$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/35C14EEB27CE42DEB1F331CF080FE5F918D2364E.cer File: 35C14EEB27CE42DEB1F331CF080FE5F918D2364E.cer (raw, json) Hash identifier: KVSZCTo5M9cKkAkpzkammfGH0z+Ha5Iog/c57W5vSC4= Subject key identifier: 35:C1:4E:EB:27:CE:42:DE:B1:F3:31:CF:08:0F:E5:F9:18:D2:36:4E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1A8D190A079A9100CC2071FD2B0409F23251220D Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/36cc4734-beb6-4e33-9b1c-46dcd16425a1/0/35C14EEB27CE42DEB1F331CF080FE5F918D2364E.mft caRepository: rsync://repo-rpki.idnic.net/repo/36cc4734-beb6-4e33-9b1c-46dcd16425a1/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 14 Dec 2023 11:26:53 +0000 Certificate not after: Thu 12 Dec 2024 11:31:53 +0000 Subordinate resources: IP: 103.181.77.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:8d:19:0a:07:9a:91:00:cc:20:71:fd:2b:04:09:f2:32:51:22:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 14 11:26:53 2023 GMT Not After : Dec 12 11:31:53 2024 GMT Subject: CN=35C14EEB27CE42DEB1F331CF080FE5F918D2364E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:97:01:6b:a4:c2:d8:de:1d:77:91:b1:42:55: 11:d1:a4:46:32:8a:9c:7b:7f:d2:92:9c:a0:a3:c3: 6b:8b:86:0e:66:79:53:50:ef:26:14:59:f1:5a:78: 69:bf:36:00:6c:91:d9:51:f0:b6:1f:27:18:06:81: d3:6f:ca:62:bc:2c:61:59:df:5e:af:94:a6:f0:29: 76:29:23:0b:2c:43:59:e9:03:60:3e:2e:1c:6d:c5: a8:6f:52:1f:1b:be:7a:1a:6e:49:05:bf:10:fe:1d: 0e:c1:51:b7:af:12:ab:d0:96:4f:73:af:f4:e8:2e: 68:4f:4f:57:e0:c3:f7:be:dc:d0:7b:29:80:7d:95: d4:ab:25:9b:ef:24:27:4b:c7:c5:67:0f:fb:6c:79: e1:4b:c2:5f:43:0f:7d:af:ff:4d:7c:6a:40:8c:dc: d3:4d:74:3c:21:72:2f:3b:b0:42:bc:11:7d:44:05: 37:4c:fe:d3:75:a5:86:ec:e1:9a:96:11:58:59:f7: 94:a3:ad:38:d3:c3:b7:0e:80:9a:31:8b:68:ea:f2: 1b:6f:0c:ef:44:49:92:53:f4:df:0a:50:f3:7e:2c: b8:31:a5:b4:1c:c8:a1:03:38:7c:39:a6:ab:4e:2c: 83:d4:63:4d:aa:9c:98:9b:9b:f8:a7:92:b6:f8:6e: 9c:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 35:C1:4E:EB:27:CE:42:DE:B1:F3:31:CF:08:0F:E5:F9:18:D2:36:4E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/36cc4734-beb6-4e33-9b1c-46dcd16425a1/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/36cc4734-beb6-4e33-9b1c-46dcd16425a1/0/35C14EEB27CE42DEB1F331CF080FE5F918D2364E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.181.77.0/24 Signature Algorithm: sha256WithRSAEncryption 35:86:d4:7d:5c:d5:40:c7:f3:c9:62:cb:41:9d:6e:3e:66:9b: 4a:e1:f1:31:cc:d3:b5:8d:79:a7:d1:c5:27:8e:02:3f:3a:16: fd:54:49:4a:ba:98:29:84:3f:77:ea:52:d5:12:b7:1f:d0:05: 19:d1:b2:ff:50:0d:60:ae:bd:a4:9c:18:99:39:74:45:4f:fe: 7c:9e:46:ec:3a:52:57:43:b5:ef:72:d0:47:6f:d3:59:a5:75: bc:10:09:4d:cf:4b:ad:9c:65:4a:0c:36:2e:28:49:05:ad:fe: 77:b1:7a:ae:c0:63:12:47:16:46:b7:77:8e:05:12:33:6c:59: 38:ea:eb:b3:ff:90:b9:59:b0:9e:b0:5d:72:fd:d1:b6:cc:fa: 63:48:f0:22:f1:60:9b:46:3e:dd:f1:f9:cb:ca:46:ed:da:91: 3d:36:00:f3:98:63:00:a5:23:93:1d:47:13:ae:ab:94:a7:cd: b3:a3:4e:41:80:ef:e7:04:f5:fc:7c:fb:22:d7:8a:73:95:b5: a9:ef:57:51:52:e4:6b:39:d0:a4:53:86:36:b5:52:9f:66:6e: 8b:f1:f1:54:5a:81:9f:2c:de:89:5d:d2:43:b7:4f:c4:17:f9: 1e:5a:65:42:64:d8:1a:aa:43:1b:96:a5:09:27:7f:67:81:b4: 06:29:6e:10 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUGo0ZCgeakQDMIHH9KwQJ8jJRIg0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIxNDExMjY1M1oX DTI0MTIxMjExMzE1M1owMzExMC8GA1UEAxMoMzVDMTRFRUIyN0NFNDJERUIxRjMz MUNGMDgwRkU1RjkxOEQyMzY0RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANWXAWukwtjeHXeRsUJVEdGkRjKKnHt/0pKcoKPDa4uGDmZ5U1DvJhRZ8Vp4 ab82AGyR2VHwth8nGAaB02/KYrwsYVnfXq+UpvApdikjCyxDWekDYD4uHG3FqG9S Hxu+ehpuSQW/EP4dDsFRt68Sq9CWT3Ov9OguaE9PV+DD977c0HspgH2V1Kslm+8k J0vHxWcP+2x54UvCX0MPfa//TXxqQIzc0010PCFyLzuwQrwRfUQFN0z+03Wlhuzh mpYRWFn3lKOtONPDtw6AmjGLaOryG28M70RJklP03wpQ834suDGltBzIoQM4fDmm q04sg9RjTaqcmJub+KeStvhunEsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFDXBTusnzkLesfMxzwgP5fkY0jZOMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zNmNjNDczNC1iZWI2LTRlMzMtOWIxYy00NmRjZDE2NDI1YTEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzM2Y2M0NzM0 LWJlYjYtNGUzMy05YjFjLTQ2ZGNkMTY0MjVhMS8wLzM1QzE0RUVCMjdDRTQyREVC MUYzMzFDRjA4MEZFNUY5MThEMjM2NEUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABntU0wDQYJKoZIhvcNAQELBQADggEBADWG1H1c1UDH88liy0Gdbj5mm0rh8THM 07WNeafRxSeOAj86Fv1USUq6mCmEP3fqUtUStx/QBRnRsv9QDWCuvaScGJk5dEVP /nyeRuw6UldDte9y0Edv01mldbwQCU3PS62cZUoMNi4oSQWt/nexeq7AYxJHFka3 d44FEjNsWTjq67P/kLlZsJ6wXXL90bbM+mNI8CLxYJtGPt3x+cvKRu3akT02APOY YwClI5MdRxOuq5SnzbOjTkGA7+cE9fx8+yLXinOVtanvV1FS5Gs50KRThja1Up9m bovx8VRagZ8s3old0kO3T8QX+R5aZUJk2BqqQxuWpQknf2eBtAYpbhA= -----END CERTIFICATE-----Generated at Wed May 8 17:45:17 2024 by rpki-client on console-ams.rpki-client.org