$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5DF7F909917C4DA09D7486E2B70323E7972B7675.cer File: 5DF7F909917C4DA09D7486E2B70323E7972B7675.cer (raw, json) Hash identifier: 7kqkpW5ZZmmqkyxlVv5i9tYr6Ga481+dwuU7kJb2LYU= Subject key identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 123718D3605735E7997CB191B42C643ED1674228 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft caRepository: rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 20 Mar 2024 16:27:28 +0000 Certificate not after: Wed 19 Mar 2025 16:32:28 +0000 Subordinate resources: IP: 103.186.167.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:37:18:d3:60:57:35:e7:99:7c:b1:91:b4:2c:64:3e:d1:67:42:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Mar 20 16:27:28 2024 GMT Not After : Mar 19 16:32:28 2025 GMT Subject: CN=5DF7F909917C4DA09D7486E2B70323E7972B7675 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:6b:fa:d1:43:ad:e1:c7:18:fa:8e:98:4d:47: da:d9:2f:7b:d2:ca:f5:eb:3b:bf:96:b5:bc:26:23: eb:c8:32:dc:e4:cf:d5:94:14:97:97:4e:55:04:06: 4b:e4:0f:8d:b3:16:10:5d:dc:a1:62:48:3e:f1:a8: 9e:56:ec:61:06:8a:67:92:33:b2:b5:07:5d:d1:6b: a4:eb:7f:6e:55:8f:b8:a2:6b:d2:61:e3:57:4e:60: 06:8c:aa:48:d4:8b:5f:c0:e1:97:2e:8b:12:27:af: 50:05:86:ff:af:0d:ec:82:e2:59:81:b3:bc:c2:23: 9e:ff:e7:b2:7d:1d:fe:7d:69:c3:7b:26:82:0d:f0: 77:ae:0c:be:80:bb:e7:39:b1:58:f4:fe:7e:9a:f8: 99:fd:73:6f:65:7d:cd:ee:2b:92:2f:11:9a:0c:61: 5d:9e:b7:9c:7c:67:8b:5f:c6:16:a7:f5:b8:63:68: fa:2b:e0:a2:ab:07:e7:5b:4d:e2:65:9d:66:da:c5: 07:42:6b:ed:eb:03:5b:ea:ca:a4:b6:4f:1a:8f:9a: 44:ed:0f:5e:2a:96:fd:69:cc:7e:67:47:d8:e3:5d: a7:80:5b:75:b8:8a:18:29:c2:da:6a:ac:cf:cc:47: 29:dc:8c:90:e4:4d:e3:46:4d:40:27:7d:c8:49:55: dd:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5D:F7:F9:09:91:7C:4D:A0:9D:74:86:E2:B7:03:23:E7:97:2B:76:75 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d7b64c3e-b13d-427a-b982-4394073e5cf5/0/5DF7F909917C4DA09D7486E2B70323E7972B7675.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.186.167.0/24 Signature Algorithm: sha256WithRSAEncryption 12:dd:f7:2f:a0:96:92:a1:74:69:46:89:94:18:17:e5:fe:2a: 6e:fb:4b:aa:a0:2f:03:ce:f3:7d:ff:e6:1a:89:9b:79:65:5b: e9:c9:84:8a:39:ed:4c:7a:b8:e1:84:77:3e:64:e3:96:cc:3e: e6:60:1c:29:6f:c7:25:57:c8:62:67:9d:1d:65:89:05:3b:60: c7:9a:36:e4:3d:84:b7:da:37:40:61:c1:39:c1:6b:4f:47:dd: 16:30:d0:96:dd:d6:66:a9:7a:25:45:8e:4d:51:8b:d9:69:b3: 22:1a:b6:fb:a4:43:ff:6a:e3:28:3f:df:d5:63:30:41:9a:c4: 08:e3:d7:d7:de:87:bd:48:4c:9f:6e:6b:13:3b:14:57:f0:8d: 31:17:17:c5:8a:c9:46:34:53:be:a4:a3:fc:c3:f8:c2:73:2d: 08:54:a9:5f:7b:85:a1:a5:ae:14:62:d9:d7:01:6e:74:cf:57: ae:43:a9:3e:77:5d:6d:8c:6b:88:ed:26:10:57:3c:db:65:7a: dc:99:55:d3:a3:d7:7a:d9:32:13:95:ad:eb:d0:d3:da:b9:0b: 20:5e:60:8e:06:1b:6d:da:4b:3a:95:74:d2:2b:3b:4a:3a:b8: 90:2f:22:6a:33:d0:49:cc:90:34:96:79:6e:a3:f6:77:39:bc: dd:1f:6e:97 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUEjcY02BXNeeZfLGRtCxkPtFnQigwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDMyMDE2MjcyOFoX DTI1MDMxOTE2MzIyOFowMzExMC8GA1UEAxMoNURGN0Y5MDk5MTdDNERBMDlENzQ4 NkUyQjcwMzIzRTc5NzJCNzY3NTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAORr+tFDreHHGPqOmE1H2tkve9LK9es7v5a1vCYj68gy3OTP1ZQUl5dOVQQG S+QPjbMWEF3coWJIPvGonlbsYQaKZ5IzsrUHXdFrpOt/blWPuKJr0mHjV05gBoyq SNSLX8Dhly6LEievUAWG/68N7ILiWYGzvMIjnv/nsn0d/n1pw3smgg3wd64MvoC7 5zmxWPT+fpr4mf1zb2V9ze4rki8RmgxhXZ63nHxni1/GFqf1uGNo+ivgoqsH51tN 4mWdZtrFB0Jr7esDW+rKpLZPGo+aRO0PXiqW/WnMfmdH2ONdp4BbdbiKGCnC2mqs z8xHKdyMkORN40ZNQCd9yElV3VUCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFF33+QmRfE2gnXSG4rcDI+eXK3Z1MB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kN2I2NGMzZS1iMTNkLTQyN2EtYjk4Mi00Mzk0MDczZTVjZjUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2Q3YjY0YzNl LWIxM2QtNDI3YS1iOTgyLTQzOTQwNzNlNWNmNS8wLzVERjdGOTA5OTE3QzREQTA5 RDc0ODZFMkI3MDMyM0U3OTcyQjc2NzUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnuqcwDQYJKoZIhvcNAQELBQADggEBABLd9y+glpKhdGlGiZQYF+X+Km77S6qg LwPO833/5hqJm3llW+nJhIo57Ux6uOGEdz5k45bMPuZgHClvxyVXyGJnnR1liQU7 YMeaNuQ9hLfaN0BhwTnBa09H3RYw0Jbd1mapeiVFjk1Ri9lpsyIatvukQ/9q4yg/ 39VjMEGaxAjj19feh71ITJ9uaxM7FFfwjTEXF8WKyUY0U76ko/zD+MJzLQhUqV97 haGlrhRi2dcBbnTPV65DqT53XW2Ma4jtJhBXPNtletyZVdOj13rZMhOVrevQ09q5 CyBeYI4GG23aSzqVdNIrO0o6uJAvImoz0EnMkDSWeW6j9nc5vN0fbpc= -----END CERTIFICATE-----Generated at Wed May 8 14:59:52 2024 by rpki-client on console-ams.rpki-client.org