$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer File: 5B8C3A29E90C25CBF4615124B117BE7FC013C61E.cer (raw, json) Hash identifier: 9djSBXKaeZmybHMObib7BD70J6OsZOcgRlSCZy/N4+4= Subject key identifier: 5B:8C:3A:29:E9:0C:25:CB:F4:61:51:24:B1:17:BE:7F:C0:13:C6:1E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1D4DD8198FD2C993EE47D60D992FD1DDF6A5B0DF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.mft caRepository: rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 14 Nov 2023 14:17:33 +0000 Certificate not after: Tue 12 Nov 2024 14:22:33 +0000 Subordinate resources: IP: 103.90.66.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:4d:d8:19:8f:d2:c9:93:ee:47:d6:0d:99:2f:d1:dd:f6:a5:b0:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 14 14:17:33 2023 GMT Not After : Nov 12 14:22:33 2024 GMT Subject: CN=5B8C3A29E90C25CBF4615124B117BE7FC013C61E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:11:e8:99:4b:c2:44:47:52:3a:9d:a6:b2:4d: ed:58:4b:70:f9:1a:af:d7:dc:45:3e:ef:32:08:13: 6d:1d:19:bd:f1:97:93:ca:ca:27:28:f2:76:f6:c1: 18:8e:0f:e9:1d:42:8a:2b:6b:c0:cf:46:f2:89:9b: 1b:18:d8:5f:45:92:67:54:fe:83:da:fc:4b:61:d7: 47:65:58:c1:c7:2c:26:33:67:05:a2:97:f3:7f:6f: 46:fa:37:be:a9:f2:1b:6a:7d:ab:89:a1:72:2f:e1: 40:b7:e7:aa:c9:88:57:53:bb:ce:b9:ca:8a:4c:70: 85:b2:47:b2:74:67:43:c1:69:21:9f:54:15:4f:98: d3:54:95:95:1d:9a:14:4e:b0:2d:84:98:b8:60:ae: 99:bd:33:fb:50:fe:fb:14:54:43:df:b4:e1:3c:2a: 63:f7:43:19:34:37:dc:df:0f:c8:1a:be:db:12:fb: 02:44:b5:58:5f:9b:6d:9a:27:32:ad:4d:bb:a0:80: 12:9e:4e:b8:f4:d1:b0:56:4b:74:7a:97:35:ba:b3: 97:01:8e:ef:6c:67:cb:b2:79:f5:f2:e2:d4:f2:cd: 54:44:d9:aa:b0:cb:f3:e5:6a:47:74:3e:08:b0:8e: fb:69:9d:a5:fb:58:c9:07:24:06:c3:b1:2d:89:3e: 65:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5B:8C:3A:29:E9:0C:25:CB:F4:61:51:24:B1:17:BE:7F:C0:13:C6:1E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/c9f3c769-cfb1-4206-9f54-c0587e63ba5b/0/5B8C3A29E90C25CBF4615124B117BE7FC013C61E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.90.66.0/23 Signature Algorithm: sha256WithRSAEncryption 7d:09:17:be:45:31:22:ca:70:5a:be:b3:cf:bd:ce:67:8c:88: 19:e8:04:51:d2:9c:ff:63:ad:fc:a4:f3:88:27:aa:7b:4f:ea: e8:60:64:9b:1e:47:09:94:0e:f5:d3:c2:d3:e8:86:08:01:bb: e4:c9:98:bc:cc:80:75:99:56:c6:b6:8b:ca:f0:6c:bb:dc:27: 54:4f:26:c7:fb:20:c2:fc:9a:f2:4d:a7:a1:5b:cf:ef:16:bb: f9:b0:de:45:0d:aa:90:9f:94:31:f6:bc:12:c8:ec:41:29:f3: 1f:ba:5c:89:83:c0:ae:72:73:7b:24:df:6a:d7:38:c4:0e:26: d6:45:89:28:92:34:6c:34:dc:88:ec:e0:ff:1f:12:27:4d:12: 07:84:29:a5:f5:be:36:9c:c2:5d:73:5f:44:55:97:9e:c6:4a: b1:56:e5:37:a8:56:e8:8b:5f:d8:8a:e4:ad:0c:e2:91:b0:31: da:ce:c9:16:f7:13:9d:03:40:81:28:8f:af:dc:a6:98:6a:74: 28:d3:1f:f8:1d:bf:78:7f:f1:b6:4c:01:45:3b:92:7b:f2:40: fd:56:e4:5f:57:0a:6d:2f:95:0a:4e:25:25:aa:f4:70:19:53: fe:4c:d6:51:6c:01:a1:be:fd:e3:2e:45:b9:08:81:8c:c4:fa: 85:cf:ba:fa -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHU3YGY/SyZPuR9YNmS/R3falsN8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNDE0MTczM1oX DTI0MTExMjE0MjIzM1owMzExMC8GA1UEAxMoNUI4QzNBMjlFOTBDMjVDQkY0NjE1 MTI0QjExN0JFN0ZDMDEzQzYxRTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0R6JlLwkRHUjqdprJN7VhLcPkar9fcRT7vMggTbR0ZvfGXk8rKJyjydvbB GI4P6R1CiitrwM9G8ombGxjYX0WSZ1T+g9r8S2HXR2VYwccsJjNnBaKX839vRvo3 vqnyG2p9q4mhci/hQLfnqsmIV1O7zrnKikxwhbJHsnRnQ8FpIZ9UFU+Y01SVlR2a FE6wLYSYuGCumb0z+1D++xRUQ9+04TwqY/dDGTQ33N8PyBq+2xL7AkS1WF+bbZon Mq1Nu6CAEp5OuPTRsFZLdHqXNbqzlwGO72xny7J59fLi1PLNVETZqrDL8+VqR3Q+ CLCO+2mdpftYyQckBsOxLYk+ZSsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFuMOinpDCXL9GFRJLEXvn/AE8YeMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9jOWYzYzc2OS1jZmIxLTQyMDYtOWY1NC1jMDU4N2U2M2JhNWIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2M5ZjNjNzY5 LWNmYjEtNDIwNi05ZjU0LWMwNTg3ZTYzYmE1Yi8wLzVCOEMzQTI5RTkwQzI1Q0JG NDYxNTEyNEIxMTdCRTdGQzAxM0M2MUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnWkIwDQYJKoZIhvcNAQELBQADggEBAH0JF75FMSLKcFq+s8+9zmeMiBnoBFHS nP9jrfyk84gnqntP6uhgZJseRwmUDvXTwtPohggBu+TJmLzMgHWZVsa2i8rwbLvc J1RPJsf7IML8mvJNp6Fbz+8Wu/mw3kUNqpCflDH2vBLI7EEp8x+6XImDwK5yc3sk 32rXOMQOJtZFiSiSNGw03Ijs4P8fEidNEgeEKaX1vjacwl1zX0RVl57GSrFW5Teo VuiLX9iK5K0M4pGwMdrOyRb3E50DQIEoj6/cpphqdCjTH/gdv3h/8bZMAUU7knvy QP1W5F9XCm0vlQpOJSWq9HAZU/5M1lFsAaG+/eMuRbkIgYzE+oXPuvo= -----END CERTIFICATE-----Generated at Tue May 7 16:42:36 2024 by rpki-client on console-ams.rpki-client.org