$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/52145183B5BE1A663FBC5C228102541AC61F9F86.cer File: 52145183B5BE1A663FBC5C228102541AC61F9F86.cer (raw, json) Hash identifier: Ibz0QMzmVeUYFg5gGPZ1bSGXRIcO/wq46nL/so6dndU= Subject key identifier: 52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0FB2FBB5F99FE2C327E795934F2EE5311E877C35 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.mft caRepository: rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 16 Sep 2023 18:57:39 +0000 Certificate not after: Sat 14 Sep 2024 19:02:39 +0000 Subordinate resources: IP: 103.157.78.0/23 IP: 2406:9ac0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:b2:fb:b5:f9:9f:e2:c3:27:e7:95:93:4f:2e:e5:31:1e:87:7c:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Sep 16 18:57:39 2023 GMT Not After : Sep 14 19:02:39 2024 GMT Subject: CN=52145183B5BE1A663FBC5C228102541AC61F9F86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ec:2f:da:af:a7:4c:d4:de:94:ca:95:ca:c2: b0:51:38:81:e8:fe:aa:b7:e3:98:07:a0:e0:1b:97: 84:ba:3e:4b:75:4e:a3:48:2d:ac:35:c6:23:7e:66: 4b:21:a4:4a:98:5c:45:e0:b0:f0:be:9a:04:51:d1: 82:b2:61:a7:54:c1:3f:92:8d:7c:74:d9:92:ac:21: 86:95:d9:cf:18:f7:6f:31:13:90:4d:22:71:c2:5d: c7:92:49:31:83:cf:b3:bf:c3:26:c1:07:f8:70:80: 87:c6:89:a5:8f:a4:ba:09:c9:5a:43:95:74:f7:ac: f5:e9:9f:ed:f1:21:f3:71:f8:86:dd:40:5e:09:71: 9e:f6:36:fc:d2:83:bf:83:c1:ec:2d:44:96:75:8c: ec:75:0b:d3:d0:ba:59:c5:9e:d1:82:09:d6:8f:42: bc:f2:75:e6:c8:fb:74:7f:a2:5f:68:32:85:d1:f3: 82:bb:6b:3e:81:5f:4d:9e:81:79:b1:84:a9:7b:66: ad:cd:8c:9c:7a:06:d9:b4:15:79:b3:63:1a:48:b7: c1:f1:84:c6:a4:fd:cb:24:0f:3d:cc:57:56:d6:22: 4e:b2:fd:86:d2:a4:a0:a3:1b:71:16:ba:9e:1e:41: da:b2:c6:4f:67:98:a2:96:76:03:e3:c5:66:98:a4: 3f:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 52:14:51:83:B5:BE:1A:66:3F:BC:5C:22:81:02:54:1A:C6:1F:9F:86 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/657e89e8-53aa-44f6-b6d8-5879078bf664/0/52145183B5BE1A663FBC5C228102541AC61F9F86.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.157.78.0/23 IPv6: 2406:9ac0::/32 Signature Algorithm: sha256WithRSAEncryption 1b:78:7a:6b:dc:ce:7b:2e:35:5f:25:78:be:ea:8f:eb:6d:22: 44:63:40:81:11:45:96:d2:d0:6d:00:41:83:87:19:55:15:38: 79:86:da:df:25:03:eb:30:7a:b6:63:b6:64:24:3f:74:7c:5a: 78:62:ba:62:3d:56:24:fb:84:94:da:10:b9:27:6d:0f:4f:09: 59:9c:27:3a:97:a5:9e:be:78:39:b4:03:c3:63:6c:d6:20:06: a1:a3:70:7f:25:7f:e1:9a:df:05:91:af:6d:37:11:52:c8:c3: 43:c4:81:53:0c:df:08:a9:a0:46:f7:c0:dd:d4:c7:a7:08:26: b6:0d:c5:24:0f:d4:24:2c:20:4b:ae:f2:fd:6b:27:b8:98:76: b8:cc:b4:38:21:01:bc:2d:cb:4d:59:66:af:5d:f2:8d:be:55: 5b:e6:72:db:66:ee:29:82:78:d6:ef:ef:67:f6:2e:18:1a:76: 60:a0:e3:d6:79:65:6f:de:e7:10:c3:82:ed:87:b1:28:c3:93: 9e:fa:f6:f2:2b:e1:76:d6:84:c4:23:b4:4e:f7:ad:d9:70:0c: cd:31:95:4b:21:ff:d3:0c:9d:98:89:78:5a:5f:a1:c9:5e:fd: 8b:04:fa:fc:61:7f:2f:7f:dc:20:b9:1e:1c:17:28:ca:fa:38: f5:86:32:28 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUD7L7tfmf4sMn55WTTy7lMR6HfDUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDkxNjE4NTczOVoX DTI0MDkxNDE5MDIzOVowMzExMC8GA1UEAxMoNTIxNDUxODNCNUJFMUE2NjNGQkM1 QzIyODEwMjU0MUFDNjFGOUY4NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKrsL9qvp0zU3pTKlcrCsFE4gej+qrfjmAeg4BuXhLo+S3VOo0gtrDXGI35m SyGkSphcReCw8L6aBFHRgrJhp1TBP5KNfHTZkqwhhpXZzxj3bzETkE0iccJdx5JJ MYPPs7/DJsEH+HCAh8aJpY+kugnJWkOVdPes9emf7fEh83H4ht1AXglxnvY2/NKD v4PB7C1ElnWM7HUL09C6WcWe0YIJ1o9CvPJ15sj7dH+iX2gyhdHzgrtrPoFfTZ6B ebGEqXtmrc2MnHoG2bQVebNjGki3wfGExqT9yyQPPcxXVtYiTrL9htKkoKMbcRa6 nh5B2rLGT2eYopZ2A+PFZpikP2UCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFIUUYO1vhpmP7xcIoECVBrGH5+GMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82NTdlODllOC01M2FhLTQ0ZjYtYjZkOC01ODc5MDc4YmY2NjQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY1N2U4OWU4 LTUzYWEtNDRmNi1iNmQ4LTU4NzkwNzhiZjY2NC8wLzUyMTQ1MTgzQjVCRTFBNjYz RkJDNUMyMjgxMDI1NDFBQzYxRjlGODYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnnU4wDQQCAAIwBwMFACQGmsAwDQYJKoZIhvcNAQELBQADggEBABt4emvcznsu NV8leL7qj+ttIkRjQIERRZbS0G0AQYOHGVUVOHmG2t8lA+swerZjtmQkP3R8Wnhi umI9ViT7hJTaELknbQ9PCVmcJzqXpZ6+eDm0A8NjbNYgBqGjcH8lf+Ga3wWRr203 EVLIw0PEgVMM3wipoEb3wN3Ux6cIJrYNxSQP1CQsIEuu8v1rJ7iYdrjMtDghAbwt y01ZZq9d8o2+VVvmcttm7imCeNbv72f2LhgadmCg49Z5ZW/e5xDDgu2HsSjDk576 9vIr4XbWhMQjtE73rdlwDM0xlUsh/9MMnZiJeFpfocle/YsE+vxhfy9/3CC5HhwX KMr6OPWGMig= -----END CERTIFICATE-----Generated at Wed May 8 18:12:08 2024 by rpki-client on console-fra.rpki-client.org