$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer File: 5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.cer (raw, json) Hash identifier: OBwfYHBGRLSZkFIsMVRHS2UsoaGuXiwRZiXBHrJsRFY= Subject key identifier: 57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 550F7CD368D694000AA05CE99EF1CA84A1D26CB7 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.mft caRepository: rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 25 Aug 2023 10:22:49 +0000 Certificate not after: Fri 23 Aug 2024 10:27:49 +0000 Subordinate resources: IP: 103.102.250.0/24 IP: 2001:df2:f100::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:0f:7c:d3:68:d6:94:00:0a:a0:5c:e9:9e:f1:ca:84:a1:d2:6c:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Aug 25 10:22:49 2023 GMT Not After : Aug 23 10:27:49 2024 GMT Subject: CN=5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:03:ae:84:f4:27:5b:76:5b:8a:0f:c8:0d:e8: 7f:60:07:8c:fd:a8:81:9b:54:66:c1:ae:25:57:5f: ef:d9:2b:3f:38:a0:a1:2f:b1:16:e8:18:f8:e6:d2: 02:65:7f:82:34:1c:0d:11:80:55:2c:f5:1c:59:1b: cb:4d:2c:7b:63:68:17:44:8b:19:6f:62:69:1e:84: 7c:27:f9:3b:6f:cb:b9:3d:b8:8a:8b:48:2b:7f:38: a0:a8:e1:4f:e9:33:06:ac:58:23:0f:98:fa:58:47: 4c:9f:af:64:74:cf:2d:5f:f8:a5:5a:48:36:53:2a: 4d:42:48:da:f1:77:a6:c2:f8:e1:52:7d:e5:89:01: bd:27:ca:a3:f6:99:a3:9a:ec:ca:86:4c:1b:62:4c: 37:60:61:66:e3:e5:82:c7:e4:0c:e7:58:72:3c:41: 64:d5:25:d0:7c:ca:47:b3:f2:b1:e7:e4:44:f0:20: 42:4c:33:35:6c:c9:2b:44:f8:90:60:74:ca:46:13: 0a:34:b2:c0:20:ce:c4:2d:88:80:df:55:aa:b5:89: 56:7c:94:20:cc:02:b3:c4:0f:26:81:dd:8a:7a:93: 35:47:27:e3:38:fb:10:31:ff:bf:53:1e:49:71:4e: e4:4e:dd:c2:56:dc:08:fe:34:b3:f8:d2:63:40:fb: da:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 57:87:AD:66:59:EA:8A:5E:40:18:87:6F:5F:9D:BD:9A:AA:F9:CA:1D X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/a5b8e774-1683-456d-bbc0-343225f17f4c/0/5787AD6659EA8A5E4018876F5F9DBD9AAAF9CA1D.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.102.250.0/24 IPv6: 2001:df2:f100::/48 Signature Algorithm: sha256WithRSAEncryption 3c:66:93:1b:5e:9b:f9:85:84:33:8d:ff:2f:6d:98:1b:c5:49: 7f:c8:19:cd:c4:6b:37:d9:2c:76:00:e2:8f:bd:79:d1:ab:cb: d8:15:f4:7c:b7:69:fe:5f:14:44:7b:e4:ac:6a:3f:68:e3:1c: dc:bd:f3:70:67:68:29:8c:c4:37:df:94:b7:af:57:ec:63:d5: ca:ac:46:a8:1f:93:06:41:89:bd:82:9b:82:23:0a:c8:b3:f4: ed:03:3f:4c:bd:00:a6:c5:f3:be:a5:a3:7a:a9:f1:3c:50:16: 9a:3e:7a:78:cf:41:ff:e6:6a:3f:6c:a8:8d:48:a1:fe:51:c4: 75:93:ee:14:ff:14:11:bd:6c:de:48:00:45:78:6f:ec:8b:43: ea:f5:d3:29:e0:67:7a:42:b2:89:28:4d:bb:6d:f0:74:36:8a: 14:89:64:98:af:c9:6b:b5:70:e8:a2:e6:77:cf:e3:5b:21:cf: f4:50:9f:ba:f4:29:42:5d:84:ed:33:9a:c5:16:5e:6a:cc:12: b1:7c:70:e1:4b:51:fe:d0:1e:52:15:7e:8d:90:65:9d:59:f8: 7c:e9:e4:4d:1a:9d:d6:3f:93:d4:11:13:f7:1e:40:cc:58:de: c1:24:7e:36:a9:05:25:b0:15:7b:1d:b3:74:93:51:8b:c5:fb: 8d:ef:1a:5b -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUVQ9802jWlAAKoFzpnvHKhKHSbLcwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDgyNTEwMjI0OVoX DTI0MDgyMzEwMjc0OVowMzExMC8GA1UEAxMoNTc4N0FENjY1OUVBOEE1RTQwMTg4 NzZGNUY5REJEOUFBQUY5Q0ExRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOADroT0J1t2W4oPyA3of2AHjP2ogZtUZsGuJVdf79krPzigoS+xFugY+ObS AmV/gjQcDRGAVSz1HFkby00se2NoF0SLGW9iaR6EfCf5O2/LuT24iotIK384oKjh T+kzBqxYIw+Y+lhHTJ+vZHTPLV/4pVpINlMqTUJI2vF3psL44VJ95YkBvSfKo/aZ o5rsyoZMG2JMN2BhZuPlgsfkDOdYcjxBZNUl0HzKR7PysefkRPAgQkwzNWzJK0T4 kGB0ykYTCjSywCDOxC2IgN9VqrWJVnyUIMwCs8QPJoHdinqTNUcn4zj7EDH/v1Me SXFO5E7dwlbcCP40s/jSY0D72ksCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFeHrWZZ6opeQBiHb1+dvZqq+codMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9hNWI4ZTc3NC0xNjgzLTQ1NmQtYmJjMC0zNDMyMjVmMTdmNGMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2E1YjhlNzc0 LTE2ODMtNDU2ZC1iYmMwLTM0MzIyNWYxN2Y0Yy8wLzU3ODdBRDY2NTlFQThBNUU0 MDE4ODc2RjVGOURCRDlBQUFGOUNBMUQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BABnZvowDwQCAAIwCQMHACABDfLxADANBgkqhkiG9w0BAQsFAAOCAQEAPGaTG16b +YWEM43/L22YG8VJf8gZzcRrN9ksdgDij7150avL2BX0fLdp/l8URHvkrGo/aOMc 3L3zcGdoKYzEN9+Ut69X7GPVyqxGqB+TBkGJvYKbgiMKyLP07QM/TL0ApsXzvqWj eqnxPFAWmj56eM9B/+ZqP2yojUih/lHEdZPuFP8UEb1s3kgARXhv7ItD6vXTKeBn ekKyiShNu23wdDaKFIlkmK/Ja7Vw6KLmd8/jWyHP9FCfuvQpQl2E7TOaxRZeaswS sXxw4UtR/tAeUhV+jZBlnVn4fOnkTRqd1j+T1BET9x5AzFjewSR+NqkFJbAVex2z dJNRi8X7je8aWw== -----END CERTIFICATE-----Generated at Wed May 8 21:02:14 2024 by rpki-client on console-fra.rpki-client.org