$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/90173425DBB7D1DBD164BBA26F4657B17A266A97.cer File: 90173425DBB7D1DBD164BBA26F4657B17A266A97.cer (raw, json) Hash identifier: PmeKsxlw8ZYJ3FEhTu+gQaVn8tNTA/YH2ibqq0/Psb0= Subject key identifier: 90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5AD916B02EE2BB97ACEF6CBB5DB4CBB8BA194ECC Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.mft caRepository: rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Mon 31 Jul 2023 08:52:24 +0000 Certificate not after: Mon 29 Jul 2024 08:57:24 +0000 Subordinate resources: IP: 103.82.126.0/23 IP: 2001:df7:7a00::/48 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 17:47:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:d9:16:b0:2e:e2:bb:97:ac:ef:6c:bb:5d:b4:cb:b8:ba:19:4e:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jul 31 08:52:24 2023 GMT Not After : Jul 29 08:57:24 2024 GMT Subject: CN=90173425DBB7D1DBD164BBA26F4657B17A266A97 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c1:25:11:3e:41:a4:58:4b:52:77:d7:d7:e7: f4:ae:ed:4d:ce:81:5c:c5:2c:18:3e:18:c6:22:f1: c7:b6:8d:ff:4b:47:60:0b:ff:43:3b:ea:74:e9:9b: e9:13:22:14:59:bd:e9:9e:e8:ce:47:72:a5:14:94: 75:fe:1e:1d:a2:01:02:2c:bd:a0:83:f2:28:98:1d: 04:4b:7b:2c:35:4f:d5:0c:19:2d:ca:45:ba:05:0c: 5c:9d:30:69:0c:85:cc:3f:27:0b:98:b6:b6:2e:68: 21:52:04:22:77:ed:22:6e:60:e7:61:bf:a3:76:05: 39:c0:2b:11:c1:7f:39:68:31:a2:a5:ef:7f:bf:a7: ab:5e:1a:2f:17:90:61:cd:fa:42:eb:2a:d0:8e:27: 72:af:f2:81:8d:15:e0:cb:8f:44:71:c0:46:9e:89: 84:a2:1b:bf:12:ff:ee:d5:ec:82:1b:4b:af:14:cc: 9d:3b:e4:62:8c:50:7a:6a:94:ac:b2:34:e8:79:be: 39:39:db:3b:b7:77:bd:a9:93:77:4f:f9:f5:25:c5: 9d:ff:82:ba:15:dc:94:e9:0d:93:0e:a1:3d:e8:77: 10:1c:84:21:61:4b:d0:62:fa:10:6f:86:b9:ae:59: 9d:f8:de:b2:1f:f9:b4:59:fa:a0:47:82:0c:05:8d: ad:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 90:17:34:25:DB:B7:D1:DB:D1:64:BB:A2:6F:46:57:B1:7A:26:6A:97 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/5bd4340b-21c4-4fc7-a259-e2354c53fdd2/0/90173425DBB7D1DBD164BBA26F4657B17A266A97.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.82.126.0/23 IPv6: 2001:df7:7a00::/48 Signature Algorithm: sha256WithRSAEncryption 39:8c:e3:7e:d1:f7:2d:11:48:7a:c2:de:70:9a:eb:fe:85:ba: 09:bc:5f:ab:18:c4:de:8b:9e:b1:e4:f1:d3:6b:d8:eb:71:ea: 02:f9:df:e9:a4:c3:7c:ff:bb:ec:4e:4b:bf:4b:ab:aa:f9:22: b5:67:95:9f:58:73:33:57:2b:54:9c:8f:84:17:f3:f3:42:d5: 97:16:a3:b6:5c:86:98:b0:33:06:5e:17:76:e9:3d:82:96:62: 8b:95:1a:10:e6:75:5b:02:5c:72:97:1d:c6:38:e7:d3:d7:c2: 96:51:af:a5:c7:3e:50:30:ab:2f:12:5b:23:77:df:86:da:2f: e6:98:5f:9a:41:6b:22:4c:26:dc:4b:54:ac:97:3b:8a:39:9f: b7:42:6b:b1:78:d3:9d:68:c8:ac:1d:19:e1:73:1b:d4:cf:c4: db:7f:1e:05:a0:9f:3e:df:e1:79:4e:99:19:75:fe:df:b3:b4: 0e:3e:68:b0:a9:a6:e7:b9:fd:53:5c:3c:80:1f:9c:a8:0b:a2: dd:a5:5f:dd:88:51:a9:52:20:96:23:27:dc:df:e4:1c:e4:8b: d4:35:fa:23:b9:41:ce:43:f8:d6:e6:54:78:0b:d2:e9:19:e6: 4c:c9:ed:e4:64:ec:cd:eb:80:8f:93:36:a2:d1:4e:72:13:5c: 70:09:9a:0c -----BEGIN CERTIFICATE----- MIIF1jCCBL6gAwIBAgIUWtkWsC7iu5es72y7XbTLuLoZTswwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMDczMTA4NTIyNFoX DTI0MDcyOTA4NTcyNFowMzExMC8GA1UEAxMoOTAxNzM0MjVEQkI3RDFEQkQxNjRC QkEyNkY0NjU3QjE3QTI2NkE5NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKTBJRE+QaRYS1J319fn9K7tTc6BXMUsGD4YxiLxx7aN/0tHYAv/QzvqdOmb 6RMiFFm96Z7ozkdypRSUdf4eHaIBAiy9oIPyKJgdBEt7LDVP1QwZLcpFugUMXJ0w aQyFzD8nC5i2ti5oIVIEInftIm5g52G/o3YFOcArEcF/OWgxoqXvf7+nq14aLxeQ Yc36Qusq0I4ncq/ygY0V4MuPRHHARp6JhKIbvxL/7tXsghtLrxTMnTvkYoxQemqU rLI06Hm+OTnbO7d3vamTd0/59SXFnf+CuhXclOkNkw6hPeh3EByEIWFL0GL6EG+G ua5Znfjesh/5tFn6oEeCDAWNrdsCAwEAAaOCAskwggLFMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJAXNCXbt9Hb0WS7om9GV7F6JmqXMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by81YmQ0MzQwYi0yMWM0LTRmYzctYTI1OS1lMjM1NGM1M2ZkZDIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzViZDQzNDBi LTIxYzQtNGZjNy1hMjU5LWUyMzU0YzUzZmRkMi8wLzkwMTczNDI1REJCN0QxREJE MTY0QkJBMjZGNDY1N0IxN0EyNjZBOTcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwMAYIKwYBBQUHAQcBAf8EITAfMAwEAgABMAYD BAFnUn4wDwQCAAIwCQMHACABDfd6ADANBgkqhkiG9w0BAQsFAAOCAQEAOYzjftH3 LRFIesLecJrr/oW6CbxfqxjE3oueseTx02vY63HqAvnf6aTDfP+77E5Lv0urqvki tWeVn1hzM1crVJyPhBfz80LVlxajtlyGmLAzBl4Xduk9gpZii5UaEOZ1WwJccpcd xjjn09fCllGvpcc+UDCrLxJbI3ffhtov5phfmkFrIkwm3EtUrJc7ijmft0JrsXjT nWjIrB0Z4XMb1M/E238eBaCfPt/heU6ZGXX+37O0Dj5osKmm57n9U1w8gB+cqAui 3aVf3YhRqVIgliMn3N/kHOSL1DX6I7lBzkP41uZUeAvS6RnmTMnt5GTszeuAj5M2 otFOchNccAmaDA== -----END CERTIFICATE-----Generated at Wed May 8 14:59:53 2024 by rpki-client on console-ams.rpki-client.org