$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer File: 5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.cer (raw, json) Hash identifier: qtkZTm20VZeVk7B6Np50v0AtynoxIHVpMRvAcm7ifDY= Subject key identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 6208A56275F43750FC031713118ECBDBD82EC9BF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft caRepository: rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 12 Jul 2023 16:21:11 +0000 Certificate not after: Wed 10 Jul 2024 16:26:11 +0000 Subordinate resources: IP: 103.164.150.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 03:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:08:a5:62:75:f4:37:50:fc:03:17:13:11:8e:cb:db:d8:2e:c9:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 12 16:21:11 2023 GMT Not After : Jul 10 16:26:11 2024 GMT Subject: CN=5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:03:a4:e9:64:d9:6b:75:a5:b5:8e:5f:90:a9: ab:7b:6e:e7:37:45:ce:92:7f:bc:fd:78:b6:65:d7: 2b:86:1f:0c:9d:56:39:1d:53:fa:e0:c4:56:25:c1: 97:42:96:12:85:3e:7e:77:d1:20:a7:25:7a:bb:a4: 37:65:5a:a9:e9:27:7f:5e:74:59:46:a4:89:eb:50: 19:7d:f1:fc:ff:40:71:cc:36:1d:7f:75:2b:d5:3e: a0:72:60:90:56:80:a8:0b:d0:e4:03:ae:b5:5e:4e: 10:76:14:9e:4a:75:7a:2f:10:ad:8f:7c:3f:29:64: c4:54:59:50:43:e8:4b:81:72:31:27:00:44:d5:b0: e1:15:99:64:9c:07:7e:d0:be:20:89:a9:5e:f8:cf: c9:eb:8a:e1:be:de:f2:39:3b:55:82:02:c4:2f:2b: aa:e7:1e:87:74:a7:13:76:87:6b:3b:17:d7:3e:8c: da:3e:ca:4a:75:4d:da:7e:ee:b7:ee:7f:80:66:06: 34:28:fa:ae:be:e8:da:06:cc:6f:3a:01:20:5c:a2: 91:ca:44:47:c4:76:77:a1:b5:69:f3:88:d5:8e:df: 29:d3:c3:27:03:97:bf:db:8c:d9:3a:08:fd:da:dd: c4:92:40:24:4c:44:4e:2b:b0:f6:9b:a6:00:70:89: cd:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5C:1D:C7:E8:74:57:A9:1F:35:91:5A:F1:DE:3F:BB:CC:2E:6B:3D:8F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/3c88442b-c48e-4ba0-8ad7-58e1263c6dc7/0/5C1DC7E87457A91F35915AF1DE3FBBCC2E6B3D8F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.150.0/23 Signature Algorithm: sha256WithRSAEncryption 40:0a:94:3b:f3:10:26:69:a2:98:9b:2c:d2:3d:85:d6:b8:6d: 1d:bb:b9:ad:c6:62:b7:b2:b6:37:66:55:b8:36:69:6c:04:6a: 6c:bf:70:78:ae:5f:1b:d9:8f:57:da:bf:e5:f4:4f:3a:97:31: 2d:40:9c:97:29:25:56:d2:bf:99:36:b7:ac:5f:3f:c4:21:0f: ba:18:69:a3:29:e0:8b:a6:7a:8d:27:79:96:0f:ac:d3:bf:85: d1:0d:74:c0:26:da:77:07:fb:54:b6:78:28:bf:9f:24:3a:11: bd:d0:be:02:29:31:5c:65:aa:51:f5:97:2b:16:0f:47:57:c7: 1a:05:d1:a7:25:a6:6e:3f:40:55:e2:49:56:1b:ed:25:13:77: 57:e7:80:fa:2d:ea:eb:ba:ca:bd:0d:0c:e5:d1:d8:58:c3:95: 05:d6:dd:b4:77:d2:63:78:4f:b9:44:e5:2c:15:16:0c:dc:7f: 67:5f:f2:b9:63:19:c1:9d:4b:af:11:de:45:23:a2:79:b1:1c: d0:2d:c3:0b:01:cc:90:67:aa:33:06:41:01:69:4f:b6:50:d5: 67:9a:9b:fa:d3:b4:a6:5b:c1:5c:78:c3:11:74:1c:e2:72:e0: 0a:98:ea:93:08:03:6d:18:88:38:7d:5d:ee:25:6b:13:64:33: 6b:56:43:2c -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUYgilYnX0N1D8AxcTEY7L29guyb8wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDcxMjE2MjExMVoX DTI0MDcxMDE2MjYxMVowMzExMC8GA1UEAxMoNUMxREM3RTg3NDU3QTkxRjM1OTE1 QUYxREUzRkJCQ0MyRTZCM0Q4RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANQDpOlk2Wt1pbWOX5Cpq3tu5zdFzpJ/vP14tmXXK4YfDJ1WOR1T+uDEViXB l0KWEoU+fnfRIKclerukN2Vaqeknf150WUakietQGX3x/P9Accw2HX91K9U+oHJg kFaAqAvQ5AOutV5OEHYUnkp1ei8QrY98PylkxFRZUEPoS4FyMScARNWw4RWZZJwH ftC+IImpXvjPyeuK4b7e8jk7VYICxC8rquceh3SnE3aHazsX1z6M2j7KSnVN2n7u t+5/gGYGNCj6rr7o2gbMbzoBIFyikcpER8R2d6G1afOI1Y7fKdPDJwOXv9uM2ToI /drdxJJAJExETiuw9pumAHCJzW0CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFwdx+h0V6kfNZFa8d4/u8wuaz2PMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8zYzg4NDQyYi1jNDhlLTRiYTAtOGFkNy01OGUxMjYzYzZkYzcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNjODg0NDJi LWM0OGUtNGJhMC04YWQ3LTU4ZTEyNjNjNmRjNy8wLzVDMURDN0U4NzQ1N0E5MUYz NTkxNUFGMURFM0ZCQkNDMkU2QjNEOEYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnpJYwDQYJKoZIhvcNAQELBQADggEBAEAKlDvzECZpopibLNI9hda4bR27ua3G YreytjdmVbg2aWwEamy/cHiuXxvZj1fav+X0TzqXMS1AnJcpJVbSv5k2t6xfP8Qh D7oYaaMp4Iumeo0neZYPrNO/hdENdMAm2ncH+1S2eCi/nyQ6Eb3QvgIpMVxlqlH1 lysWD0dXxxoF0aclpm4/QFXiSVYb7SUTd1fngPot6uu6yr0NDOXR2FjDlQXW3bR3 0mN4T7lE5SwVFgzcf2df8rljGcGdS68R3kUjonmxHNAtwwsBzJBnqjMGQQFpT7ZQ 1Weam/rTtKZbwVx4wxF0HOJy4AqY6pMIA20YiDh9Xe4laxNkM2tWQyw= -----END CERTIFICATE-----Generated at Wed May 8 21:02:15 2024 by rpki-client on console-fra.rpki-client.org