$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5B558AD01277C8212C974318B6352FB28BF683AD.cer File: 5B558AD01277C8212C974318B6352FB28BF683AD.cer (raw, json) Hash identifier: dtysKsCWojtnc+/n3n5CIygC9Dl1ox7nJqQvfBzPbMc= Subject key identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0303891C74504C0AA81802CDF31F8483C6604E42 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft caRepository: rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 30 Nov 2023 13:41:46 +0000 Certificate not after: Thu 28 Nov 2024 13:46:46 +0000 Subordinate resources: IP: 103.196.40.0/23 IP: 2001:df1:b5c0::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:03:89:1c:74:50:4c:0a:a8:18:02:cd:f3:1f:84:83:c6:60:4e:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 30 13:41:46 2023 GMT Not After : Nov 28 13:46:46 2024 GMT Subject: CN=5B558AD01277C8212C974318B6352FB28BF683AD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:de:2d:60:d4:5d:bf:81:be:d8:27:6a:a3:32: 31:40:0b:59:ea:08:f1:59:2c:6c:df:07:9b:82:d5: a3:7b:db:08:24:1f:4f:63:b2:d7:09:31:68:50:0f: f1:0a:bb:98:6d:1a:40:54:0d:ee:22:e7:b1:ba:43: e2:6a:43:91:ad:01:bd:95:fd:50:eb:5a:f2:ad:f7: 36:70:73:4e:39:3b:c2:d0:35:0b:36:49:f2:70:9e: 6e:18:01:20:1f:b8:08:04:da:4c:c1:d4:7c:bc:28: 1e:1c:3c:19:3a:e9:c7:1b:a6:d2:3c:84:6f:04:ee: 96:b4:fb:46:71:f6:11:40:be:a2:22:c0:ad:c9:a4: 0f:6f:29:89:01:27:55:e0:71:68:99:e4:c0:ad:38: b8:ec:9c:36:40:9f:38:e8:91:91:89:8e:6e:55:17: 2f:d0:0a:92:66:4e:01:df:35:33:d5:08:5a:e3:d0: d4:ca:59:4c:a7:49:79:91:ee:34:24:47:20:92:d5: a9:62:ec:a4:62:91:4a:cf:2d:80:4a:33:9f:a9:3d: 48:c7:06:6c:c8:37:5a:65:69:31:ed:94:c3:a7:88: 19:e9:18:7a:6b:7b:de:e1:68:5a:bb:bb:9b:c4:95: e1:33:9f:3e:dd:cb:7c:ee:9d:a7:23:21:11:68:96: 9c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5B:55:8A:D0:12:77:C8:21:2C:97:43:18:B6:35:2F:B2:8B:F6:83:AD X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/fa5b4fa4-328c-4cf2-ade3-c868131d4e0d/0/5B558AD01277C8212C974318B6352FB28BF683AD.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.196.40.0/23 IPv6: 2001:df1:b5c0::/48 Signature Algorithm: sha256WithRSAEncryption 8c:8e:64:44:bf:89:eb:bf:0a:30:ea:18:d4:e5:b0:9e:51:68: bd:b1:56:65:60:bf:27:60:7a:14:98:1a:3e:8f:78:f4:b6:46: dd:18:d6:8a:3d:89:6f:26:76:a1:5c:16:9f:8d:59:ef:3f:ba: f8:de:60:58:73:df:fa:77:dc:4b:a6:ed:1e:da:67:b2:13:8a: 78:74:15:d4:6f:d0:f1:69:99:2c:91:e1:b4:fb:ec:13:fe:a0: 63:07:ca:81:82:2b:55:e1:8c:82:44:4c:ce:fb:33:43:c4:ae: 3d:5e:bc:56:30:eb:a6:94:d1:19:67:97:0f:42:16:5e:4a:3a: 79:3b:d8:e4:83:49:65:85:18:b3:e5:aa:b3:01:d7:e6:6d:fc: a0:bd:09:1d:91:5f:d8:5b:41:8e:7e:05:a9:06:3d:0b:dc:6f: be:5d:27:44:df:af:5e:65:dd:b9:fb:bb:5c:37:e5:43:0d:ab: 86:f0:db:b1:23:08:0f:e0:97:4a:f4:61:69:87:2e:73:21:ac: 66:8e:03:02:e8:42:75:37:c3:ac:20:e8:fc:71:7e:b1:88:02: b9:89:64:26:28:51:37:b2:d3:05:35:1e:c9:4f:46:f6:36:48: c3:79:07:82:ed:8a:a9:08:34:58:93:1f:93:82:31:f7:68:9a: 99:b6:57:f6 -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUAwOJHHRQTAqoGALN8x+Eg8ZgTkIwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEzMDEzNDE0NloX DTI0MTEyODEzNDY0NlowMzExMC8GA1UEAxMoNUI1NThBRDAxMjc3QzgyMTJDOTc0 MzE4QjYzNTJGQjI4QkY2ODNBRDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALveLWDUXb+BvtgnaqMyMUALWeoI8VksbN8Hm4LVo3vbCCQfT2Oy1wkxaFAP 8Qq7mG0aQFQN7iLnsbpD4mpDka0BvZX9UOta8q33NnBzTjk7wtA1CzZJ8nCebhgB IB+4CATaTMHUfLwoHhw8GTrpxxum0jyEbwTulrT7RnH2EUC+oiLArcmkD28piQEn VeBxaJnkwK04uOycNkCfOOiRkYmOblUXL9AKkmZOAd81M9UIWuPQ1MpZTKdJeZHu NCRHIJLVqWLspGKRSs8tgEozn6k9SMcGbMg3WmVpMe2Uw6eIGekYemt73uFoWru7 m8SV4TOfPt3LfO6dpyMhEWiWnHkCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFtVitASd8ghLJdDGLY1L7KL9oOtMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9mYTViNGZhNC0zMjhjLTRjZjItYWRlMy1jODY4MTMxZDRlMGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2ZhNWI0ZmE0 LTMyOGMtNGNmMi1hZGUzLWM4NjgxMzFkNGUwZC8wLzVCNTU4QUQwMTI3N0M4MjEy Qzk3NDMxOEI2MzUyRkIyOEJGNjgzQUQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnxCgwDwQCAAIwCQMHACABDfG1wDANBgkqhkiG9w0BAQsFAAOCAQEAjI5kRL+J 678KMOoY1OWwnlFovbFWZWC/J2B6FJgaPo949LZG3RjWij2JbyZ2oVwWn41Z7z+6 +N5gWHPf+nfcS6btHtpnshOKeHQV1G/Q8WmZLJHhtPvsE/6gYwfKgYIrVeGMgkRM zvszQ8SuPV68VjDrppTRGWeXD0IWXko6eTvY5INJZYUYs+WqswHX5m38oL0JHZFf 2FtBjn4FqQY9C9xvvl0nRN+vXmXdufu7XDflQw2rhvDbsSMID+CXSvRhaYcucyGs Zo4DAuhCdTfDrCDo/HF+sYgCuYlkJihRN7LTBTUeyU9G9jZIw3kHgu2KqQg0WJMf k4Ix92iambZX9g== -----END CERTIFICATE-----Generated at Wed May 8 17:45:18 2024 by rpki-client on console-ams.rpki-client.org