$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/2/AFCEE1D439DB1441C4F21223918AC0811E65D56F.cer File: AFCEE1D439DB1441C4F21223918AC0811E65D56F.cer (raw, json) Hash identifier: Mv4FDeR12RHY//L3lcG+7rsf44/gfijnSHFasuTgtDQ= Subject key identifier: AF:CE:E1:D4:39:DB:14:41:C4:F2:12:23:91:8A:C0:81:1E:65:D5:6F Authority key identifier: BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B Certificate issuer: /CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Certificate serial: 273DDA40DB8C6600331646652C7CB634801ADDD1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Manifest: rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/AFCEE1D439DB1441C4F21223918AC0811E65D56F.mft caRepository: rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0 Notify URL: https://repo-rpki.idnic.net/rrdp/notification.xml Certificate not before: Sat 21 Oct 2023 01:10:33 +0000 Certificate not after: Sat 19 Oct 2024 01:15:33 +0000 Subordinate resources: IP: 103.175.188.0/23 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 11 May 2024 13:23:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:3d:da:40:db:8c:66:00:33:16:46:65:2c:7c:b6:34:80:1a:dd:d1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000/serialNumber=BA8F77D21E58FE9C939A6B70E2585617E183376B Validity Not Before: Oct 21 01:10:33 2023 GMT Not After : Oct 19 01:15:33 2024 GMT Subject: CN=AFCEE1D439DB1441C4F21223918AC0811E65D56F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:72:24:d5:fe:ec:5b:38:e6:5d:56:0a:1c:08: 87:ed:d0:a2:a8:ee:bf:e7:49:ab:d0:0d:26:cb:e9: d6:f8:96:1a:f0:75:c9:d1:5f:f8:2a:ac:d4:46:cc: 44:9b:e9:87:4a:76:7d:13:97:fc:db:9b:6b:4e:55: 0e:84:d1:06:90:86:83:67:5a:2d:7f:fb:72:5e:0d: 91:7e:cd:36:ba:5e:fe:2e:c2:0a:e7:47:ea:c6:82: 1a:42:8c:61:37:34:08:91:18:c9:4f:eb:f0:22:d3: 74:cc:25:13:7e:66:64:f8:bc:c5:83:93:66:22:e2: d2:54:c3:f8:db:03:87:55:cc:20:cb:3a:82:86:5e: a1:17:c5:80:c8:1f:f8:c3:ef:8c:9c:81:c1:8d:6d: 66:08:f5:9b:13:15:41:75:46:9a:6f:39:78:23:b1: 2d:09:4e:ee:e0:f6:41:33:7b:61:34:c6:41:18:3e: a5:e7:e5:f7:49:fe:f9:3f:27:45:d5:fa:7d:37:6f: e6:91:ad:6e:8b:61:4e:12:86:29:f3:e5:ee:e1:0e: 04:8f:0f:60:de:fa:dd:a6:c9:a9:b5:70:d0:f5:03: 59:e7:af:a1:0c:8e:4a:86:00:d0:22:82:b3:d7:3f: 00:9c:df:69:4a:4e:2c:65:10:23:2c:80:f6:d2:08: 10:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Basic Constraints: critical CA:TRUE X509v3 Subject Key Identifier: AF:CE:E1:D4:39:DB:14:41:C4:F2:12:23:91:8A:C0:81:1E:65:D5:6F X509v3 Authority Key Identifier: keyid:BA:8F:77:D2:1E:58:FE:9C:93:9A:6B:70:E2:58:56:17:E1:83:37:6B X509v3 Key Usage: critical Certificate Sign, CRL Sign X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer Subject Information Access: CA Repository - URI:rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0 RPKI Manifest - URI:rsync://repo-rpki.idnic.net/repo/b9f60927-1f34-4c54-9674-f9deaf75c2fc/0/AFCEE1D439DB1441C4F21223918AC0811E65D56F.mft RPKI Notify - URI:https://repo-rpki.idnic.net/rrdp/notification.xml X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.175.188.0/23 