$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.cer File: 515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.cer (raw, json) Hash identifier: 16GyRjVQtMpfD6B5itRBsZRYfhYqh272wK7Sv+T5SAY= Subject key identifier: 51:5A:CA:29:4C:72:13:5F:CE:F9:3D:C1:48:AB:B7:A0:B6:AF:73:F1 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0A4AFA45F8CB41153D77CF99B40550911AF8F47F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.mft caRepository: rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 17 Aug 2023 07:15:49 +0000 Certificate not after: Thu 15 Aug 2024 07:20:49 +0000 Subordinate resources: IP: 103.133.24.0/22 IP: 2404:4640::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:4a:fa:45:f8:cb:41:15:3d:77:cf:99:b4:05:50:91:1a:f8:f4:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 17 07:15:49 2023 GMT Not After : Aug 15 07:20:49 2024 GMT Subject: CN=515ACA294C72135FCEF93DC148ABB7A0B6AF73F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:6c:10:e0:e9:6a:c1:a6:e4:fe:b7:87:17:19: 35:b4:56:a1:94:b9:13:4b:4d:1f:7d:ea:4c:da:dd: 82:88:c8:7b:be:c8:1c:f6:9f:e0:da:88:bf:43:b5: b0:37:8a:1e:a3:34:a9:1e:c9:98:ed:15:94:11:39: 83:b2:09:f2:ac:c8:33:54:7d:d4:8e:5c:d1:ab:0f: 5b:73:66:1b:a7:ee:26:0c:88:d2:69:35:b0:fc:56: 20:ac:d7:99:73:27:9d:07:c1:d8:e1:7e:5c:e1:ad: 9a:78:8d:d5:4e:d1:36:d5:3e:29:4e:b9:ee:7f:b0: 89:a1:8f:92:b0:59:ce:6f:a2:85:76:cc:88:f5:7c: 9e:fd:17:08:7d:0c:d3:2f:c4:6f:63:35:1b:10:6c: 16:d5:1f:54:78:52:95:6d:b6:65:a2:8a:d1:06:2f: b1:a8:21:12:10:a4:8c:e5:35:4a:f1:44:5d:0b:e9: b2:31:36:ab:06:bb:07:ba:8f:85:3c:9e:fa:c9:ae: c4:44:38:06:3b:71:d3:f3:2a:12:62:92:c5:5d:9e: 4e:9c:69:2c:d6:47:4e:ea:86:93:ae:15:02:29:9a: 28:c9:27:c8:92:7b:b2:de:9c:1f:08:f7:5d:f4:ba: a5:be:df:19:a9:93:37:0c:1a:22:ce:31:eb:a1:f5: 7f:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 51:5A:CA:29:4C:72:13:5F:CE:F9:3D:C1:48:AB:B7:A0:B6:AF:73:F1 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4fdff390-1695-44ee-88e5-42ed12816b00/0/515ACA294C72135FCEF93DC148ABB7A0B6AF73F1.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.133.24.0/22 IPv6: 2404:4640::/32 Signature Algorithm: sha256WithRSAEncryption 71:43:71:9e:12:f3:de:0c:81:0f:48:0d:aa:38:61:61:c6:2f: bc:fc:0d:89:8f:3d:21:3e:a4:01:49:86:34:7f:7e:e7:76:f4: 4b:2a:37:3e:1a:85:ac:59:9f:16:cf:7e:05:82:98:ee:9a:f7: 67:4a:d0:5d:be:7b:54:cb:99:28:3e:b7:50:4b:d4:82:d9:d1: 6d:aa:35:81:1e:aa:44:af:7e:48:2d:63:54:9b:a9:cc:f9:d7: f9:ca:0c:e0:9d:0a:26:2d:68:32:49:43:11:21:21:da:74:3e: ba:c8:f7:37:d7:66:db:7d:ea:4f:b9:af:07:2e:4e:65:32:2e: 18:2e:3b:83:9b:13:b1:c7:94:6b:ca:fd:19:e9:e0:d6:28:b2: 01:a4:25:f2:0c:9d:a1:98:79:d8:30:27:19:a5:34:f7:b5:45: af:54:58:f6:fc:9e:d3:3a:d6:71:f1:14:18:25:d4:d4:ee:45: 88:c8:a3:e8:22:19:4e:ee:47:3f:84:5e:87:36:6f:7d:70:7c: 67:e6:0b:3a:82:0e:d4:d8:83:6f:dd:0a:68:76:ac:6c:a5:d3: 4e:a3:ff:17:8e:4c:fc:c6:5f:1f:e7:0a:ed:bb:3e:d9:bb:9b: f8:c6:0f:7c:21:87:1c:73:de:94:16:80:cc:77:f3:ea:ea:77: 09:7a:9c:62 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUCkr6RfjLQRU9d8+ZtAVQkRr49H8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgxNzA3MTU0OVoX DTI0MDgxNTA3MjA0OVowMzExMC8GA1UEAxMoNTE1QUNBMjk0QzcyMTM1RkNFRjkz REMxNDhBQkI3QTBCNkFGNzNGMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANZsEODpasGm5P63hxcZNbRWoZS5E0tNH33qTNrdgojIe77IHPaf4NqIv0O1 sDeKHqM0qR7JmO0VlBE5g7IJ8qzIM1R91I5c0asPW3NmG6fuJgyI0mk1sPxWIKzX mXMnnQfB2OF+XOGtmniN1U7RNtU+KU657n+wiaGPkrBZzm+ihXbMiPV8nv0XCH0M 0y/Eb2M1GxBsFtUfVHhSlW22ZaKK0QYvsaghEhCkjOU1SvFEXQvpsjE2qwa7B7qP hTye+smuxEQ4Bjtx0/MqEmKSxV2eTpxpLNZHTuqGk64VAimaKMknyJJ7st6cHwj3 XfS6pb7fGamTNwwaIs4x66H1fzsCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFFayilMchNfzvk9wUirt6C2r3PxMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZmRmZjM5MC0xNjk1LTQ0ZWUtODhlNS00MmVkMTI4MTZiMDAvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRmZGZmMzkw LTE2OTUtNDRlZS04OGU1LTQyZWQxMjgxNmIwMC8wLzUxNUFDQTI5NEM3MjEzNUZD RUY5M0RDMTQ4QUJCN0EwQjZBRjczRjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAJnhRgwDQQCAAIwBwMFACQERkAwDQYJKoZIhvcNAQELBQADggEBAHFDcZ4S894M gQ9IDao4YWHGL7z8DYmPPSE+pAFJhjR/fud29EsqNz4ahaxZnxbPfgWCmO6a92dK 0F2+e1TLmSg+t1BL1ILZ0W2qNYEeqkSvfkgtY1Sbqcz51/nKDOCdCiYtaDJJQxEh Idp0PrrI9zfXZtt96k+5rwcuTmUyLhguO4ObE7HHlGvK/Rnp4NYosgGkJfIMnaGY edgwJxmlNPe1Ra9UWPb8ntM61nHxFBgl1NTuRYjIo+giGU7uRz+EXoc2b31wfGfm CzqCDtTYg2/dCmh2rGyl006j/xeOTPzGXx/nCu27Ptm7m/jGD3whhxxz3pQWgMx3 8+rqdwl6nGI= -----END CERTIFICATE-----Generated at Wed May 8 10:06:48 2024 by rpki-client on console-ams.rpki-client.org