$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer File: 5BD341A6D46AF52CFF23A5D1E2589494EEACA270.cer (raw, json) Hash identifier: E15MLmCSRGLyONeZK0G0jONJflTt3KgqHYYpplXrfCk= Subject key identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 78CFAF052D82EFAB86FD6512384CF6605FF36C98 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft caRepository: rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Fri 17 Nov 2023 10:37:50 +0000 Certificate not after: Fri 15 Nov 2024 10:42:50 +0000 Subordinate resources: IP: 103.179.66.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:cf:af:05:2d:82:ef:ab:86:fd:65:12:38:4c:f6:60:5f:f3:6c:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 17 10:37:50 2023 GMT Not After : Nov 15 10:42:50 2024 GMT Subject: CN=5BD341A6D46AF52CFF23A5D1E2589494EEACA270 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:57:22:ed:e0:fe:04:e2:40:5d:22:29:b8:d5: 4e:0b:6c:65:f0:31:53:35:6b:f4:4a:c9:13:bb:d7: 04:23:58:ea:36:15:82:80:29:48:3a:2e:b8:11:56: 7b:79:89:7d:e6:d0:ef:68:d9:1b:87:37:b4:c0:5a: d0:9a:72:ec:f2:1c:2a:20:b7:60:1f:49:f1:ad:f5: 52:8f:c6:92:62:41:59:5d:c5:54:a4:4f:9b:31:9a: 40:68:38:eb:02:b2:42:34:7e:e7:e8:ba:19:55:e4: 37:4a:c0:78:82:6e:68:62:8d:34:3b:df:e0:27:34: 2b:12:74:b3:fa:92:ba:90:86:ed:f5:6c:fc:20:37: d0:f5:4c:fd:c8:f3:4d:e9:2e:46:eb:cb:98:fd:04: 61:86:23:3c:8e:ea:22:45:d5:e3:9c:37:bb:79:4d: 94:fe:f8:55:51:4c:9f:04:fb:2c:bb:b0:2d:c9:89: 4b:5b:72:b7:8d:5b:83:26:14:54:6e:96:61:5d:79: c4:3b:89:11:bf:33:81:d7:ff:79:47:bd:09:ea:2e: c1:18:bf:b8:d0:27:33:46:1c:66:ab:c9:95:1d:41: 45:7e:07:e9:33:ee:3d:d1:12:a9:60:cd:65:3a:0e: ce:3f:f7:e8:96:c8:41:4f:b5:cb:d2:a9:9a:cf:bc: 67:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5B:D3:41:A6:D4:6A:F5:2C:FF:23:A5:D1:E2:58:94:94:EE:AC:A2:70 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3e12743d-d56d-4a77-90e2-c52e6dfe06c2/0/5BD341A6D46AF52CFF23A5D1E2589494EEACA270.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.66.0/23 Signature Algorithm: sha256WithRSAEncryption 02:9d:72:d4:0e:b3:45:6d:de:a2:eb:32:2c:a4:b5:7b:eb:e0: e3:30:f0:34:4e:b6:1b:e4:3e:1d:56:cf:9e:db:fe:6c:2c:72: c9:0f:ce:8c:20:48:42:93:bc:02:36:16:ff:7c:36:18:9e:2e: 2c:bb:56:17:4e:54:a1:25:0b:30:0c:53:4b:93:1d:a7:9d:fc: fc:68:7e:ab:03:0a:0f:32:ff:df:62:42:af:eb:6e:31:50:b2: ed:36:95:19:52:f2:81:c1:1f:f7:73:69:0a:e1:ac:20:df:3b: 84:5c:07:5a:b2:08:4a:89:ef:d3:fc:d5:71:59:be:8f:1b:70: 9e:60:ce:62:cb:56:89:a8:16:ba:69:11:c2:b4:83:be:c2:00: 30:32:a0:e9:b0:d7:c7:ab:c6:9c:41:68:c5:5c:29:82:45:d0: e3:29:db:65:96:52:bc:f5:73:e9:14:81:7d:aa:a7:26:d7:8f: 0b:f6:56:a7:f3:7b:a4:7d:16:fe:b7:ab:a5:f8:14:ad:e4:27: ad:75:3b:54:7b:b1:f7:2f:9f:45:97:80:70:c7:b3:a7:09:80: 79:ef:37:7d:73:b7:fe:b0:5a:ca:d9:d0:34:08:3c:b7:92:94: 9f:49:58:91:79:1d:5d:30:72:39:ce:bb:70:6a:fc:59:a1:d9: 88:76:d0:20 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUeM+vBS2C76uG/WUSOEz2YF/zbJgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTExNzEwMzc1MFoX DTI0MTExNTEwNDI1MFowMzExMC8GA1UEAxMoNUJEMzQxQTZENDZBRjUyQ0ZGMjNB NUQxRTI1ODk0OTRFRUFDQTI3MDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAMhXIu3g/gTiQF0iKbjVTgtsZfAxUzVr9ErJE7vXBCNY6jYVgoApSDouuBFW e3mJfebQ72jZG4c3tMBa0Jpy7PIcKiC3YB9J8a31Uo/GkmJBWV3FVKRPmzGaQGg4 6wKyQjR+5+i6GVXkN0rAeIJuaGKNNDvf4Cc0KxJ0s/qSupCG7fVs/CA30PVM/cjz TekuRuvLmP0EYYYjPI7qIkXV45w3u3lNlP74VVFMnwT7LLuwLcmJS1tyt41bgyYU VG6WYV15xDuJEb8zgdf/eUe9CeouwRi/uNAnM0YcZqvJlR1BRX4H6TPuPdESqWDN ZToOzj/36JbIQU+1y9Kpms+8Z+ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFvTQabUavUs/yOl0eJYlJTurKJwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zZTEyNzQzZC1kNTZkLTRhNzctOTBlMi1jNTJlNmRmZTA2YzIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlMTI3NDNk LWQ1NmQtNGE3Ny05MGUyLWM1MmU2ZGZlMDZjMi8wLzVCRDM0MUE2RDQ2QUY1MkNG RjIzQTVEMUUyNTg5NDk0RUVBQ0EyNzAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFns0IwDQYJKoZIhvcNAQELBQADggEBAAKdctQOs0Vt3qLrMiyktXvr4OMw8DRO thvkPh1Wz57b/mwscskPzowgSEKTvAI2Fv98NhieLiy7VhdOVKElCzAMU0uTHaed /PxofqsDCg8y/99iQq/rbjFQsu02lRlS8oHBH/dzaQrhrCDfO4RcB1qyCEqJ79P8 1XFZvo8bcJ5gzmLLVomoFrppEcK0g77CADAyoOmw18erxpxBaMVcKYJF0OMp22WW Urz1c+kUgX2qpybXjwv2Vqfze6R9Fv63q6X4FK3kJ611O1R7sfcvn0WXgHDHs6cJ gHnvN31zt/6wWsrZ0DQIPLeSlJ9JWJF5HV0wcjnOu3Bq/Fmh2Yh20CA= -----END CERTIFICATE-----Generated at Wed May 8 22:46:39 2024 by rpki-client on console-ams.rpki-client.org