Signature Algorithm: sha256WithRSAEncryption 49:04:c9:0d:b4:65:7a:46:b5:e3:a0:35:2c:e4:80:14:84:3e: b2:a7:bd:c2:1e:03:bf:1e:d7:f1:2a:8c:de:d0:02:e1:33:1c: 05:2a:9f:80:8e:90:65:42:09:b5:23:a7:88:bc:d7:7b:c5:2f: 54:01:02:6e:85:4b:0b:b8:8a:bb:5b:38:ea:d9:21:be:f3:99: a9:fc:61:6d:00:f8:db:64:6f:ef:97:62:9c:d4:04:1c:1f:1b: aa:96:c2:89:1f:d4:01:86:58:c8:81:51:7f:b3:f9:d6:24:cc: 12:45:b7:9d:2a:9a:04:5b:02:ab:c7:c7:71:f1:04:78:4f:ea: 27:f6:aa:93:3d:26:83:83:d0:76:b4:e9:0b:5d:70:0f:d5:84: 16:76:0c:87:a8:62:ed:fb:a3:76:a5:17:49:af:34:da:ad:99: 18:2c:ab:41:05:ab:f7:d0:7f:4d:05:90:e6:3a:59:73:5a:91: 50:cf:d2:f3:83:8a:64:09:0c:ee:2d:4a:17:d1:e0:c6:6f:fa: 8e:5b:e0:94:49:c3:78:1c:ba:72:52:82:f6:af:96:e5:f1:54: 17:37:5c:d2:fc:50:8d:ce:6b:4a:e5:ca:8c:6b:7e:79:65:7e: 25:65:71:e9:3f:78:2c:74:d5:97:66:42:54:c1:49:08:13:5a: 85:b3:26:dc -----BEGIN CERTIFICATE----- MIIFxTCCBK2gAwIBAgIUJz3aQNuMZgAzFkZlLHy2NIAa3dEwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyhCQThGNzdEMjFF NThGRTlDOTM5QTZCNzBFMjU4NTYxN0UxODMzNzZCMB4XDTIzMTAyMTAxMTAzM1oX DTI0MTAxOTAxMTUzM1owMzExMC8GA1UEAxMoQUZDRUUxRDQzOURCMTQ0MUM0RjIx MjIzOTE4QUMwODExRTY1RDU2RjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKtyJNX+7Fs45l1WChwIh+3Qoqjuv+dJq9ANJsvp1viWGvB1ydFf+Cqs1EbM RJvph0p2fROX/Nuba05VDoTRBpCGg2daLX/7cl4NkX7NNrpe/i7CCudH6saCGkKM YTc0CJEYyU/r8CLTdMwlE35mZPi8xYOTZiLi0lTD+NsDh1XMIMs6goZeoRfFgMgf +MPvjJyBwY1tZgj1mxMVQXVGmm85eCOxLQlO7uD2QTN7YTTGQRg+pefl90n++T8n RdX6fTdv5pGtbothThKGKfPl7uEOBI8PYN763abJqbVw0PUDWeevoQyOSoYA0CKC s9c/AJzfaUpOLGUQIyyA9tIIECECAwEAAaOCArgwggK0MA8GA1UdEwEB/wQFMAMB Af8wHQYDVR0OBBYEFK/O4dQ52xRBxPISI5GKwIEeZdVvMB8GA1UdIwQYMBaAFLqP d9IeWP6ck5prcOJYVhfhgzdrMA4GA1UdDwEB/wQEAwIBBjBpBgNVHR8EYjBgMF6g XKBahlhyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9JRE5JQy1JRC8y L0JBOEY3N0QyMUU1OEZFOUM5MzlBNkI3MEUyNTg1NjE3RTE4MzM3NkIuY3JsMH4G CCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmljLm5l dC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3QzcyRkQxRkYyL3Vv OTMwaDVZX3B5VG1tdHc0bGhXRi1HRE4ycy5jZXIwggEpBggrBgEFBQcBCwSCARsw ggEXMFMGCCsGAQUFBzAFhkdyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVw by9iOWY2MDkyNy0xZjM0LTRjNTQtOTY3NC1mOWRlYWY3NWMyZmMvMDCBgAYIKwYB BQUHMAqGdHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2I5ZjYwOTI3 LTFmMzQtNGM1NC05Njc0LWY5ZGVhZjc1YzJmYy8wL0FGQ0VFMUQ0MzlEQjE0NDFD NEYyMTIyMzkxOEFDMDgxMUU2NUQ1NkYubWZ0MD0GCCsGAQUFBzANhjFodHRwczov L3JlcG8tcnBraS5pZG5pYy5uZXQvcnJkcC9ub3RpZmljYXRpb24ueG1sMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYD BAFnr7wwDQYJKoZIhvcNAQELBQADggEBAEkEyQ20ZXpGteOgNSzkgBSEPrKnvcIe A78e1/EqjN7QAuEzHAUqn4COkGVCCbUjp4i813vFL1QBAm6FSwu4irtbOOrZIb7z man8YW0A+Ntkb++XYpzUBBwfG6qWwokf1AGGWMiBUX+z+dYkzBJFt50qmgRbAqvH x3HxBHhP6if2qpM9JoOD0Ha06QtdcA/VhBZ2DIeoYu37o3alF0mvNNqtmRgsq0EF q/fQf00FkOY6WXNakVDP0vODimQJDO4tShfR4MZv+o5b4JRJw3gcunJSgvavluXx VBc3XNL8UI3Oa0rlyoxrfnllfiVlcek/eCx01ZdmQlTBSQgTWoWzJtw= -----END CERTIFICATE-----Generated at Wed May 8 10:06:51 2024 by rpki-client on console-ams.rpki-client.org