$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/6D958AAEBD8946E47C968284B2652E02A2017E9E.cer File: 6D958AAEBD8946E47C968284B2652E02A2017E9E.cer (raw, json) Hash identifier: kECp3T55Fm8N7t4L7JBaBed611Pvnf9SaZPtYpFdjDA= Subject key identifier: 6D:95:8A:AE:BD:89:46:E4:7C:96:82:84:B2:65:2E:02:A2:01:7E:9E Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 536A9BF702E8DCF319A6048244748732747D26C9 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/d1803125-d777-4056-844d-8d1befd0163d/0/6D958AAEBD8946E47C968284B2652E02A2017E9E.mft caRepository: rsync://repo-rpki.idnic.net/repo/d1803125-d777-4056-844d-8d1befd0163d/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 06 Feb 2024 06:08:45 +0000 Certificate not after: Tue 04 Feb 2025 06:13:45 +0000 Subordinate resources: IP: 103.167.156.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:6a:9b:f7:02:e8:dc:f3:19:a6:04:82:44:74:87:32:74:7d:26:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Feb 6 06:08:45 2024 GMT Not After : Feb 4 06:13:45 2025 GMT Subject: CN=6D958AAEBD8946E47C968284B2652E02A2017E9E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c7:50:7c:7c:dc:a7:33:4b:9e:3c:9a:55:2e: 62:66:04:b0:dd:e2:01:9c:cf:28:11:04:4f:e9:b6: d3:9f:c7:fd:37:f6:c2:56:2c:27:2c:f1:b5:ab:8f: d8:c4:8a:ae:e8:ee:e2:5b:a5:ad:a8:41:f4:0b:f7: 05:d2:0e:47:5d:fa:73:08:30:e7:63:e7:00:ed:c8: 0c:f5:53:1f:93:f0:01:97:4a:d0:30:5c:af:96:e1: 74:59:e1:3a:2f:ac:ff:10:4f:e1:77:16:ef:be:d0: 94:58:7f:dd:9c:8a:8d:ac:c7:4a:4f:e7:0e:d7:6a: 28:fb:29:9f:1d:bc:34:32:96:55:8e:41:6e:f1:83: b3:c5:1e:6a:42:dc:8a:72:81:5a:c3:7f:04:7e:a9: 8a:3a:79:16:8a:cb:12:c3:aa:fc:e1:6c:5a:76:17: 71:fe:dd:95:cc:f2:72:b8:d4:9e:78:f8:e4:ac:3a: ca:63:51:3b:67:b8:d5:39:99:e6:04:51:95:88:63: 30:30:a8:48:2c:63:74:fb:c1:b6:e7:07:6f:ea:fc: 5e:2d:1a:9a:ce:a1:7f:a3:2e:33:29:a7:89:0e:ae: 61:ba:9e:8b:9b:aa:f1:fd:fa:52:f4:07:d9:af:42: 4a:96:c7:80:52:1b:8d:46:7d:bc:8b:c5:61:17:34: 4d:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 6D:95:8A:AE:BD:89:46:E4:7C:96:82:84:B2:65:2E:02:A2:01:7E:9E X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/d1803125-d777-4056-844d-8d1befd0163d/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/d1803125-d777-4056-844d-8d1befd0163d/0/6D958AAEBD8946E47C968284B2652E02A2017E9E.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.167.156.0/24 Signature Algorithm: sha256WithRSAEncryption 84:40:62:34:2c:f2:27:bd:b4:76:c4:18:98:4b:a4:2e:8d:fa: 41:97:3c:5e:5d:05:da:c5:c8:14:bc:3d:91:fd:46:be:73:5c: 16:09:36:4a:a3:f2:04:8a:77:42:c4:96:44:78:fb:a8:38:2d: ca:52:40:c9:1a:5a:74:cb:46:7a:40:1c:8d:a7:9d:89:60:85: 6c:cd:80:a0:20:3a:5a:70:93:6b:2f:bd:a0:a9:b6:92:d6:63: ae:0b:e3:e6:7b:83:a9:71:79:4d:89:02:f0:df:91:bd:7b:7f: 35:ea:25:d5:3f:8a:97:49:14:be:7b:49:ad:12:91:6b:48:f6: e4:71:96:63:a6:c4:67:64:74:9f:70:76:27:62:70:a3:25:b1: 41:a6:d4:65:18:de:a1:dc:7f:ea:93:66:eb:d1:27:30:ba:21: 36:5d:d4:b5:bc:dc:01:6d:21:ec:f1:c3:06:f4:ae:61:e4:16: 34:fd:26:58:fd:fa:24:b8:c9:f6:53:ff:68:88:bb:3c:9c:fc: 33:c5:df:dd:50:91:d0:ba:da:99:71:7d:fd:2b:75:3f:3a:79: a0:dd:3e:ce:91:ca:ba:01:d6:b6:fe:e9:24:7f:c9:f0:7e:55: d1:da:86:ad:df:6f:a1:2a:13:12:6f:25:97:8e:25:72:f4:b7: 88:6b:0e:da -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUU2qb9wLo3PMZpgSCRHSHMnR9JskwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDIwNjA2MDg0NVoX DTI1MDIwNDA2MTM0NVowMzExMC8GA1UEAxMoNkQ5NThBQUVCRDg5NDZFNDdDOTY4 Mjg0QjI2NTJFMDJBMjAxN0U5RTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKvHUHx83KczS548mlUuYmYEsN3iAZzPKBEET+m205/H/Tf2wlYsJyzxtauP 2MSKruju4lulrahB9Av3BdIOR136cwgw52PnAO3IDPVTH5PwAZdK0DBcr5bhdFnh Oi+s/xBP4XcW777QlFh/3ZyKjazHSk/nDtdqKPspnx28NDKWVY5BbvGDs8UeakLc inKBWsN/BH6pijp5ForLEsOq/OFsWnYXcf7dlczycrjUnnj45Kw6ymNRO2e41TmZ 5gRRlYhjMDCoSCxjdPvBtucHb+r8Xi0ams6hf6MuMymniQ6uYbqei5uq8f36UvQH 2a9CSpbHgFIbjUZ9vIvFYRc0TSsCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFG2Viq69iUbkfJaChLJlLgKiAX6eMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9kMTgwMzEyNS1kNzc3LTQwNTYtODQ0ZC04ZDFiZWZkMDE2M2QvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2QxODAzMTI1 LWQ3NzctNDA1Ni04NDRkLThkMWJlZmQwMTYzZC8wLzZEOTU4QUFFQkQ4OTQ2RTQ3 Qzk2ODI4NEIyNjUyRTAyQTIwMTdFOUUubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnp5wwDQYJKoZIhvcNAQELBQADggEBAIRAYjQs8ie9tHbEGJhLpC6N+kGXPF5d BdrFyBS8PZH9Rr5zXBYJNkqj8gSKd0LElkR4+6g4LcpSQMkaWnTLRnpAHI2nnYlg hWzNgKAgOlpwk2svvaCptpLWY64L4+Z7g6lxeU2JAvDfkb17fzXqJdU/ipdJFL57 Sa0SkWtI9uRxlmOmxGdkdJ9wdidicKMlsUGm1GUY3qHcf+qTZuvRJzC6ITZd1LW8 3AFtIezxwwb0rmHkFjT9Jlj9+iS4yfZT/2iIuzyc/DPF391QkdC62plxff0rdT86 eaDdPs6RyroB1rb+6SR/yfB+VdHahq3fb6EqExJvJZeOJXL0t4hrDto= -----END CERTIFICATE-----Generated at Wed May 8 09:50:31 2024 by rpki-client on console-fra.rpki-client.org