$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5AE57F3F97F40888F93913350A218863E705CD34.cer File: 5AE57F3F97F40888F93913350A218863E705CD34.cer (raw, json) Hash identifier: y4TunB0yv4/9c0A61yhO1HTJHaCeZUBMiEU10dmLhoc= Subject key identifier: 5A:E5:7F:3F:97:F4:08:88:F9:39:13:35:0A:21:88:63:E7:05:CD:34 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 4BA3E6CEA0C9D84E3E514726FD8E2899E42AC04F Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/8d8cdf5a-b9a7-4469-a653-c9ff2a003773/0/5AE57F3F97F40888F93913350A218863E705CD34.mft caRepository: rsync://repo-rpki.idnic.net/repo/8d8cdf5a-b9a7-4469-a653-c9ff2a003773/0/ Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 10 Jan 2024 19:43:12 +0000 Certificate not after: Wed 08 Jan 2025 19:48:12 +0000 Subordinate resources: IP: 103.183.10.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:39:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:a3:e6:ce:a0:c9:d8:4e:3e:51:47:26:fd:8e:28:99:e4:2a:c0:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 10 19:43:12 2024 GMT Not After : Jan 8 19:48:12 2025 GMT Subject: CN=5AE57F3F97F40888F93913350A218863E705CD34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a6:0d:46:d9:c7:39:3a:8c:d4:93:e6:7c:3e: a4:30:44:0d:51:b9:3b:ef:6f:df:4d:35:26:ad:b1: a9:7c:9a:68:c9:0a:0d:85:9d:50:f1:f9:de:58:a0: 3c:54:41:e9:b6:1b:80:2c:f9:21:07:81:ea:f8:65: d8:24:6b:7a:8d:ec:8f:1c:a4:07:2d:57:e6:3d:4e: 65:2e:1a:76:ad:40:c9:89:d6:1d:4a:66:ec:42:36: 7d:f9:64:07:06:76:06:ab:87:b9:93:0d:1d:aa:7f: 69:93:75:e0:8f:d1:9e:6e:dd:f0:aa:8b:d6:7a:a9: 3b:18:48:ca:40:56:b8:d0:95:21:a9:24:42:bf:33: 3e:35:59:b8:18:f9:e6:cc:6c:32:ef:ba:33:4e:68: 55:79:50:d5:92:89:2d:f2:fa:40:ae:7e:0d:10:2e: e4:41:ac:d2:e6:8a:39:29:1d:c0:26:71:72:b3:7f: e7:32:55:99:0d:27:48:ea:ed:99:cc:7b:03:c5:b3: da:92:7a:0e:fa:40:a0:62:86:45:1e:9d:b4:51:a5: 05:ca:f0:42:4c:66:d2:ce:57:17:f2:08:e5:c2:75: 19:c2:08:d2:0f:bd:dd:29:20:da:ec:bb:69:0f:db: 28:46:b0:c8:ef:0d:73:dc:68:78:66:ef:4e:31:70: a8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5A:E5:7F:3F:97:F4:08:88:F9:39:13:35:0A:21:88:63:E7:05:CD:34 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/8d8cdf5a-b9a7-4469-a653-c9ff2a003773/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/8d8cdf5a-b9a7-4469-a653-c9ff2a003773/0/5AE57F3F97F40888F93913350A218863E705CD34.