$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer File: 57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.cer (raw, json) Hash identifier: 84rxCqgTEimJ3Du6nXN9KlYs9dCBWqrTTWl1a8dSLok= Subject key identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 7578CCE3B0FB0CC7D2D3000487B23253FF24B140 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.mft caRepository: rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 09 Dec 2023 07:40:52 +0000 Certificate not after: Sat 07 Dec 2024 07:45:52 +0000 Subordinate resources: IP: 103.41.188.0/22 IP: 117.53.44.0/22 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:78:cc:e3:b0:fb:0c:c7:d2:d3:00:04:87:b2:32:53:ff:24:b1:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 9 07:40:52 2023 GMT Not After : Dec 7 07:45:52 2024 GMT Subject: CN=57D4B8269ADDA460E8F7925D0AA126ECD6F60E24 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:8f:a9:96:07:62:6a:a6:69:5f:d2:6a:4d:41: 1f:32:af:ad:0b:08:6f:36:d4:6a:8f:3a:f1:a3:99: 6c:84:10:71:07:35:c9:1a:93:f1:14:ba:3d:8d:7f: 97:d0:58:cb:64:1e:81:7e:01:2f:00:86:16:cf:2b: 9f:29:e4:d5:43:a4:bb:dd:a7:71:be:ef:84:b0:18: f7:88:69:de:27:2e:0f:fd:04:90:57:71:dc:31:1d: f0:72:92:e0:5c:06:d4:14:d8:24:b0:48:31:f8:92: bb:ec:1b:1f:90:9a:f8:6c:c9:90:4b:37:4f:42:a2: ea:d8:c8:39:83:4d:c2:45:2e:80:ee:75:b5:02:57: 3d:f5:20:f5:e5:07:a6:86:30:3e:72:ed:97:ca:8c: 92:23:d5:c9:c1:79:bb:0b:63:73:12:ee:92:8c:61: b3:37:23:5b:4c:3d:d5:95:d5:1b:8e:8b:35:29:e4: 16:5d:f5:05:61:1b:38:b4:e6:52:0b:4c:61:72:a8: 3f:cf:a0:7c:eb:01:dd:d3:28:dc:8a:ad:4f:9f:f6: b0:99:f6:a7:18:2a:2d:41:25:c7:80:3a:8c:60:a1: e9:e3:60:e2:40:e7:44:f5:c6:74:9a:b2:9a:17:5c: b8:28:ae:cf:92:33:a6:db:20:9d:ff:e4:ab:43:07: 14:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 57:D4:B8:26:9A:DD:A4:60:E8:F7:92:5D:0A:A1:26:EC:D6:F6:0E:24 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7f499c56-a246-4d18-be86-f461d8f559c8/0/57D4B8269ADDA460E8F7925D0AA126ECD6F60E24.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.41.188.0/22 117.53.44.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:7f:19:68:89:a2:0f:3a:e1:b5:a3:8c:55:84:c4:85:fc:6e: 8c:f9:49:51:f3:bb:ae:44:47:a8:dc:b6:31:a9:4c:81:c3:45: 03:fd:ed:89:b4:1e:b1:52:e2:19:ff:17:10:1a:0f:f0:1f:7d: 12:d0:9b:52:84:fd:68:4c:b9:25:ad:cd:f9:20:eb:af:d0:17: 54:b6:37:d2:f5:b4:c7:da:d9:dc:63:ca:5b:d3:02:2d:d0:97: e5:d9:1d:d2:44:09:7d:e3:e3:04:94:fd:8f:0e:3a:3f:d9:5b: 6f:c8:a9:ac:08:90:18:04:e1:b6:54:2a:5a:b0:9a:2c:46:f9: 15:3d:32:2b:a8:86:18:97:ee:a1:1f:6b:5b:64:b0:21:30:ff: a2:14:b0:ea:cd:f2:69:77:50:0f:9c:1f:35:a6:f2:03:eb:32: 5d:20:7a:7d:91:b9:7e:22:b1:b3:e5:61:0a:48:6d:e2:26:c7: 05:55:d5:40:af:34:4b:a2:71:fb:e6:cd:a1:87:46:9e:75:56: 34:c3:86:2f:09:aa:c6:9a:21:c6:4b:dc:3c:71:08:8b:a0:af: 72:c5:36:38:4e:02:ba:59:4a:29:2e:2c:6c:61:5d:63:da:94: 22:7a:15:9d:48:76:e5:69:b8:6d:3b:b4:aa:8b:33:0a:14:3d: 1d:d7:00:35 -----BEGIN CERTIFICATE----- MIIFyzCCBLOgAwIBAgIUdXjM47D7DMfS0wAEh7IyU/8ksUAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwOTA3NDA1MloX DTI0MTIwNzA3NDU1MlowMzExMC8GA1UEAxMoNTdENEI4MjY5QUREQTQ2MEU4Rjc5 MjVEMEFBMTI2RUNENkY2MEUyNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANKPqZYHYmqmaV/Sak1BHzKvrQsIbzbUao868aOZbIQQcQc1yRqT8RS6PY1/ l9BYy2QegX4BLwCGFs8rnynk1UOku92ncb7vhLAY94hp3icuD/0EkFdx3DEd8HKS 4FwG1BTYJLBIMfiSu+wbH5Ca+GzJkEs3T0Ki6tjIOYNNwkUugO51tQJXPfUg9eUH poYwPnLtl8qMkiPVycF5uwtjcxLukoxhszcjW0w91ZXVG46LNSnkFl31BWEbOLTm UgtMYXKoP8+gfOsB3dMo3IqtT5/2sJn2pxgqLUElx4A6jGCh6eNg4kDnRPXGdJqy mhdcuCiuz5Izptsgnf/kq0MHFCMCAwEAAaOCAr4wggK6MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFfUuCaa3aRg6PeSXQqhJuzW9g4kMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83ZjQ5OWM1Ni1hMjQ2LTRkMTgtYmU4Ni1mNDYxZDhmNTU5YzgvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdmNDk5YzU2 LWEyNDYtNGQxOC1iZTg2LWY0NjFkOGY1NTljOC8wLzU3RDRCODI2OUFEREE0NjBF OEY3OTI1RDBBQTEyNkVDRDZGNjBFMjQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwJQYIKwYBBQUHAQcBAf8EFjAUMBIEAgABMAwD BAJnKbwDBAJ1NSwwDQYJKoZIhvcNAQELBQADggEBAD9/GWiJog864bWjjFWExIX8 boz5SVHzu65ER6jctjGpTIHDRQP97Ym0HrFS4hn/FxAaD/AffRLQm1KE/WhMuSWt zfkg66/QF1S2N9L1tMfa2dxjylvTAi3Ql+XZHdJECX3j4wSU/Y8OOj/ZW2/IqawI kBgE4bZUKlqwmixG+RU9MiuohhiX7qEfa1tksCEw/6IUsOrN8ml3UA+cHzWm8gPr Ml0gen2RuX4isbPlYQpIbeImxwVV1UCvNEuicfvmzaGHRp51VjTDhi8JqsaaIcZL 3DxxCIugr3LFNjhOArpZSikuLGxhXWPalCJ6FZ1IduVpuG07tKqLMwoUPR3XADU= -----END CERTIFICATE-----Generated at Wed May 8 10:06:48 2024 by rpki-client on console-ams.rpki-client.org