$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/893997EF53FFBB5A3C55A47213135040C1C5B843.cer File: 893997EF53FFBB5A3C55A47213135040C1C5B843.cer (raw, json) Hash identifier: mRaCCWlo/MyQRnkLEDUQ271p7vFIZ44ZNtqbiDKDzgA= Subject key identifier: 89:39:97:EF:53:FF:BB:5A:3C:55:A4:72:13:13:50:40:C1:C5:B8:43 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0900FA11972CC8B3CC2AC3FC66AFA99261EBECCD Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/893997EF53FFBB5A3C55A47213135040C1C5B843.mft caRepository: rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 25 Apr 2024 14:18:21 +0000 Certificate not after: Thu 24 Apr 2025 14:23:21 +0000 Subordinate resources: IP: 103.192.81.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 10 May 2024 16:39:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:00:fa:11:97:2c:c8:b3:cc:2a:c3:fc:66:af:a9:92:61:eb:ec:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Apr 25 14:18:21 2024 GMT Not After : Apr 24 14:23:21 2025 GMT Subject: CN=893997EF53FFBB5A3C55A47213135040C1C5B843 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:9a:c5:bb:59:d7:51:39:65:ac:7d:1a:3d:ae: 4a:a1:4d:c1:a9:10:09:3c:bc:8e:36:ba:af:2d:48: fb:c7:9d:33:d7:34:37:25:d6:ae:d5:7f:38:e6:9f: 53:f1:f9:ae:86:96:b4:1e:33:af:3f:1e:4b:70:4f: ba:1a:8b:ec:f5:8b:f9:72:86:37:4a:56:a5:43:6a: 4b:94:d0:f2:ee:31:ed:fb:63:c5:fb:ee:2f:e8:60: 43:bf:86:94:7d:d2:a0:d4:a9:ff:b8:e5:e1:33:60: 0c:db:68:49:70:70:6f:3c:07:1e:18:75:0a:42:92: b3:9f:3e:af:a6:39:ee:3d:50:2e:52:af:30:16:3a: f5:ac:9e:48:14:28:f7:57:b4:4b:9f:22:a2:c5:11: 25:75:7a:5e:37:58:c1:92:2c:b0:0a:b8:65:fc:fd: a8:6b:d4:d1:e1:39:59:46:9b:9c:04:1e:de:19:00: 3e:1d:c4:92:a8:65:50:c6:f5:85:79:eb:c2:a5:17: 01:82:2b:b7:3a:6b:52:43:dc:b0:8a:9b:c5:72:46: 45:88:41:4d:53:a4:df:39:8d:32:31:69:3c:ff:0e: 44:36:3f:9b:eb:ee:11:ec:75:07:b9:2d:da:a3:02: 3f:0e:c8:00:12:1e:4c:61:6d:ec:11:6d:d6:ea:82: ef:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 89:39:97:EF:53:FF:BB:5A:3C:55:A4:72:13:13:50:40:C1:C5:B8:43 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/064ff7c9-e905-44d6-bc35-c7dbb070b757/0/893997EF53FFBB5A3C55A47213135040C1C5B843.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.192.81.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:90:c9:54:5e:f9:2f:ef:31:47:ee:c6:14:18:3d:03:64:0d: 2c:f9:78:d3:84:4d:12:e7:d4:3b:59:2a:fd:b5:5c:a9:d6:49: 11:7a:a7:26:b0:d1:b3:fd:62:92:ed:43:91:c4:93:7e:41:95: 2a:84:c2:e4:ac:d9:72:95:fe:9c:a8:62:4f:ef:97:4f:97:24: bb:33:ff:4f:a4:74:5c:79:b6:6b:0f:af:bd:df:26:68:e2:25: 17:a6:66:fb:2f:d4:ee:df:f8:14:2e:13:ef:27:3b:3d:b5:b7: 8e:d6:32:e5:62:16:ec:13:84:de:a5:85:b4:65:55:6b:1b:58: b0:78:eb:7c:74:fa:66:0e:0c:69:eb:25:8e:86:c1:b6:e1:be: 65:c1:2e:1f:4f:6d:96:2c:02:38:4f:aa:02:7d:31:eb:69:c8: c2:66:59:53:20:27:c4:00:14:70:43:89:1e:00:bb:83:8e:19: 15:9a:ba:ed:5e:70:84:67:eb:ba:3a:e9:2b:16:5c:60:e2:69: b4:45:65:29:2b:3c:ce:d1:87:9b:db:9f:45:f3:36:5d:51:68: af:66:73:ea:fa:1c:46:8e:7d:ea:2b:60:22:5a:4b:d2:0a:59: 2c:81:e8:88:2b:3a:0e:78:c3:51:35:14:21:ec:ae:73:9c:df: 68:03:c1:f6 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUCQD6EZcsyLPMKsP8Zq+pkmHr7M0wDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDQyNTE0MTgyMVoX DTI1MDQyNDE0MjMyMVowMzExMC8GA1UEAxMoODkzOTk3RUY1M0ZGQkI1QTNDNTVB NDcyMTMxMzUwNDBDMUM1Qjg0MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKGaxbtZ11E5Zax9Gj2uSqFNwakQCTy8jja6ry1I+8edM9c0NyXWrtV/OOaf U/H5roaWtB4zrz8eS3BPuhqL7PWL+XKGN0pWpUNqS5TQ8u4x7ftjxfvuL+hgQ7+G lH3SoNSp/7jl4TNgDNtoSXBwbzwHHhh1CkKSs58+r6Y57j1QLlKvMBY69ayeSBQo 91e0S58iosURJXV6XjdYwZIssAq4Zfz9qGvU0eE5WUabnAQe3hkAPh3EkqhlUMb1 hXnrwqUXAYIrtzprUkPcsIqbxXJGRYhBTVOk3zmNMjFpPP8ORDY/m+vuEex1B7kt 2qMCPw7IABIeTGFt7BFt1uqC768CAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFIk5l+9T/7taPFWkchMTUEDBxbhDMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8wNjRmZjdjOS1lOTA1LTQ0ZDYtYmMzNS1jN2RiYjA3MGI3NTcvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzA2NGZmN2M5 LWU5MDUtNDRkNi1iYzM1LWM3ZGJiMDcwYjc1Ny8wLzg5Mzk5N0VGNTNGRkJCNUEz QzU1QTQ3MjEzMTM1MDQwQzFDNUI4NDMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnwFEwDQYJKoZIhvcNAQELBQADggEBAG2QyVRe+S/vMUfuxhQYPQNkDSz5eNOE TRLn1DtZKv21XKnWSRF6pyaw0bP9YpLtQ5HEk35BlSqEwuSs2XKV/pyoYk/vl0+X JLsz/0+kdFx5tmsPr73fJmjiJRemZvsv1O7f+BQuE+8nOz21t47WMuViFuwThN6l hbRlVWsbWLB463x0+mYODGnrJY6GwbbhvmXBLh9PbZYsAjhPqgJ9MetpyMJmWVMg J8QAFHBDiR4Au4OOGRWauu1ecIRn67o66SsWXGDiabRFZSkrPM7Rh5vbn0XzNl1R aK9mc+r6HEaOfeorYCJaS9IKWSyB6IgrOg54w1E1FCHsrnOc32gDwfY= -----END CERTIFICATE-----Generated at Tue May 7 16:42:38 2024 by rpki-client on console-ams.rpki-client.org