM0Mz RTE1MkQ1QTI0RjhEODMxNUVBNDNFMkIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnp6gwDQYJKoZIhvcNAQELBQADggEBAH9oZGrxo1prOxd3ObTnCJDQaB/3Ac3s wwLpspTyMxD2u4evVYk0oH1CaH695hrOYt8CtSmOL+HOHZo3lGkgg+w1U+ThusxM FYD4unKDAOG1YNVsI3pHle9CZAlbK7pPjspDoKQtDha941Ig3v+ou/YYE2a2QMBq PP7ZoIlMOF15HZg7H96WfehSBD76EqskpkkFOEdwqkMgs9eWGESqoCKjkZ07/TvN LvpeX/Cv2nJU6iBYBABsjjllHhJ2obWV6PXfyXXmL1o3aI+yAh3AbGSF3+/XniJr aMMbA71Tipq2382g+L04hCtksr00m/3YuVhgLhcFWC64Yv7Hz/T5qzs= -----END CERTIFICATE-----Generated at Wed May 8 22:46:38 2024 by rpki-client on console-ams.rpki-client.org