$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/4EE959798755CD4BA407AEB6EBDD3100261EAA55.cer File: 4EE959798755CD4BA407AEB6EBDD3100261EAA55.cer (raw, json) Hash identifier: iS8lO/0QG4xsS8LGUv8hCJ8mSAVaRanY19R/nyPygx0= Subject key identifier: 4E:E9:59:79:87:55:CD:4B:A4:07:AE:B6:EB:DD:31:00:26:1E:AA:55 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1BA3B642314934D60742AFAB5CE71672C9E318C1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/4EE959798755CD4BA407AEB6EBDD3100261EAA55.mft caRepository: rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 29 Jul 2023 09:18:47 +0000 Certificate not after: Sat 27 Jul 2024 09:23:47 +0000 Subordinate resources: IP: 103.168.250.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:a3:b6:42:31:49:34:d6:07:42:af:ab:5c:e7:16:72:c9:e3:18:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 29 09:18:47 2023 GMT Not After : Jul 27 09:23:47 2024 GMT Subject: CN=4EE959798755CD4BA407AEB6EBDD3100261EAA55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:fb:12:53:b1:c7:10:c7:2f:17:c8:aa:f5:58: b2:c9:a4:63:5f:12:f1:da:ad:55:11:8c:41:fb:9e: 73:e1:68:dc:c8:4c:a2:ec:a1:b4:30:b4:90:34:94: ed:4c:64:3e:e3:e3:d0:c1:bb:1f:59:b7:3c:5c:bd: 59:9d:21:e6:02:2f:81:44:6f:2c:21:5b:b8:23:3d: 27:e7:1b:53:20:8a:d2:5c:cf:79:9d:2c:c5:8f:96: dd:be:e5:c9:32:5a:7c:79:1f:fc:8e:59:c6:b0:d1: 52:3c:31:0b:66:e5:14:8a:63:aa:42:fa:b1:c5:8e: 23:ac:c7:c1:f5:b8:f6:e1:14:dd:4c:ab:10:9b:88: 06:95:4b:75:c2:48:b6:a4:be:c1:48:9a:d1:e9:c5: 16:c3:c3:23:98:86:3b:df:cf:b6:c5:b9:ac:45:1b: 0e:cb:ba:af:a4:9b:2b:ac:25:27:92:40:1e:c3:f2: 52:39:12:21:3b:99:97:d5:f3:5c:89:3a:53:7e:80: 33:1b:b8:12:37:07:ce:ea:01:81:70:36:be:54:bf: bf:9d:2b:80:d9:f5:95:d6:3a:30:3f:bf:ae:a0:be: 9b:a7:c6:51:67:c6:2c:df:b1:dc:c3:25:38:9f:52: 51:3e:47:ab:ec:ac:d6:80:df:62:ce:4c:78:0e:48: 5e:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 4E:E9:59:79:87:55:CD:4B:A4:07:AE:B6:EB:DD:31:00:26:1E:AA:55 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/038d580b-452e-42d7-b041-901dc33d6857/0/4EE959798755CD4BA407AEB6EBDD3100261EAA55.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.168.250.0/23 Signature Algorithm: sha256WithRSAEncryption 20:27:4c:0f:0d:d2:22:d8:a6:04:83:0f:e0:c6:62:e1:a9:9e: c1:e9:9c:72:5c:28:32:d4:ae:e7:6b:42:6b:8f:80:fe:82:38: 55:68:dd:ec:54:03:ce:f1:bc:fa:ee:70:e0:53:ac:a6:4a:d7: 74:f9:df:75:e3:53:f9:a7:80:ec:f8:25:70:af:1c:87:d5:53: 52:39:24:67:b7:d8:d9:66:73:33:12:ce:3e:43:bd:e4:0e:30: 52:fd:01:ce:83:ed:37:73:eb:05:5c:00:2e:3e:6e:ac:25:d7: bf:3a:8b:ff:74:11:bc:2e:48:61:d0:27:07:5f:2f:de:ef:90: f2:82:9a:ff:bb:bd:b0:df:86:f4:3d:61:7f:78:8a:e2:2f:fc: a7:8f:15:f2:3b:37:bd:65:2a:c6:0d:c4:ab:d4:80:14:1f:3f: 80:13:a6:b0:f2:28:c9:83:c5:f1:3e:02:d5:df:de:b6:f0:bd: 39:cc:81:9e:9d:cc:12:0a:85:a6:01:f1:3d:a1:75:e3:02:75: dc:06:ea:52:55:f2:2c:70:f7:c3:22:d8:6e:75:11:5e:d3:a2: 0b:30:30:cb:28:c2:0f:db:0e:09:13:62:54:6b:85:a6:7d:09: 6b:8e:cf:39:23:5b:51:55:48:8f:79:5c:52:10:96:0c:bd:ce: 5a:69:57:c2 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUG6O2QjFJNNYHQq+rXOcWcsnjGMEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcyOTA5MTg0N1oX DTI0MDcyNzA5MjM0N1owMzExMC8GA1UEAxMoNEVFOTU5Nzk4NzU1Q0Q0QkE0MDdB RUI2RUJERDMxMDAyNjFFQUE1NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMv7ElOxxxDHLxfIqvVYssmkY18S8dqtVRGMQfuec+Fo3MhMouyhtDC0kDSU 7UxkPuPj0MG7H1m3PFy9WZ0h5gIvgURvLCFbuCM9J+cbUyCK0lzPeZ0sxY+W3b7l yTJafHkf/I5ZxrDRUjwxC2blFIpjqkL6scWOI6zHwfW49uEU3UyrEJuIBpVLdcJI tqS+wUia0enFFsPDI5iGO9/PtsW5rEUbDsu6r6SbK6wlJ5JAHsPyUjkSITuZl9Xz XIk6U36AMxu4EjcHzuoBgXA2vlS/v50rgNn1ldY6MD+/rqC+m6fGUWfGLN+x3MMl OJ9SUT5Hq+ys1oDfYs5MeA5IXtUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFE7pWXmHVc1LpAeutuvdMQAmHqpVMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wMzhkNTgwYi00NTJlLTQyZDctYjA0MS05MDFkYzMzZDY4NTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzAzOGQ1ODBi LTQ1MmUtNDJkNy1iMDQxLTkwMWRjMzNkNjg1Ny8wLzRFRTk1OTc5ODc1NUNENEJB NDA3QUVCNkVCREQzMTAwMjYxRUFBNTUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqPowDQYJKoZIhvcNAQELBQADggEBACAnTA8N0iLYpgSDD+DGYuGpnsHpnHJc KDLUrudrQmuPgP6COFVo3exUA87xvPrucOBTrKZK13T533XjU/mngOz4JXCvHIfV U1I5JGe32NlmczMSzj5DveQOMFL9Ac6D7Tdz6wVcAC4+bqwl1786i/90EbwuSGHQ JwdfL97vkPKCmv+7vbDfhvQ9YX94iuIv/KePFfI7N71lKsYNxKvUgBQfP4ATprDy KMmDxfE+AtXf3rbwvTnMgZ6dzBIKhaYB8T2hdeMCddwG6lJV8ixw98Mi2G51EV7T ogswMMsowg/bDgkTYlRrhaZ9CWuOzzkjW1FVSI95XFIQlgy9zlppV8I= -----END CERTIFICATE-----Generated at Wed May 8 09:50:29 2024 by rpki-client on console-fra.rpki-client.org