$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer File: AD2A0F6B3024BFF11458D72C8E5623FB74867F53.cer (raw, json) Hash identifier: qRTY7AKIgEBUiqN9A/QY3BiDtnI4GFtmbLimsmu45Yw= Subject key identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 0C1619E2EBDA8B537EBE28F6634DC5CD48E4C7E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft caRepository: rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Thu 11 Jan 2024 11:32:33 +0000 Certificate not after: Thu 09 Jan 2025 11:37:33 +0000 Subordinate resources: IP: 103.169.224.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:16:19:e2:eb:da:8b:53:7e:be:28:f6:63:4d:c5:cd:48:e4:c7:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Jan 11 11:32:33 2024 GMT Not After : Jan 9 11:37:33 2025 GMT Subject: CN=AD2A0F6B3024BFF11458D72C8E5623FB74867F53 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:0c:08:3a:8f:55:32:1a:f3:c5:b8:2a:df:19: e3:2b:d2:b2:d1:a5:62:f6:95:d7:b2:8d:1a:ca:68: 70:41:a7:94:44:9b:32:d6:c0:d3:12:ad:60:e4:84: e2:80:c0:5e:2c:d3:95:fa:91:d1:91:d4:36:ff:a0: 4c:e0:6e:f2:2b:56:34:9b:de:54:61:16:aa:a1:a1: 8b:60:25:3a:92:2d:90:ab:c5:d5:21:eb:14:44:63: ad:79:25:cb:af:89:86:92:1d:5e:88:28:ed:ee:3b: f2:1a:a7:00:75:5b:e9:48:1d:5a:a5:1a:7c:e4:ff: 54:63:b3:87:fc:3b:b2:0c:8f:22:5e:60:0c:c3:1d: 0b:27:69:a3:a8:02:b8:e3:f3:3f:d7:c6:17:ad:97: ab:68:e5:1d:d8:78:e6:46:f4:8f:c5:e7:90:40:2c: f0:91:d1:ba:21:7f:c5:6d:a7:3b:5d:6e:5f:4b:38: ec:8b:bc:a1:83:1b:94:ab:69:8f:f2:7f:9f:18:2b: 24:70:cb:f0:57:9f:95:32:03:83:3c:58:55:f6:ac: 7c:21:0d:56:89:93:40:72:b1:f5:50:28:8c:71:92: 11:b3:38:be:1e:71:6a:09:10:32:7b:b3:91:7a:10: d7:ae:cd:72:36:66:44:2b:de:29:85:85:64:22:0c: 27:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AD:2A:0F:6B:30:24:BF:F1:14:58:D7:2C:8E:56:23:FB:74:86:7F:53 X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/66af4de5-5037-4917-9a93-0192c6959bfb/0/AD2A0F6B3024BFF11458D72C8E5623FB74867F53.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.169.224.0/23 Signature Algorithm: sha256WithRSAEncryption 23:95:90:c3:c5:eb:e3:a6:4e:dc:2f:c2:31:ee:6e:2c:ff:b8: 48:da:ab:a1:da:30:40:9e:0e:7b:44:f6:49:b0:5e:0b:9f:52: 4b:e3:e7:d7:97:d4:3c:06:8b:28:ea:d7:67:2f:a9:1d:51:e6: 0b:50:bc:66:fa:77:0e:d1:35:76:42:46:da:29:25:ae:ea:c1: ba:e6:52:11:e2:38:f6:35:6b:c9:5e:2d:61:06:7a:4d:c2:a9: 94:27:e8:11:d1:7e:2c:52:47:1e:0c:ca:9b:53:0b:e8:3e:08: dc:38:69:00:b1:9c:e5:07:da:5e:57:27:49:c1:15:e8:53:3e: 5b:4f:94:8a:fc:47:77:f2:e2:d4:d4:fb:20:fb:62:41:31:19: 3b:74:c6:4b:e7:b7:c0:a6:a4:db:e9:56:85:4b:1f:f3:8a:86: c5:33:8b:ed:c8:40:34:11:25:67:fe:ac:f1:10:55:1a:92:63: 1c:f3:41:29:27:e6:2d:c5:60:12:89:dc:7e:f7:e7:f9:c2:75: 5d:74:a4:3d:f9:88:cf:78:61:fd:17:28:1c:07:d4:32:09:cb: f0:9e:da:77:01:35:e3:2e:75:8a:ef:66:35:b0:8a:bd:d1:77: 81:33:4a:c4:5f:32:f0:fd:86:8a:e4:69:e9:b3:fb:1c:93:4f: b0:41:79:86 -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUDBYZ4uvai1N+vij2Y03FzUjkx+QwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTI0MDExMTExMzIzM1oX DTI1MDEwOTExMzczM1owMzExMC8GA1UEAxMoQUQyQTBGNkIzMDI0QkZGMTE0NThE NzJDOEU1NjIzRkI3NDg2N0Y1MzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPAMCDqPVTIa88W4Kt8Z4yvSstGlYvaV17KNGspocEGnlESbMtbA0xKtYOSE 4oDAXizTlfqR0ZHUNv+gTOBu8itWNJveVGEWqqGhi2AlOpItkKvF1SHrFERjrXkl y6+JhpIdXogo7e478hqnAHVb6UgdWqUafOT/VGOzh/w7sgyPIl5gDMMdCydpo6gC uOPzP9fGF62Xq2jlHdh45kb0j8XnkEAs8JHRuiF/xW2nO11uX0s47Iu8oYMblKtp j/J/nxgrJHDL8FeflTIDgzxYVfasfCENVomTQHKx9VAojHGSEbM4vh5xagkQMnuz kXoQ167NcjZmRCveKYWFZCIMJ3MCAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK0qD2swJL/xFFjXLI5WI/t0hn9TMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by82NmFmNGRlNS01MDM3LTQ5MTctOWE5My0wMTkyYzY5NTliZmIvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzY2YWY0ZGU1 LTUwMzctNDkxNy05YTkzLTAxOTJjNjk1OWJmYi8wL0FEMkEwRjZCMzAyNEJGRjEx NDU4RDcyQzhFNTYyM0ZCNzQ4NjdGNTMubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnqeAwDQYJKoZIhvcNAQELBQADggEBACOVkMPF6+OmTtwvwjHubiz/uEjaq6Ha MECeDntE9kmwXgufUkvj59eX1DwGiyjq12cvqR1R5gtQvGb6dw7RNXZCRtopJa7q wbrmUhHiOPY1a8leLWEGek3CqZQn6BHRfixSRx4MyptTC+g+CNw4aQCxnOUH2l5X J0nBFehTPltPlIr8R3fy4tTU+yD7YkExGTt0xkvnt8CmpNvpVoVLH/OKhsUzi+3I QDQRJWf+rPEQVRqSYxzzQSkn5i3FYBKJ3H735/nCdV10pD35iM94Yf0XKBwH1DIJ y/Ce2ncBNeMudYrvZjWwir3Rd4EzSsRfMvD9horkaemz+xyTT7BBeYY= -----END CERTIFICATE-----Generated at Wed May 8 10:06:51 2024 by rpki-client on console-ams.rpki-client.org