$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5C559181306986EE89AADF0A1CFC78EA8A093530.cer File: 5C559181306986EE89AADF0A1CFC78EA8A093530.cer (raw, json) Hash identifier: Az8Wj0eau6nJvDNMFYHaSKR8EJAJnQIYLG027vvxaFo= Subject key identifier: 5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 339DB65C6E583B93F39EEC17D8FAAB9435840F33 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.mft caRepository: rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 24 Oct 2023 06:57:51 +0000 Certificate not after: Tue 22 Oct 2024 07:02:51 +0000 Subordinate resources: IP: 103.250.129.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:9d:b6:5c:6e:58:3b:93:f3:9e:ec:17:d8:fa:ab:94:35:84:0f:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 24 06:57:51 2023 GMT Not After : Oct 22 07:02:51 2024 GMT Subject: CN=5C559181306986EE89AADF0A1CFC78EA8A093530 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:5e:9e:f0:74:26:33:ee:45:8d:30:60:9d:7c: d1:77:f6:20:0b:21:23:c5:c0:80:37:7d:c9:ec:bc: de:11:4a:01:4f:90:59:a7:01:05:a0:09:2e:fb:f1: 01:df:2c:d6:bf:d4:54:36:45:6c:c2:e6:e6:32:4e: fa:95:4b:48:23:71:7a:30:28:19:ec:fd:01:89:ea: 4a:6a:15:8a:b5:e7:b6:51:70:32:1d:fe:24:96:30: 16:ee:cf:1c:32:81:e2:54:58:1a:0e:33:c5:53:1a: d5:e8:20:11:91:3a:32:01:63:25:14:d3:12:9f:a1: 7a:83:e9:4e:ed:83:c8:04:55:2f:09:0e:de:95:2b: 49:24:13:24:9a:39:58:03:81:64:69:60:9f:a5:c1: ab:1f:20:05:29:74:c2:75:d1:c1:e1:4f:50:01:c9: a8:61:fa:0f:99:b3:c9:53:3d:8c:68:76:a9:d7:b6: 06:6a:2d:78:fd:d4:24:6f:02:8b:31:6f:3d:0b:0e: 40:1a:52:56:48:fe:c1:b9:7b:52:64:07:70:00:27: f6:5f:ae:5a:49:b3:5d:08:54:d8:db:e4:c0:a3:d2: a4:c7:df:bb:c5:e9:1b:d7:5f:ed:43:33:b7:10:14: 78:5f:1d:50:2b:8b:dd:d6:d2:18:e7:2d:6d:f4:cb: 53:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5C:55:91:81:30:69:86:EE:89:AA:DF:0A:1C:FC:78:EA:8A:09:35:30 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/0fa81e6e-4b16-4b62-8f18-52892e54b90d/0/5C559181306986EE89AADF0A1CFC78EA8A093530.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.250.129.0/24 Signature Algorithm: sha256WithRSAEncryption 11:88:6a:95:b0:db:e0:fc:64:a4:39:a9:29:25:c8:7d:a0:12: b0:77:ef:44:d4:dd:f7:3a:0b:82:22:f8:9a:8f:ea:a7:f0:4e: 08:e2:20:19:38:15:49:69:ee:09:bd:72:fa:3e:85:51:33:ce: 4f:35:5b:12:34:89:23:3b:0c:7f:a5:af:68:97:c6:ee:6c:ef: 59:a9:03:70:6d:5f:72:11:fd:3f:8d:ea:09:7f:35:92:8c:3a: 0c:b6:18:ad:bc:6d:77:4d:68:b0:31:40:9f:0d:ec:7e:b7:17: 29:4f:af:34:6e:48:c5:a3:2a:5f:ac:5f:f8:9e:f2:ca:23:81: fa:0a:a3:f3:66:7a:8a:90:a2:bd:6b:6f:ef:ab:8b:f0:ed:5d: d7:89:95:f0:00:88:e7:67:09:f9:ac:c0:c2:9a:05:c1:8f:a2: 4e:97:d7:48:86:d8:4c:95:4b:be:ad:7b:93:d0:b9:ec:4b:3c: e1:fe:6f:12:89:e2:7d:aa:15:fd:6f:48:22:e5:14:9c:ef:a8: fe:85:f8:58:97:1c:54:48:85:fe:b9:f4:c9:49:62:08:b2:e6: 78:e3:09:f8:95:52:38:3e:53:fe:34:64:53:db:0c:d5:4d:ae: fb:bd:1f:1d:a3:e5:5a:79:a0:1f:0e:1f:af:ec:f5:94:c5:c4: 51:76:f9:56 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUM522XG5YO5PznuwX2PqrlDWEDzMwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyNDA2NTc1MVoX DTI0MTAyMjA3MDI1MVowMzExMC8GA1UEAxMoNUM1NTkxODEzMDY5ODZFRTg5QUFE RjBBMUNGQzc4RUE4QTA5MzUzMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOBenvB0JjPuRY0wYJ180Xf2IAshI8XAgDd9yey83hFKAU+QWacBBaAJLvvx Ad8s1r/UVDZFbMLm5jJO+pVLSCNxejAoGez9AYnqSmoVirXntlFwMh3+JJYwFu7P HDKB4lRYGg4zxVMa1eggEZE6MgFjJRTTEp+heoPpTu2DyARVLwkO3pUrSSQTJJo5 WAOBZGlgn6XBqx8gBSl0wnXRweFPUAHJqGH6D5mzyVM9jGh2qde2BmoteP3UJG8C izFvPQsOQBpSVkj+wbl7UmQHcAAn9l+uWkmzXQhU2NvkwKPSpMffu8XpG9df7UMz txAUeF8dUCuL3dbSGOctbfTLU+UCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFFxVkYEwaYbuiarfChz8eOqKCTUwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wZmE4MWU2ZS00YjE2LTRiNjItOGYxOC01Mjg5MmU1NGI5MGQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzBmYTgxZTZl LTRiMTYtNGI2Mi04ZjE4LTUyODkyZTU0YjkwZC8wLzVDNTU5MTgxMzA2OTg2RUU4 OUFBREYwQTFDRkM3OEVBOEEwOTM1MzAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABn+oEwDQYJKoZIhvcNAQELBQADggEBABGIapWw2+D8ZKQ5qSklyH2gErB370TU 3fc6C4Ii+JqP6qfwTgjiIBk4FUlp7gm9cvo+hVEzzk81WxI0iSM7DH+lr2iXxu5s 71mpA3BtX3IR/T+N6gl/NZKMOgy2GK28bXdNaLAxQJ8N7H63FylPrzRuSMWjKl+s X/ie8sojgfoKo/NmeoqQor1rb++ri/DtXdeJlfAAiOdnCfmswMKaBcGPok6X10iG 2EyVS76te5PQuexLPOH+bxKJ4n2qFf1vSCLlFJzvqP6F+FiXHFRIhf659MlJYgiy 5njjCfiVUjg+U/40ZFPbDNVNrvu9Hx2j5Vp5oB8OH6/s9ZTFxFF2+VY= -----END CERTIFICATE-----Generated at Wed May 8 14:59:52 2024 by rpki-client on console-ams.rpki-client.org