$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/A5959C75F8AC190DC22C7C3276CF95834D5CA687.cer File: A5959C75F8AC190DC22C7C3276CF95834D5CA687.cer (raw, json) Hash identifier: +CUimt0drN24BN/M866MN6m+B+rBG+jddb1uPMrqx84= Subject key identifier: A5:95:9C:75:F8:AC:19:0D:C2:2C:7C:32:76:CF:95:83:4D:5C:A6:87 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 5C22CC0329B857242A22AF88AE9EA604758ED275 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/A5959C75F8AC190DC22C7C3276CF95834D5CA687.mft caRepository: rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Tue 05 Dec 2023 04:28:47 +0000 Certificate not after: Tue 03 Dec 2024 04:33:47 +0000 Subordinate resources: IP: 103.76.31.0/24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 18:02:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:22:cc:03:29:b8:57:24:2a:22:af:88:ae:9e:a6:04:75:8e:d2:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Dec 5 04:28:47 2023 GMT Not After : Dec 3 04:33:47 2024 GMT Subject: CN=A5959C75F8AC190DC22C7C3276CF95834D5CA687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ae:53:63:a1:3f:47:63:b5:f8:f1:01:a9:5d: ab:ba:1f:96:e5:ed:f7:21:33:a9:52:6a:b8:0b:30: 12:0b:0f:57:be:88:5a:6d:61:46:db:f4:97:5b:0a: 3d:7d:6c:40:72:b6:05:4c:77:fc:f0:62:bb:fe:65: 0a:90:72:17:fb:4c:f0:f2:13:81:af:6e:5e:c0:36: 55:65:c2:12:f8:fe:2f:56:c1:ae:50:8e:ab:73:4c: 32:3f:b9:82:cb:a4:18:90:4f:2e:1f:57:f1:df:d5: fe:ee:14:29:0e:46:4e:37:89:aa:ef:9f:d0:82:f1: 35:df:c1:98:4a:63:a2:f4:12:85:8c:0f:a7:2e:b9: cf:2e:56:9e:e9:c2:1b:8c:d3:6b:d4:43:fd:a9:91: 71:32:e4:c9:64:9d:ff:81:76:38:93:33:af:c5:54: 06:30:c4:5c:d2:51:6d:10:da:c0:ff:f0:1a:be:7b: f8:58:ea:77:c5:77:5f:82:19:7c:0e:db:23:c0:e5: 34:fe:e3:6e:00:df:06:1c:81:74:8d:50:6f:4b:e4: a6:8a:71:a0:ab:89:c1:85:b9:26:36:fe:38:07:cf: 00:9c:73:49:23:ef:4d:71:0b:ad:f4:92:ad:82:66: e0:ac:6c:88:46:a0:bb:59:77:1d:e7:04:28:68:7f: 13:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: A5:95:9C:75:F8:AC:19:0D:C2:2C:7C:32:76:CF:95:83:4D:5C:A6:87 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/4d61c750-880f-498b-a698-1f4780fa69ff/0/A5959C75F8AC190DC22C7C3276CF95834D5CA687.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.76.31.0/24 Signature Algorithm: sha256WithRSAEncryption 94:84:06:17:6e:f0:59:dc:d1:e3:5a:4e:06:a9:20:4a:ce:75: 4a:7c:ed:ba:2e:97:43:69:64:e1:7b:51:8e:49:1b:72:90:ab: 03:4f:31:6f:07:37:0d:a6:28:54:85:79:0d:c8:f4:90:79:59: 22:f1:25:0d:d6:66:7e:4c:24:58:59:c5:cb:43:05:bf:a8:e4: 33:14:3d:9d:e3:56:c0:f4:7d:98:34:aa:b5:e3:3a:d9:4e:d9: 6f:82:ff:51:85:29:55:2f:18:5b:49:5c:83:2d:94:e0:c5:30: 91:e8:1d:f6:19:2a:43:aa:af:ac:a5:25:61:8f:74:24:f7:4d: 49:6b:d5:3f:a8:94:86:78:75:f4:6d:8f:10:47:f1:90:71:f2: 53:3e:e0:45:e6:c3:a4:8a:23:35:58:96:0f:5a:02:a6:c2:bc: a0:eb:ef:ad:bb:12:f7:56:9b:1c:4f:66:49:dd:bc:c4:0d:ac: 1d:eb:9e:a0:c7:13:3d:8a:83:75:ac:f4:a9:49:df:12:21:72: bb:de:b0:d7:0c:e0:76:d6:f1:8e:d8:0a:76:f3:c9:3a:02:f9: 77:f7:14:96:9d:a2:cb:d7:b3:73:d4:e9:80:0a:07:ce:73:58: 31:3a:e5:8f:aa:7a:13:f7:24:c5:54:bf:f1:62:a9:12:0b:55: 85:ef:44:46 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUXCLMAym4VyQqIq+Irp6mBHWO0nUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTIwNTA0Mjg0N1oX DTI0MTIwMzA0MzM0N1owMzExMC8GA1UEAxMoQTU5NTlDNzVGOEFDMTkwREMyMkM3 QzMyNzZDRjk1ODM0RDVDQTY4NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJeuU2OhP0djtfjxAaldq7ofluXt9yEzqVJquAswEgsPV76IWm1hRtv0l1sK PX1sQHK2BUx3/PBiu/5lCpByF/tM8PITga9uXsA2VWXCEvj+L1bBrlCOq3NMMj+5 gsukGJBPLh9X8d/V/u4UKQ5GTjeJqu+f0ILxNd/BmEpjovQShYwPpy65zy5WnunC G4zTa9RD/amRcTLkyWSd/4F2OJMzr8VUBjDEXNJRbRDawP/wGr57+Fjqd8V3X4IZ fA7bI8DlNP7jbgDfBhyBdI1Qb0vkpopxoKuJwYW5Jjb+OAfPAJxzSSPvTXELrfSS rYJm4KxsiEagu1l3HecEKGh/E8ECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFKWVnHX4rBkNwix8MnbPlYNNXKaHMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by80ZDYxYzc1MC04ODBmLTQ5OGItYTY5OC0xZjQ3ODBmYTY5ZmYvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzRkNjFjNzUw LTg4MGYtNDk4Yi1hNjk4LTFmNDc4MGZhNjlmZi8wL0E1OTU5Qzc1RjhBQzE5MERD MjJDN0MzMjc2Q0Y5NTgzNEQ1Q0E2ODcubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BABnTB8wDQYJKoZIhvcNAQELBQADggEBAJSEBhdu8Fnc0eNaTgapIErOdUp87bou l0NpZOF7UY5JG3KQqwNPMW8HNw2mKFSFeQ3I9JB5WSLxJQ3WZn5MJFhZxctDBb+o 5DMUPZ3jVsD0fZg0qrXjOtlO2W+C/1GFKVUvGFtJXIMtlODFMJHoHfYZKkOqr6yl JWGPdCT3TUlr1T+olIZ4dfRtjxBH8ZBx8lM+4EXmw6SKIzVYlg9aAqbCvKDr7627 EvdWmxxPZkndvMQNrB3rnqDHEz2Kg3Ws9KlJ3xIhcrvesNcM4HbW8Y7YCnbzyToC +Xf3FJadosvXs3PU6YAKB85zWDE65Y+qehP3JMVUv/FiqRILVYXvREY= -----END CERTIFICATE-----Generated at Wed May 8 17:45:21 2024 by rpki-client on console-ams.rpki-client.org