$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer File: 58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.cer (raw, json) Hash identifier: 5RyVLTh9nDElaudPxjnuw5BE96uOhx9u7Iy1nbcseWU= Subject key identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 65DB4FDBAA1069CA2EBE6477CCD9D707604F6D1C Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft caRepository: rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 10 Jul 2023 06:09:48 +0000 Certificate not after: Mon 08 Jul 2024 06:14:48 +0000 Subordinate resources: IP: 103.184.20.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:db:4f:db:aa:10:69:ca:2e:be:64:77:cc:d9:d7:07:60:4f:6d:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 10 06:09:48 2023 GMT Not After : Jul 8 06:14:48 2024 GMT Subject: CN=58A706EA7468DF0D14CA1817C7CC5DBD5A69C596 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:da:08:7c:08:e3:a7:f2:d2:83:49:d5:ca:0a: 5e:bf:36:40:95:a0:94:9c:58:a0:1e:64:00:a4:35: 39:01:37:48:53:c6:6a:cb:ca:9f:4e:c4:d2:13:ad: c4:fc:46:2b:ad:c5:06:64:a7:d6:a7:ab:8b:f3:7c: 7f:0c:b2:31:2c:75:7b:9f:fc:20:58:b6:89:65:13: 20:bd:ec:f3:c6:e5:50:f0:82:b5:82:db:08:de:c2: 34:1e:4b:b0:c9:04:08:55:41:6d:86:03:cf:a3:af: ef:c9:cd:76:68:0f:f4:7a:45:b4:70:07:14:36:a9: 20:76:cf:08:03:e3:17:ab:e6:bc:80:2e:ef:30:30: 48:30:16:9a:20:89:ed:ae:7c:41:60:65:a3:d7:0b: c1:73:31:b0:cf:25:cf:d8:13:14:36:ee:25:f0:ee: c5:96:d2:9f:dc:99:2c:74:c5:8e:65:d9:4e:a1:37: 3b:d9:a0:c0:db:f4:e0:19:f6:cf:07:cd:d3:f3:28: 78:b6:83:d4:0d:27:57:59:19:5e:87:46:87:21:21: b8:75:00:78:bd:b7:02:0f:cf:dd:25:21:a1:bb:de: ad:c6:1b:d6:0a:72:b2:74:ce:18:d4:eb:47:9d:06: 43:8e:47:8e:dc:a8:0c:80:e8:63:d9:8b:fc:91:08: 74:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 58:A7:06:EA:74:68:DF:0D:14:CA:18:17:C7:CC:5D:BD:5A:69:C5:96 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/32bfab09-c1e9-44d8-819e-fdf6549c6b3f/0/58A706EA7468DF0D14CA1817C7CC5DBD5A69C596.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.184.20.0/23 Signature Algorithm: sha256WithRSAEncryption 5c:f4:20:e9:b4:6d:ef:cc:94:46:05:a1:7f:4b:bb:15:75:c8: d0:4f:69:b0:db:a9:2d:b4:39:b6:95:09:e8:d8:09:33:85:8c: d0:16:c3:ef:1d:8f:b6:6e:35:04:eb:eb:a2:82:36:c0:82:29: e7:27:cc:cd:8f:ff:15:5d:fe:f8:ba:43:f0:55:9e:02:89:aa: c9:96:9e:b1:e3:6f:bc:af:92:86:02:aa:6e:91:6b:4e:af:c8: 74:e9:2a:d7:20:7b:6c:59:cd:2b:83:6d:fa:ec:b3:8a:6d:f1: 95:5a:b2:4c:3a:a7:03:e5:09:a4:6d:26:79:a4:ae:cc:3d:df: b8:ef:e3:dc:18:47:cb:65:bb:c5:32:e1:46:93:2b:74:e9:a3: 4f:81:3d:cc:74:d3:2e:47:3f:c1:12:fc:56:5f:05:0c:58:ab: 54:e3:d3:7e:73:65:93:0c:84:ac:70:f8:c4:99:ee:ac:23:7e: 02:f8:ab:a9:07:fa:31:00:5d:f0:60:fa:65:8d:d0:1f:20:fb: c5:5e:1b:af:d9:c8:7c:96:1b:6f:88:8c:ca:9e:3c:c6:c2:e0: a7:24:e6:de:4b:7d:82:1f:67:0b:92:19:ea:86:5c:d4:22:69: 81:d9:83:d0:77:bf:5a:7d:f4:0c:a8:e3:ad:0a:b1:33:3c:73: b0:c1:1b:ee -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUZdtP26oQacouvmR3zNnXB2BPbRwwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxMDA2MDk0OFoX DTI0MDcwODA2MTQ0OFowMzExMC8GA1UEAxMoNThBNzA2RUE3NDY4REYwRDE0Q0Ex ODE3QzdDQzVEQkQ1QTY5QzU5NjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAL3aCHwI46fy0oNJ1coKXr82QJWglJxYoB5kAKQ1OQE3SFPGasvKn07E0hOt xPxGK63FBmSn1qeri/N8fwyyMSx1e5/8IFi2iWUTIL3s88blUPCCtYLbCN7CNB5L sMkECFVBbYYDz6Ov78nNdmgP9HpFtHAHFDapIHbPCAPjF6vmvIAu7zAwSDAWmiCJ 7a58QWBlo9cLwXMxsM8lz9gTFDbuJfDuxZbSn9yZLHTFjmXZTqE3O9mgwNv04Bn2 zwfN0/MoeLaD1A0nV1kZXodGhyEhuHUAeL23Ag/P3SUhobvercYb1gpysnTOGNTr R50GQ45HjtyoDIDoY9mL/JEIdOsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFinBup0aN8NFMoYF8fMXb1aacWWMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zMmJmYWIwOS1jMWU5LTQ0ZDgtODE5ZS1mZGY2NTQ5YzZiM2YvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzMyYmZhYjA5 LWMxZTktNDRkOC04MTllLWZkZjY1NDljNmIzZi8wLzU4QTcwNkVBNzQ2OERGMEQx NENBMTgxN0M3Q0M1REJENUE2OUM1OTYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnuBQwDQYJKoZIhvcNAQELBQADggEBAFz0IOm0be/MlEYFoX9LuxV1yNBPabDb qS20ObaVCejYCTOFjNAWw+8dj7ZuNQTr66KCNsCCKecnzM2P/xVd/vi6Q/BVngKJ qsmWnrHjb7yvkoYCqm6Ra06vyHTpKtcge2xZzSuDbfrss4pt8ZVaskw6pwPlCaRt Jnmkrsw937jv49wYR8tlu8Uy4UaTK3Tpo0+BPcx00y5HP8ES/FZfBQxYq1Tj035z ZZMMhKxw+MSZ7qwjfgL4q6kH+jEAXfBg+mWN0B8g+8VeG6/ZyHyWG2+IjMqePMbC 4Kck5t5LfYIfZwuSGeqGXNQiaYHZg9B3v1p99Ayo460KsTM8c7DBG+4= -----END CERTIFICATE-----Generated at Wed May 8 22:46:39 2024 by rpki-client on console-ams.rpki-client.org