$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer File: 575C39865D3AE23DCCC322AD08D1424FD40FB8C2.cer (raw, json) Hash identifier: /XAXImqRS5tENKA5MLhlct0aEhwTSwjqSAVzuXXpCow= Subject key identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 75B6D8E5DBD7CFB8ACAE174F6CC3880C054F5545 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft caRepository: rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 02 Nov 2023 02:54:27 +0000 Certificate not after: Thu 31 Oct 2024 02:59:27 +0000 Subordinate resources: IP: 103.250.129.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:b6:d8:e5:db:d7:cf:b8:ac:ae:17:4f:6c:c3:88:0c:05:4f:55:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 2 02:54:27 2023 GMT Not After : Oct 31 02:59:27 2024 GMT Subject: CN=575C39865D3AE23DCCC322AD08D1424FD40FB8C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:97:76:c5:82:14:dc:5a:1b:af:d1:2c:2d:eb: 4f:06:c2:a0:d9:9c:ee:75:3c:c4:2f:9f:84:d0:3a: ee:03:36:a7:17:b0:69:43:52:57:60:04:04:e4:1c: 54:e5:c3:2f:b7:ef:ca:91:d5:4a:c7:bc:3e:3f:12: d4:89:0a:24:51:52:6e:34:ee:ca:2f:65:3c:7d:b2: 1c:aa:07:f1:44:9c:c7:68:2d:5b:c8:cb:8f:14:55: 88:9c:a0:92:88:23:f1:db:2d:2d:4f:62:20:ed:c1: 1e:d8:b9:5b:a8:0a:aa:85:ea:49:8d:84:e1:ab:95: 6e:c0:5a:fb:65:a0:57:da:63:64:8a:3f:b1:44:35: 70:b7:f0:87:74:ff:19:e0:94:b6:ca:e0:01:15:90: fd:81:5b:39:69:29:13:8e:a1:bb:dc:bd:20:6c:af: 74:1f:11:c1:34:de:7d:d6:c2:58:52:f6:60:19:47: 1f:bb:f7:5a:5c:b1:93:89:12:46:ad:53:f5:7e:92: 92:e2:d9:10:77:60:fb:eb:7e:1a:c9:8a:06:59:3d: 70:36:3e:f5:73:cb:a4:83:0e:27:2c:23:b8:b7:b8: 73:87:91:73:ca:75:30:d7:78:df:1c:eb:7a:2f:33: f9:55:56:77:6b:38:93:fb:72:0a:f0:3c:b2:68:75: 51:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 57:5C:39:86:5D:3A:E2:3D:CC:C3:22:AD:08:D1:42:4F:D4:0F:B8:C2 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/811d9abc-4987-4dbc-976d-3f32b291715d/0/575C39865D3AE23DCCC322AD08D1424FD40FB8C2.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption 88:3c:ce:b3:48:cb:b4:4d:66:9c:c3:02:7b:e3:57:05:58:fc: f8:f2:45:0b:ac:33:d4:73:b3:89:99:3b:8e:b9:28:c1:76:0c: de:89:7b:28:ac:19:f3:da:be:b6:f4:b2:98:36:10:90:b9:d7: 59:d5:0d:e3:f4:a9:79:82:70:c2:05:77:5b:e5:1f:cb:68:f7: 55:7e:5f:5b:f4:f2:50:a6:f8:f8:89:4c:d7:6c:f3:94:d6:b9: a1:f7:c0:a1:83:7a:f4:0f:be:66:c9:1f:0c:18:4e:05:ce:96: fc:5e:76:25:e5:16:6a:2d:e6:ec:30:2c:90:d0:13:ba:2c:98: f4:55:e3:d7:b5:da:08:be:ec:69:e2:f9:69:c6:d5:30:a1:f8: 17:09:63:cb:94:51:1f:9b:2c:82:9b:22:70:22:c9:22:85:cf: d4:11:e7:4a:53:05:1a:2c:66:7b:c2:19:75:6a:26:3a:06:35: 55:f7:7e:55:1a:d0:d2:88:88:21:c8:16:68:fe:34:8a:6a:3a: 42:75:18:f2:e3:95:65:0b:74:c7:ba:9f:aa:86:fd:0c:cc:d7: 7f:42:b3:3b:88:bf:4a:8f:2d:e5:0a:0c:9c:32:7a:e7:81:e2: 08:29:41:9b:64:72:e8:c9:33:ab:1a:b7:c1:9f:03:fc:ff:48: f5:df:16:dd -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUdbbY5dvXz7isrhdPbMOIDAVPVUUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEwMjAyNTQyN1oX DTI0MTAzMTAyNTkyN1owMzExMC8GA1UEAxMoNTc1QzM5ODY1RDNBRTIzRENDQzMy MkFEMDhEMTQyNEZENDBGQjhDMjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMKXdsWCFNxaG6/RLC3rTwbCoNmc7nU8xC+fhNA67gM2pxewaUNSV2AEBOQc VOXDL7fvypHVSse8Pj8S1IkKJFFSbjTuyi9lPH2yHKoH8UScx2gtW8jLjxRViJyg kogj8dstLU9iIO3BHti5W6gKqoXqSY2E4auVbsBa+2WgV9pjZIo/sUQ1cLfwh3T/ GeCUtsrgARWQ/YFbOWkpE46hu9y9IGyvdB8RwTTefdbCWFL2YBlHH7v3Wlyxk4kS Rq1T9X6SkuLZEHdg++t+GsmKBlk9cDY+9XPLpIMOJywjuLe4c4eRc8p1MNd43xzr ei8z+VVWd2s4k/tyCvA8smh1UQsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFdcOYZdOuI9zMMirQjRQk/UD7jCMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84MTFkOWFiYy00OTg3LTRkYmMtOTc2ZC0zZjMyYjI5MTcxNWQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzgxMWQ5YWJj LTQ5ODctNGRiYy05NzZkLTNmMzJiMjkxNzE1ZC8wLzU3NUMzOTg2NUQzQUUyM0RD Q0MzMjJBRDA4RDE0MjRGRDQwRkI4QzIubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn+oEwDQYJKoZIhvcNAQELBQADggEBAIg8zrNIy7RNZpzDAnvjVwVY/PjyRQus M9Rzs4mZO465KMF2DN6JeyisGfPavrb0spg2EJC511nVDeP0qXmCcMIFd1vlH8to 91V+X1v08lCm+PiJTNds85TWuaH3wKGDevQPvmbJHwwYTgXOlvxediXlFmot5uww LJDQE7osmPRV49e12gi+7Gni+WnG1TCh+BcJY8uUUR+bLIKbInAiySKFz9QR50pT BRosZnvCGXVqJjoGNVX3flUa0NKIiCHIFmj+NIpqOkJ1GPLjlWULdMe6n6qG/QzM 139CszuIv0qPLeUKDJwyeueB4ggpQZtkcujJM6sat8GfA/z/SPXfFt0= -----END CERTIFICATE-----Generated at Wed May 8 21:02:14 2024 by rpki-client on console-fra.rpki-client.org