$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.cer File: 917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.cer (raw, json) Hash identifier: JISh2Kqw5yllBmmi+NqlhmAaBLbvkjqdaExM6IE8NFw= Subject key identifier: 91:7A:9D:24:BF:1E:AD:6F:A4:A1:F8:FD:81:D5:31:37:EF:52:E7:84 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5DE4640897B2CD81703DCE68C7556E96D0E96B59 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.mft caRepository: rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Wed 03 Jan 2024 18:22:28 +0000 Certificate not after: Wed 01 Jan 2025 18:27:28 +0000 Subordinate resources: IP: 103.164.12.0/23 IP: 2400:4be0::/32 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 12 May 2024 00:20:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:e4:64:08:97:b2:cd:81:70:3d:ce:68:c7:55:6e:96:d0:e9:6b:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 3 18:22:28 2024 GMT Not After : Jan 1 18:27:28 2025 GMT Subject: CN=917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:2f:9c:ee:f9:04:0a:ed:3a:94:7a:c5:9d:e1: 28:e7:64:a6:96:95:24:c0:44:bf:6c:b1:6f:6b:3e: 03:0d:84:a3:d6:30:e5:7a:08:fa:4c:d8:4c:72:a5: 1c:ba:5b:26:5e:38:e6:3b:cb:93:14:d9:8c:be:60: bf:b3:de:82:a7:d1:6c:cd:ee:74:0d:79:c9:be:4d: 9f:00:c3:77:13:62:5a:54:b8:53:46:0d:bb:c7:a4: 98:53:29:2d:11:b5:7e:01:fe:fd:2b:75:07:01:86: c1:00:55:df:a9:4c:3b:17:fb:a1:2f:56:01:9d:8b: fc:7b:7d:d3:6e:74:20:da:27:d7:a7:bd:61:2e:4d: d9:68:bc:7f:54:33:a5:76:2a:9f:6a:19:20:c7:a3: 35:5d:45:81:f4:44:21:f5:97:93:c1:d8:99:26:02: 72:57:30:5c:b0:08:b3:03:f8:c6:f5:07:98:04:b6: 00:2d:43:27:5c:92:94:70:4b:6a:9c:78:e6:1a:d0: b3:0f:cf:d0:dc:a5:4b:c5:5f:d9:6a:34:5a:2f:d7: db:54:3d:00:5c:35:5d:92:1b:ce:7e:29:ae:93:88: 27:ae:a2:16:41:76:20:a5:d6:11:c1:19:4b:6e:b9: ff:1b:61:28:13:5b:00:59:27:a9:83:89:06:87:0d: 4b:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: 91:7A:9D:24:BF:1E:AD:6F:A4:A1:F8:FD:81:D5:31:37:EF:52:E7:84 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/1bdff819-2bad-483d-9fa8-b6ebc484031a/0/917A9D24BF1EAD6FA4A1F8FD81D53137EF52E784.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.164.12.0/23 IPv6: 2400:4be0::/32 Signature Algorithm: sha256WithRSAEncryption 01:90:9d:4e:57:04:38:7e:01:2b:8b:10:7b:68:68:9d:b8:ac: b0:2b:02:62:14:ac:49:e4:57:6d:63:11:58:e0:ee:55:e1:78: be:9f:15:78:ff:73:18:64:a5:01:63:3e:a2:94:97:ee:92:81: 8a:fc:15:39:b1:2c:3d:37:67:d1:03:f7:a1:05:58:82:1b:27: de:aa:a6:f5:c2:95:06:d6:ff:7d:0b:09:0e:43:d0:b5:fb:eb: 21:ba:9e:9a:c9:2d:23:21:ee:db:19:ea:a7:1f:2a:eb:fd:ca: 9e:fd:f9:b1:a9:b3:35:8f:c8:d5:27:3e:8c:d3:62:12:68:14: 12:a8:b3:9d:84:18:0f:7c:a3:cd:4c:a5:48:14:56:19:ce:0d: fc:d7:53:1d:6f:25:b7:57:b2:33:c1:33:70:e0:17:ee:7f:7e: 40:04:07:79:05:23:53:6f:80:cc:a9:84:ca:4a:e0:ee:91:04: 48:6e:11:ff:f8:a8:39:b8:3f:1d:df:f8:76:04:72:3b:87:8f: 97:b0:cd:ec:e4:c2:22:57:ad:27:fe:90:23:55:f4:9b:39:7f: 79:50:89:15:78:59:79:17:8e:8e:a7:8a:4c:5d:a3:44:1e:a5: db:dc:43:6b:63:4d:2f:4d:06:1f:26:4d:25:e1:4b:22:43:77: e4:a5:10:6a -----BEGIN CERTIFICATE----- MIIF1DCCBLygAwIBAgIUXeRkCJeyzYFwPc5ox1VultDpa1kwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDEwMzE4MjIyOFoX DTI1MDEwMTE4MjcyOFowMzExMC8GA1UEAxMoOTE3QTlEMjRCRjFFQUQ2RkE0QTFG OEZEODFENTMxMzdFRjUyRTc4NDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALcvnO75BArtOpR6xZ3hKOdkppaVJMBEv2yxb2s+Aw2Eo9Yw5XoI+kzYTHKl HLpbJl445jvLkxTZjL5gv7PegqfRbM3udA15yb5NnwDDdxNiWlS4U0YNu8ekmFMp LRG1fgH+/St1BwGGwQBV36lMOxf7oS9WAZ2L/Ht90250INon16e9YS5N2Wi8f1Qz pXYqn2oZIMejNV1FgfREIfWXk8HYmSYCclcwXLAIswP4xvUHmAS2AC1DJ1ySlHBL apx45hrQsw/P0NylS8Vf2Wo0Wi/X21Q9AFw1XZIbzn4prpOIJ66iFkF2IKXWEcEZ S265/xthKBNbAFknqYOJBocNSx8CAwEAAaOCAscwggLDMA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFJF6nSS/Hq1vpKH4/YHVMTfvUueEMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by8xYmRmZjgxOS0yYmFkLTQ4M2QtOWZhOC1iNmViYzQ4NDAzMWEvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzFiZGZmODE5 LTJiYWQtNDgzZC05ZmE4LWI2ZWJjNDg0MDMxYS8wLzkxN0E5RDI0QkYxRUFENkZB NEExRjhGRDgxRDUzMTM3RUY1MkU3ODQubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwLgYIKwYBBQUHAQcBAf8EHzAdMAwEAgABMAYD BAFnpAwwDQQCAAIwBwMFACQAS+AwDQYJKoZIhvcNAQELBQADggEBAAGQnU5XBDh+ ASuLEHtoaJ24rLArAmIUrEnkV21jEVjg7lXheL6fFXj/cxhkpQFjPqKUl+6SgYr8 FTmxLD03Z9ED96EFWIIbJ96qpvXClQbW/30LCQ5D0LX76yG6nprJLSMh7tsZ6qcf Kuv9yp79+bGpszWPyNUnPozTYhJoFBKos52EGA98o81MpUgUVhnODfzXUx1vJbdX sjPBM3DgF+5/fkAEB3kFI1NvgMyphMpK4O6RBEhuEf/4qDm4Px3f+HYEcjuHj5ew zezkwiJXrSf+kCNV9Js5f3lQiRV4WXkXjo6nikxdo0QepdvcQ2tjTS9NBh8mTSXh SyJDd+SlEGo= -----END CERTIFICATE-----Generated at Thu May 9 00:37:03 2024 by rpki-client on console-fra.rpki-client.org