$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/665ACFA171591B851B0550143E7029498F238AF0.cer File: 665ACFA171591B851B0550143E7029498F238AF0.cer (raw, json) Hash identifier: uoHvOKlLE469dQDqruCQmrfti/zqv9RYCiuxPUtbwfg= Subject key identifier: 66:5A:CF:A1:71:59:1B:85:1B:05:50:14:3E:70:29:49:8F:23:8A:F0 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 1CE668549E47A1A6A931A11CABA6E1C268899E3E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0/665ACFA171591B851B0550143E7029498F238AF0.mft caRepository: rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 14 Jun 2023 15:12:54 +0000 Certificate not after: Wed 12 Jun 2024 15:17:54 +0000 Subordinate resources: IP: 103.190.32.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:e6:68:54:9e:47:a1:a6:a9:31:a1:1c:ab:a6:e1:c2:68:89:9e:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jun 14 15:12:54 2023 GMT Not After : Jun 12 15:17:54 2024 GMT Subject: CN=665ACFA171591B851B0550143E7029498F238AF0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2b:9c:30:00:c4:52:7f:31:d9:39:f0:9b:93: 94:82:a0:63:bb:df:1f:d2:ca:46:fc:ba:97:32:c2: 2b:9d:e2:d0:27:90:91:33:7a:3e:89:b0:bf:4d:06: d2:2e:a2:50:77:76:b7:74:8f:6e:46:0c:41:f8:74: 58:ae:7b:2b:da:98:fd:48:5d:91:58:06:d7:29:68: 30:c4:ba:9e:70:32:95:ea:a2:7d:bc:31:e9:b0:20: 58:7f:ca:80:f8:08:02:d5:3c:f0:88:81:10:df:46: 58:d2:a9:17:1c:b8:a4:a9:56:0c:1a:c8:42:3a:92: c2:dd:77:56:ab:96:c5:c3:fc:53:96:11:ae:ac:37: 3e:34:11:b3:f1:82:69:0a:5a:71:8c:72:11:dc:dc: c9:0d:86:b9:24:8f:b6:c5:6e:f8:e4:30:7a:91:01: 08:40:34:24:a2:bf:98:a5:b7:48:76:ce:cf:c6:95: 8f:74:44:d8:b6:47:f1:ac:f9:df:6d:f7:f5:21:dd: cc:d2:97:18:95:33:23:fc:dd:7d:81:24:13:19:75: 6e:9a:d3:78:04:19:93:d3:82:16:67:2a:dd:7e:bb: 24:3c:7c:e0:b9:f6:6f:52:6c:fb:b4:20:66:5f:aa: 29:86:f6:8f:c0:2c:72:04:14:9b:e5:31:df:b8:e8: 63:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 66:5A:CF:A1:71:59:1B:85:1B:05:50:14:3E:70:29:49:8F:23:8A:F0 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/7bef6e8d-1ab0-41c4-b3ae-a200d17a821c/0/665ACFA171591B851B0550143E7029498F238AF0.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.190.32.0/23 Signature Algorithm: sha256WithRSAEncryption 26:8a:71:24:2a:d5:4a:45:3f:de:ad:37:26:e1:f6:20:a7:ed: 92:c7:15:ee:d7:40:ab:4f:39:1e:55:a3:60:7c:e7:a3:a1:5a: 30:94:0e:66:3a:f7:68:ce:67:28:e3:4f:00:71:84:76:36:ac: 97:77:11:cb:60:d4:92:88:c3:40:62:f2:24:11:95:e1:53:b2: 26:c2:64:50:d1:43:e8:84:18:eb:46:8c:73:18:58:ab:bf:9a: 79:6a:d6:be:57:62:fd:2f:78:af:25:55:d6:31:42:7d:f7:b6: 26:ca:ac:92:9c:d3:8d:6d:90:d0:7f:e3:e1:e5:72:78:b8:ee: 02:8a:1c:40:5a:e2:40:a2:a5:f9:95:eb:2e:5e:f6:35:80:2d: 38:3b:11:8b:2a:1b:f2:0c:f1:65:d7:95:32:b1:a9:72:5f:17: 84:9b:12:77:1b:6f:62:c9:cc:1a:dc:9c:cd:ea:1a:3e:1c:0e: 52:ec:4c:d5:24:8c:c5:c8:d8:b0:a2:38:54:a7:8e:ce:99:1a: 79:45:78:23:0c:19:f3:87:db:36:f3:5f:f9:42:8b:45:c5:cb: aa:9d:d7:c4:b0:26:8c:ac:6b:97:c3:3f:34:1c:db:ed:1f:66: 62:3e:1c:00:e6:b4:9a:8c:95:39:65:67:55:32:fd:37:e7:4b: 89:1a:77:b3 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUHOZoVJ5HoaapMaEcq6bhwmiJnj4wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDYxNDE1MTI1NFoX DTI0MDYxMjE1MTc1NFowMzExMC8GA1UEAxMoNjY1QUNGQTE3MTU5MUI4NTFCMDU1 MDE0M0U3MDI5NDk4RjIzOEFGMDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAN0rnDAAxFJ/Mdk58JuTlIKgY7vfH9LKRvy6lzLCK53i0CeQkTN6Pomwv00G 0i6iUHd2t3SPbkYMQfh0WK57K9qY/UhdkVgG1yloMMS6nnAyleqifbwx6bAgWH/K gPgIAtU88IiBEN9GWNKpFxy4pKlWDBrIQjqSwt13VquWxcP8U5YRrqw3PjQRs/GC aQpacYxyEdzcyQ2GuSSPtsVu+OQwepEBCEA0JKK/mKW3SHbOz8aVj3RE2LZH8az5 32339SHdzNKXGJUzI/zdfYEkExl1bprTeAQZk9OCFmcq3X67JDx84Ln2b1Js+7Qg Zl+qKYb2j8AscgQUm+Ux37joY08CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFGZaz6FxWRuFGwVQFD5wKUmPI4rwMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by83YmVmNmU4ZC0xYWIwLTQxYzQtYjNhZS1hMjAwZDE3YTgyMWMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzdiZWY2ZThk LTFhYjAtNDFjNC1iM2FlLWEyMDBkMTdhODIxYy8wLzY2NUFDRkExNzE1OTFCODUx QjA1NTAxNDNFNzAyOTQ5OEYyMzhBRjAubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnviAwDQYJKoZIhvcNAQELBQADggEBACaKcSQq1UpFP96tNybh9iCn7ZLHFe7X QKtPOR5Vo2B856OhWjCUDmY692jOZyjjTwBxhHY2rJd3Ectg1JKIw0Bi8iQRleFT sibCZFDRQ+iEGOtGjHMYWKu/mnlq1r5XYv0veK8lVdYxQn33tibKrJKc041tkNB/ 4+Hlcni47gKKHEBa4kCipfmV6y5e9jWALTg7EYsqG/IM8WXXlTKxqXJfF4SbEncb b2LJzBrcnM3qGj4cDlLsTNUkjMXI2LCiOFSnjs6ZGnlFeCMMGfOH2zbzX/lCi0XF y6qd18SwJoysa5fDPzQc2+0fZmI+HADmtJqMlTllZ1Uy/TfnS4kad7M= -----END CERTIFICATE-----Generated at Wed May 8 17:45:18 2024 by rpki-client on console-ams.rpki-client.org