$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/782659A7F6433029248A38A1C68F2E9971161391.cer File: 782659A7F6433029248A38A1C68F2E9971161391.cer (raw, json) Hash identifier: EW1iupMLwQqmnoxnvcjIIhThbgM0SlkxHPzmk4VwkU0= Subject key identifier: 78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5202D62785F898CF46EF13B8B7A42524B42B4435 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/782659A7F6433029248A38A1C68F2E9971161391.mft caRepository: rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 20 Dec 2023 04:15:32 +0000 Certificate not after: Wed 18 Dec 2024 04:20:32 +0000 Subordinate resources: IP: 103.55.252.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:02:d6:27:85:f8:98:cf:46:ef:13:b8:b7:a4:25:24:b4:2b:44:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 20 04:15:32 2023 GMT Not After : Dec 18 04:20:32 2024 GMT Subject: CN=782659A7F6433029248A38A1C68F2E9971161391 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:95:2c:dc:f2:36:06:49:65:fa:71:e0:62:99: cb:11:5b:92:c2:4e:1a:29:70:ea:93:85:00:ab:b9: af:b6:18:9b:20:2f:34:07:1e:77:90:3c:58:af:76: 1f:fd:04:a9:12:0e:20:47:51:d6:90:62:4b:48:4a: a7:05:48:cb:da:12:37:23:e8:97:7b:01:41:08:aa: 0e:50:90:a2:24:5d:d7:4a:6f:1c:31:b8:b3:ba:3c: 7c:1c:ff:7c:a0:e6:81:c2:f9:46:81:95:b7:d3:97: 46:51:39:a8:5a:ae:0e:b4:bb:0f:e0:f8:18:0f:0f: 87:04:37:11:f0:d4:72:0a:b2:11:e4:cf:15:6a:0a: f2:ed:92:81:07:d5:1b:02:0d:b0:34:76:a6:d3:29: 4a:21:af:70:a2:48:e5:38:79:42:59:43:cc:49:6d: 98:3b:04:b5:9a:a9:98:80:0e:31:96:d2:be:b8:91: 9f:8e:06:1f:cc:f3:29:20:39:c9:fe:ce:2c:47:27: ba:5d:c1:af:f2:f5:42:e6:0a:15:ac:61:91:db:b5: 10:fa:72:f6:4a:1d:7a:57:da:35:22:e0:a0:8e:11: f9:75:f6:ed:fa:bc:e8:ba:53:5d:5e:d0:42:4b:90: 87:eb:3c:88:fd:43:30:7f:16:88:79:ef:de:27:8b: e6:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 78:26:59:A7:F6:43:30:29:24:8A:38:A1:C6:8F:2E:99:71:16:13:91 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/414e04fa-7188-4f4f-81bb-330389f87015/0/782659A7F6433029248A38A1C68F2E9971161391.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.55.252.0/23 Signature Algorithm: sha256WithRSAEncryption 6d:d8:59:a1:80:f7:5b:9d:43:77:28:ec:50:98:f9:3b:ec:03: fb:a3:34:41:89:2f:8c:66:a5:1e:57:a5:70:d2:57:bb:8b:4c: c3:4a:b4:be:0a:5d:db:82:09:cf:e5:26:53:f5:3b:a7:ef:51: 71:12:9c:dc:ff:97:c1:f1:a6:14:dd:3b:75:6d:c3:5a:11:6d: 3b:3a:00:42:84:03:04:d6:8f:ed:4b:59:a2:7d:d9:3d:d8:c4: 57:39:80:18:18:6a:71:dd:f7:c8:33:2a:cd:c8:c2:48:0b:4c: dc:bc:91:14:03:97:50:61:5b:ea:58:40:9b:2f:19:4d:c2:df: 52:c8:50:65:6a:c3:1d:04:39:d1:98:c6:c7:bb:41:5a:ff:89: 11:db:77:f1:81:a7:19:a6:57:e9:6e:9c:55:9e:c9:5c:8e:1a: 6b:67:6b:2c:fc:d9:cf:ea:ae:c5:ab:fc:52:f8:44:6d:4e:8c: 2e:c8:b2:b7:da:1b:f2:b5:0a:3f:96:7d:b5:e1:b2:36:69:a5: f5:41:e5:e0:5f:d9:c9:f8:f8:9e:b6:01:0d:33:11:6f:a8:3b: a4:22:dc:c5:71:08:bc:7f:a5:44:3b:f8:10:cc:29:41:46:d8: 62:24:50:2a:35:4d:ec:27:f7:d0:83:da:ed:77:6a:2a:ea:a9: a6:87:21:5b -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUUgLWJ4X4mM9G7xO4t6QlJLQrRDUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIyMDA0MTUzMloX DTI0MTIxODA0MjAzMlowMzExMC8GA1UEAxMoNzgyNjU5QTdGNjQzMzAyOTI0OEEz OEExQzY4RjJFOTk3MTE2MTM5MTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAOeVLNzyNgZJZfpx4GKZyxFbksJOGilw6pOFAKu5r7YYmyAvNAced5A8WK92 H/0EqRIOIEdR1pBiS0hKpwVIy9oSNyPol3sBQQiqDlCQoiRd10pvHDG4s7o8fBz/ fKDmgcL5RoGVt9OXRlE5qFquDrS7D+D4GA8PhwQ3EfDUcgqyEeTPFWoK8u2SgQfV GwINsDR2ptMpSiGvcKJI5Th5QllDzEltmDsEtZqpmIAOMZbSvriRn44GH8zzKSA5 yf7OLEcnul3Br/L1QuYKFaxhkdu1EPpy9kodelfaNSLgoI4R+XX27fq86LpTXV7Q QkuQh+s8iP1DMH8WiHnv3ieL5lMCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFHgmWaf2QzApJIo4ocaPLplxFhORMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80MTRlMDRmYS03MTg4LTRmNGYtODFiYi0zMzAzODlmODcwMTUvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzQxNGUwNGZh LTcxODgtNGY0Zi04MWJiLTMzMDM4OWY4NzAxNS8wLzc4MjY1OUE3RjY0MzMwMjky NDhBMzhBMUM2OEYyRTk5NzExNjEzOTEubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnN/wwDQYJKoZIhvcNAQELBQADggEBAG3YWaGA91udQ3co7FCY+TvsA/ujNEGJ L4xmpR5XpXDSV7uLTMNKtL4KXduCCc/lJlP1O6fvUXESnNz/l8HxphTdO3Vtw1oR bTs6AEKEAwTWj+1LWaJ92T3YxFc5gBgYanHd98gzKs3IwkgLTNy8kRQDl1BhW+pY QJsvGU3C31LIUGVqwx0EOdGYxse7QVr/iRHbd/GBpxmmV+lunFWeyVyOGmtnayz8 2c/qrsWr/FL4RG1OjC7IsrfaG/K1Cj+WfbXhsjZppfVB5eBf2cn4+J62AQ0zEW+o O6Qi3MVxCLx/pUQ7+BDMKUFG2GIkUCo1Tewn99CD2u13airqqaaHIVs= -----END CERTIFICATE-----Generated at Thu May 9 00:37:01 2024 by rpki-client on console-fra.rpki-client.org