$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/542851974B72056B3D43792A5ED83E94DA8583CF.cer File: 542851974B72056B3D43792A5ED83E94DA8583CF.cer (raw, json) Hash identifier: p/Kihqzj/Irpz2Q6yvbSLuC1TSHIQE03OBlOlYc4B+s= Subject key identifier: 54:28:51:97:4B:72:05:6B:3D:43:79:2A:5E:D8:3E:94:DA:85:83:CF Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0D3651B662AE52CA176A156399D24B017BB41CC5 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.mft caRepository: rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 13 Oct 2023 01:50:24 +0000 Certificate not after: Fri 11 Oct 2024 01:55:24 +0000 Subordinate resources: IP: 103.177.60.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:36:51:b6:62:ae:52:ca:17:6a:15:63:99:d2:4b:01:7b:b4:1c:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 13 01:50:24 2023 GMT Not After : Oct 11 01:55:24 2024 GMT Subject: CN=542851974B72056B3D43792A5ED83E94DA8583CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1a:84:68:6d:43:10:44:04:80:81:bc:c4:bd: ce:58:73:a7:1d:c0:d5:6b:74:6a:c6:2d:f6:ac:84: 09:91:4e:9c:51:9a:ed:3b:f3:0e:b6:8d:c7:51:20: c6:f8:db:56:6e:06:36:5d:d1:a9:7f:b5:8e:7c:90: 4f:11:19:0c:79:44:6b:10:aa:5c:4e:96:2d:84:2b: 69:3f:8c:f6:ab:95:d8:86:69:55:07:91:14:92:67: 2a:47:8c:88:15:2e:9d:cf:26:7c:dc:88:7d:fa:db: fd:81:17:8b:a3:0f:29:a6:3e:91:55:cd:62:c0:97: 45:e9:fa:a9:aa:57:7d:01:06:e1:83:0a:c1:f3:d6: f1:40:d6:0b:84:1c:63:37:17:75:62:df:0f:0f:96: 83:e8:0e:e9:dd:93:3c:23:31:bb:4e:8f:a4:9d:f3: a9:78:9d:a9:a8:93:c7:bc:0c:c9:d5:6c:f4:9e:b6: 91:df:d0:4d:ce:ae:36:67:15:f5:e5:04:ca:92:13: 1e:98:3e:5e:28:7c:4c:a7:0e:10:11:bc:0b:0b:2d: 63:77:fc:20:4f:9d:f2:3f:30:4e:ba:08:00:94:2e: 12:65:3f:ed:87:96:1d:41:76:69:33:d6:e2:fe:36: a3:de:8e:d6:ea:e0:09:70:2c:9d:dd:66:bf:77:5f: 08:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 54:28:51:97:4B:72:05:6B:3D:43:79:2A:5E:D8:3E:94:DA:85:83:CF X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/f735e15f-d449-46d8-be0e-85e389bedc5e/0/542851974B72056B3D43792A5ED83E94DA8583CF.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.177.60.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:46:ea:40:e6:99:51:48:e1:cf:92:2e:77:61:b7:f5:93:50: 4b:22:27:59:ec:48:c1:af:0c:de:00:99:15:4a:8e:67:77:d1: 09:12:45:93:de:db:87:23:e4:d8:11:18:c2:1a:77:db:89:8b: ac:96:0c:3a:e3:57:85:85:72:1b:8e:c3:88:ad:bd:4e:6e:0c: 81:3f:c4:05:64:f0:d5:1d:40:6b:72:85:42:d9:5c:f2:a8:5d: 41:a9:ed:5d:76:0b:dd:2d:73:15:e8:24:38:93:c7:2f:c9:37: b3:03:3a:ff:92:98:49:c5:df:09:c8:29:6c:d3:d5:95:a4:b5: 35:4f:d8:42:5c:24:37:eb:fc:8e:6b:c7:ec:bf:92:04:2e:28: fe:6f:ce:ac:d6:af:f0:6e:cb:3c:32:bf:c8:38:33:4b:ea:66: 17:4e:03:12:be:ed:9f:39:a8:68:d5:2e:77:67:1c:a5:39:36: d8:9f:80:5c:54:b9:4b:95:33:eb:b2:27:07:41:f3:11:00:2a: e8:e4:01:81:68:08:04:df:68:62:1e:d1:6b:9c:89:09:7a:9b: 49:c2:cd:e2:0c:61:cb:95:70:b5:2b:c9:25:57:54:64:84:a0: 56:f5:7a:96:c6:bf:23:b3:b3:a7:33:0a:d6:76:c2:1e:8f:d1: 16:0e:bf:da -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDTZRtmKuUsoXahVjmdJLAXu0HMUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAxMzAxNTAyNFoX DTI0MTAxMTAxNTUyNFowMzExMC8GA1UEAxMoNTQyODUxOTc0QjcyMDU2QjNENDM3 OTJBNUVEODNFOTREQTg1ODNDRjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL8ahGhtQxBEBICBvMS9zlhzpx3A1Wt0asYt9qyECZFOnFGa7TvzDraNx1Eg xvjbVm4GNl3RqX+1jnyQTxEZDHlEaxCqXE6WLYQraT+M9quV2IZpVQeRFJJnKkeM iBUunc8mfNyIffrb/YEXi6MPKaY+kVXNYsCXRen6qapXfQEG4YMKwfPW8UDWC4Qc YzcXdWLfDw+Wg+gO6d2TPCMxu06PpJ3zqXidqaiTx7wMydVs9J62kd/QTc6uNmcV 9eUEypITHpg+Xih8TKcOEBG8CwstY3f8IE+d8j8wTroIAJQuEmU/7YeWHUF2aTPW 4v42o96O1urgCXAsnd1mv3dfCHMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFQoUZdLcgVrPUN5Kl7YPpTahYPPMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mNzM1ZTE1Zi1kNDQ5LTQ2ZDgtYmUwZS04NWUzODliZWRjNWUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Y3MzVlMTVm LWQ0NDktNDZkOC1iZTBlLTg1ZTM4OWJlZGM1ZS8wLzU0Mjg1MTk3NEI3MjA1NkIz RDQzNzkyQTVFRDgzRTk0REE4NTgzQ0YubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnsTwwDQYJKoZIhvcNAQELBQADggEBAD9G6kDmmVFI4c+SLndht/WTUEsiJ1ns SMGvDN4AmRVKjmd30QkSRZPe24cj5NgRGMIad9uJi6yWDDrjV4WFchuOw4itvU5u DIE/xAVk8NUdQGtyhULZXPKoXUGp7V12C90tcxXoJDiTxy/JN7MDOv+SmEnF3wnI KWzT1ZWktTVP2EJcJDfr/I5rx+y/kgQuKP5vzqzWr/Buyzwyv8g4M0vqZhdOAxK+ 7Z85qGjVLndnHKU5NtifgFxUuUuVM+uyJwdB8xEAKujkAYFoCATfaGIe0WuciQl6 m0nCzeIMYcuVcLUrySVXVGSEoFb1epbGvyOzs6czCtZ2wh6P0RYOv9o= -----END CERTIFICATE-----Generated at Wed May 8 17:45:18 2024 by rpki-client on console-ams.rpki-client.org