$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer File: 5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.cer (raw, json) Hash identifier: v/nFUyHC4Mlc+760iEOCUFOKq5cJ81bERiQMVoblroY= Subject key identifier: 5E:02:7C:2A:BE:4A:1F:46:34:0E:D8:3A:3A:D8:F0:6D:BC:CD:CD:21 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 2DA744863E1358D9D668082927DAD78521C30708 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.mft caRepository: rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 22 Nov 2023 16:08:41 +0000 Certificate not after: Wed 20 Nov 2024 16:13:41 +0000 Subordinate resources: IP: 103.179.136.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:a7:44:86:3e:13:58:d9:d6:68:08:29:27:da:d7:85:21:c3:07:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Nov 22 16:08:41 2023 GMT Not After : Nov 20 16:13:41 2024 GMT Subject: CN=5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:1b:05:2c:52:c3:8e:a5:49:81:30:d7:23:e8: f8:5d:31:08:41:0e:34:a0:23:38:c6:e9:60:6e:07: 87:43:b9:34:39:20:2f:30:60:e5:cb:6c:0c:f9:9a: 2e:c8:f8:72:81:6f:c6:c3:f1:bb:b7:2c:b7:b5:70: f0:6d:f8:9a:30:56:89:b3:f7:8a:92:14:71:8f:b7: 08:da:f1:76:70:4e:90:ce:e1:cb:66:a2:8d:99:23: 7c:44:4f:8f:3c:21:b1:16:8a:f2:f9:fb:b8:a3:f9: 6f:63:1b:9d:0f:a9:5f:03:cd:98:ae:7a:27:fc:80: 05:fc:93:16:c0:7d:67:a4:7b:57:4e:5f:a4:2b:74: ca:78:4c:3d:5f:f2:b1:24:03:1f:c0:02:5b:de:74: d9:d3:45:d9:cf:f5:cb:bc:ce:d8:b9:50:49:32:54: 8b:79:b8:2e:93:35:49:b0:77:23:37:58:b2:8b:d3: 7a:96:5e:e5:1a:fd:04:75:fd:8d:0a:db:df:45:25: e4:fe:cd:29:52:9e:2c:79:59:9d:80:4c:ad:1b:43: aa:8a:d7:1d:e3:ad:c9:c5:9c:42:d3:15:f4:ab:94: b9:35:c4:c3:92:61:bb:d7:e3:00:85:d5:60:5a:9a: 1d:55:14:a6:00:b3:9f:83:2b:70:b3:34:80:08:39: e8:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 5E:02:7C:2A:BE:4A:1F:46:34:0E:D8:3A:3A:D8:F0:6D:BC:CD:CD:21 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/6d80b321-aa31-4317-9d31-c2bd190c1384/0/5E027C2ABE4A1F46340ED83A3AD8F06DBCCDCD21.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.179.136.0/23 Signature Algorithm: sha256WithRSAEncryption 5f:3a:c7:b8:d4:62:66:b4:de:4c:7f:40:c4:aa:33:77:d4:71: f1:42:ca:15:d7:9b:20:bd:17:2c:4b:d7:96:9b:12:22:de:c2: 14:a7:22:4f:3b:44:20:98:84:0f:b4:5f:6f:8f:8e:eb:84:4a: 02:e9:3a:df:7a:9a:22:b6:8c:8e:9a:71:24:46:22:19:1f:f9: 13:db:86:ec:61:9e:40:65:83:23:b8:f7:2b:21:9c:8d:b0:6c: b1:e6:70:7c:d0:bc:68:76:bf:ab:68:2c:5b:4e:a6:f4:d9:b4: 90:5d:a5:89:35:98:da:0d:dd:d6:99:f7:81:3c:cc:6d:03:4c: 10:68:24:59:0d:e5:8a:c6:fa:7a:aa:4c:17:7e:56:37:63:aa: 4b:65:6e:4e:cf:a1:e5:a9:aa:e9:2e:1f:72:ee:58:c9:53:72: 9f:53:25:ef:bc:e6:d6:00:49:36:19:d5:e4:2e:66:6f:31:72: 6a:a2:05:99:8f:f2:cf:ec:bc:f8:7f:3a:42:36:eb:d2:50:f6: 82:46:9e:8c:6f:45:0d:12:ef:5c:76:10:86:72:24:aa:30:af: f9:20:e7:1b:67:4a:15:94:e9:c9:ad:49:20:4a:12:64:0c:aa: dc:47:12:03:49:0b:43:6f:b9:a9:e5:c9:7f:6a:0c:4f:9e:91: bd:24:75:65 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIULadEhj4TWNnWaAgpJ9rXhSHDBwgwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTEyMjE2MDg0MVoX DTI0MTEyMDE2MTM0MVowMzExMC8GA1UEAxMoNUUwMjdDMkFCRTRBMUY0NjM0MEVE ODNBM0FEOEYwNkRCQ0NEQ0QyMTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANcbBSxSw46lSYEw1yPo+F0xCEEONKAjOMbpYG4Hh0O5NDkgLzBg5ctsDPma Lsj4coFvxsPxu7cst7Vw8G34mjBWibP3ipIUcY+3CNrxdnBOkM7hy2aijZkjfERP jzwhsRaK8vn7uKP5b2MbnQ+pXwPNmK56J/yABfyTFsB9Z6R7V05fpCt0ynhMPV/y sSQDH8ACW9502dNF2c/1y7zO2LlQSTJUi3m4LpM1SbB3IzdYsovTepZe5Rr9BHX9 jQrb30Ul5P7NKVKeLHlZnYBMrRtDqorXHeOtycWcQtMV9KuUuTXEw5Jhu9fjAIXV YFqaHVUUpgCzn4MrcLM0gAg56JMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFF4CfCq+Sh9GNA7YOjrY8G28zc0hMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82ZDgwYjMyMS1hYTMxLTQzMTctOWQzMS1jMmJkMTkwYzEzODQvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzZkODBiMzIx LWFhMzEtNDMxNy05ZDMxLWMyYmQxOTBjMTM4NC8wLzVFMDI3QzJBQkU0QTFGNDYz NDBFRDgzQTNBRDhGMDZEQkNDRENEMjEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFns4gwDQYJKoZIhvcNAQELBQADggEBAF86x7jUYma03kx/QMSqM3fUcfFCyhXX myC9FyxL15abEiLewhSnIk87RCCYhA+0X2+PjuuESgLpOt96miK2jI6acSRGIhkf +RPbhuxhnkBlgyO49yshnI2wbLHmcHzQvGh2v6toLFtOpvTZtJBdpYk1mNoN3daZ 94E8zG0DTBBoJFkN5YrG+nqqTBd+Vjdjqktlbk7PoeWpqukuH3LuWMlTcp9TJe+8 5tYASTYZ1eQuZm8xcmqiBZmP8s/svPh/OkI269JQ9oJGnoxvRQ0S71x2EIZyJKow r/kg5xtnShWU6cmtSSBKEmQMqtxHEgNJC0NvuanlyX9qDE+ekb0kdWU= -----END CERTIFICATE-----Generated at Wed May 8 09:50:30 2024 by rpki-client on console-fra.rpki-client.org