$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5A33E6B82000487B204D2E284BCA10AF293CB41E.cer File: 5A33E6B82000487B204D2E284BCA10AF293CB41E.cer (raw, json) Hash identifier: azaRkVQVPZwy3DI6Hn619Fzidz7qiGiSDhkCww6qxJQ= Subject key identifier: 5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5FA333ECCABDE4B747B69D004911605EC28603AA Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.mft caRepository: rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 09 Jun 2023 10:36:49 +0000 Certificate not after: Fri 07 Jun 2024 10:41:49 +0000 Subordinate resources: IP: 103.142.240.0/23 IP: 2405:45c0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a3:33:ec:ca:bd:e4:b7:47:b6:9d:00:49:11:60:5e:c2:86:03:aa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 9 10:36:49 2023 GMT Not After : Jun 7 10:41:49 2024 GMT Subject: CN=5A33E6B82000487B204D2E284BCA10AF293CB41E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:76:c2:b5:66:e1:15:58:af:90:17:3f:2d:57: c8:86:c5:98:ca:d8:18:d0:4d:10:fe:aa:1e:6e:39: a6:d2:ac:56:a1:bc:cf:3d:e7:f7:97:94:f8:ad:bf: 4e:42:3a:aa:90:71:94:cb:98:61:a5:91:c0:1d:50: 39:b4:40:44:8b:0e:a2:05:49:c7:b7:a0:16:92:27: d6:90:8e:db:b6:05:a9:ad:52:67:54:44:eb:f9:5c: 79:dc:4f:5a:20:6c:a1:4b:43:51:8d:db:90:67:33: 26:bd:d2:8f:e2:1d:04:12:ba:ba:d0:09:9e:f1:f6: 38:00:87:bc:0a:fc:86:ef:9e:44:20:ea:92:4e:86: b4:e4:12:1b:29:40:f4:5a:cc:17:d9:ee:ba:5c:96: 91:38:37:88:85:17:1c:8f:cf:47:35:27:7d:09:73: d0:c4:1b:75:b9:12:69:2f:cc:db:b1:bf:63:f7:74: 6b:29:f3:f6:7e:43:0a:84:8d:bf:2b:58:14:53:df: 89:0e:70:e1:74:27:87:5d:a4:67:67:2c:bb:6d:a0: b5:5a:04:8d:c5:58:89:23:09:79:2d:73:80:fb:f6: 6c:61:2b:8e:a2:de:64:80:a5:52:09:66:82:8d:18: 75:45:c8:ad:ce:c5:14:a9:50:c0:0a:66:7d:a8:46: c5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5A:33:E6:B8:20:00:48:7B:20:4D:2E:28:4B:CA:10:AF:29:3C:B4:1E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5e41ba7e-6c42-4c22-b13c-548fc7272a3d/0/5A33E6B82000487B204D2E284BCA10AF293CB41E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.142.240.0/23 IPv6: 2405:45c0::/32 Signature Algorithm: sha256WithRSAEncryption 44:ff:d8:a2:b2:b6:e1:8f:8c:d2:c5:2f:0d:54:2f:21:61:e2: b1:8f:70:2c:6d:44:29:26:fa:1b:be:35:31:2b:9e:23:82:83: ca:b6:ec:43:ed:53:08:c4:ae:98:d2:d0:29:75:50:e5:5e:e8: b7:d1:3a:d4:48:9e:8b:56:b0:44:fc:6f:06:a0:ec:38:ce:3a: 44:1e:9d:e5:1a:3e:bb:eb:ba:38:f9:26:90:98:e9:55:04:32: 9a:42:20:c5:88:da:73:59:db:94:13:89:8d:f1:75:de:7a:b6: b3:e1:22:dd:d4:d1:53:5a:ed:b4:f3:41:22:a6:e0:f8:60:1e: 8a:3e:99:e5:35:d8:3e:35:c0:89:47:e0:4f:ba:3c:f6:90:c1: 71:51:0a:0f:af:fa:d6:7a:f4:01:0d:91:92:0f:19:50:5c:98: 9f:7c:37:eb:77:df:b0:0f:c8:fb:1d:ce:72:71:f3:23:b4:07: 11:76:c1:14:b7:04:92:02:a0:26:11:42:43:39:31:84:bf:44: 8e:8d:46:e7:f4:c3:cf:71:4f:f0:09:7d:31:d1:3c:30:cd:5c: 87:37:13:8f:f8:41:4b:f3:48:b5:66:1c:3d:be:84:cc:27:d0: c8:a1:55:00:29:c2:9c:1b:66:4f:f9:dc:38:ad:57:6d:09:b4: bf:e4:b0:84 -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUX6Mz7Mq95LdHtp0ASRFgXsKGA6owDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYwOTEwMzY0OVoX DTI0MDYwNzEwNDE0OVowMzExMC8GA1UEAxMoNUEzM0U2QjgyMDAwNDg3QjIwNEQy RTI4NEJDQTEwQUYyOTNDQjQxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANd2wrVm4RVYr5AXPy1XyIbFmMrYGNBNEP6qHm45ptKsVqG8zz3n95eU+K2/ TkI6qpBxlMuYYaWRwB1QObRARIsOogVJx7egFpIn1pCO27YFqa1SZ1RE6/lcedxP WiBsoUtDUY3bkGczJr3Sj+IdBBK6utAJnvH2OACHvAr8hu+eRCDqkk6GtOQSGylA 9FrMF9nuulyWkTg3iIUXHI/PRzUnfQlz0MQbdbkSaS/M27G/Y/d0aynz9n5DCoSN vytYFFPfiQ5w4XQnh12kZ2csu22gtVoEjcVYiSMJeS1zgPv2bGErjqLeZIClUglm go0YdUXIrc7FFKlQwApmfahGxYMCAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFoz5rggAEh7IE0uKEvKEK8pPLQeMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81ZTQxYmE3ZS02YzQyLTRjMjItYjEzYy01NDhmYzcyNzJhM2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzVlNDFiYTdl LTZjNDItNGMyMi1iMTNjLTU0OGZjNzI3MmEzZC8wLzVBMzNFNkI4MjAwMDQ4N0Iy MDREMkUyODRCQ0ExMEFGMjkzQ0I0MUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnjvAwDQQCAAIwBwMFACQFRcAwDQYJKoZIhvcNAQELBQADggEBAET/2KKytuGP jNLFLw1ULyFh4rGPcCxtRCkm+hu+NTErniOCg8q27EPtUwjErpjS0Cl1UOVe6LfR OtRInotWsET8bwag7DjOOkQeneUaPrvrujj5JpCY6VUEMppCIMWI2nNZ25QTiY3x dd56trPhIt3U0VNa7bTzQSKm4PhgHoo+meU12D41wIlH4E+6PPaQwXFRCg+v+tZ6 9AENkZIPGVBcmJ98N+t337APyPsdznJx8yO0BxF2wRS3BJICoCYRQkM5MYS/RI6N Ruf0w89xT/AJfTHRPDDNXIc3E4/4QUvzSLVmHD2+hMwn0MihVQApwpwbZk/53Dit V20JtL/ksIQ= -----END CERTIFICATE-----Generated at Wed May 8 17:45:18 2024 by rpki-client on console-ams.rpki-client.org