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.183.10.0/23 Signature Algorithm: sha256WithRSAEncryption 16:48:6a:ef:7a:64:7b:79:1a:66:08:d4:34:4a:85:40:3c:b2: 16:15:a5:92:35:62:7a:b3:fc:0c:52:19:f9:33:b7:49:f3:b8: 72:0c:79:e9:11:34:8a:cf:53:15:4f:12:fd:05:00:85:1f:a6: 43:b8:d8:fa:6e:ee:f3:c1:e0:99:f9:8b:1f:77:b1:0b:28:54: ca:b1:8e:e2:5c:c2:02:07:29:e9:c6:a3:4e:e0:73:56:cf:0a: 2b:43:a7:9e:d6:d0:99:b0:1b:9e:06:5c:7e:17:10:ea:d4:cb: 8c:a2:ec:c2:d6:c8:f4:7f:65:3e:25:1c:ee:d5:b0:91:cb:b1: de:0a:03:62:a9:ad:46:7e:84:ce:15:9c:2e:22:10:6b:6d:ea: b3:a3:86:5c:84:52:8b:3d:29:3a:a8:6e:ef:6c:3d:1f:d2:da: 5b:5f:52:45:3e:61:41:a0:47:22:42:40:21:85:65:2c:aa:70: cb:a6:b7:07:e1:eb:62:bb:08:84:21:63:c4:86:ce:af:95:18: 8e:53:72:61:e6:0b:24:99:7a:75:6c:fb:6b:d0:13:07:d8:a3: d4:d1:b5:c7:66:de:83:fe:9c:02:6a:99:4e:84:2d:d8:42:65: 4f:81:63:10:7b:75:88:cf:d8:69:12:56:5d:de:51:25:9d:db: 0e:99:74:75 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUS6PmzqDJ2E4+UUcm/Y4omeQqwE8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMDE5NDMxMloX DTI1MDEwODE5NDgxMlowMzExMC8GA1UEAxMoNUFFNTdGM0Y5N0Y0MDg4OEY5Mzkx MzM1MEEyMTg4NjNFNzA1Q0QzNDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMSmDUbZxzk6jNST5nw+pDBEDVG5O+9v3001Jq2xqXyaaMkKDYWdUPH53lig PFRB6bYbgCz5IQeB6vhl2CRreo3sjxykBy1X5j1OZS4adq1AyYnWHUpm7EI2fflk BwZ2BquHuZMNHap/aZN14I/Rnm7d8KqL1nqpOxhIykBWuNCVIakkQr8zPjVZuBj5 5sxsMu+6M05oVXlQ1ZKJLfL6QK5+DRAu5EGs0uaKOSkdwCZxcrN/5zJVmQ0nSOrt mcx7A8Wz2pJ6DvpAoGKGRR6dtFGlBcrwQkxm0s5XF/II5cJ1GcII0g+93Skg2uy7 aQ/bKEawyO8Nc9xoeGbvTjFwqLsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFrlfz+X9AiI+TkTNQohiGPnBc00MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by84ZDhjZGY1YS1iOWE3LTQ0NjktYTY1My1jOWZmMmEwMDM3NzMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzhkOGNkZjVh LWI5YTctNDQ2OS1hNjUzLWM5ZmYyYTAwMzc3My8wLzVBRTU3RjNGOTdGNDA4ODhG OTM5MTMzNTBBMjE4ODYzRTcwNUNEMzQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFntwowDQYJKoZIhvcNAQELBQADggEBABZIau96ZHt5GmYI1DRKhUA8shYVpZI1 Ynqz/AxSGfkzt0nzuHIMeekRNIrPUxVPEv0FAIUfpkO42Ppu7vPB4Jn5ix93sQso VMqxjuJcwgIHKenGo07gc1bPCitDp57W0JmwG54GXH4XEOrUy4yi7MLWyPR/ZT4l HO7VsJHLsd4KA2KprUZ+hM4VnC4iEGtt6rOjhlyEUos9KTqobu9sPR/S2ltfUkU+ YUGgRyJCQCGFZSyqcMumtwfh62K7CIQhY8SGzq+VGI5TcmHmCySZenVs+2vQEwfY o9TRtcdm3oP+nAJqmU6ELdhCZU+BYxB7dYjP2GkSVl3eUSWd2w6ZdHU= -----END CERTIFICATE-----Generated at Fri Nov 22 11:43:42 2024 by rpki-client on console-ams.rpki-client.org